Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: Wjj63LmkOF1ydBHEd7y8JS4OMdrkcdgdo0Y7BfXclGs=
Subject key identifier: 9A:F6:B7:C5:49:E7:2C:48:3A:15:40:C4:5F:B7:54:7B:39:5E:B3:45
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6BC5C3F55A443BDA7E9D25F3375C041FE0A8FA2C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Sat 06 Jun 2026 09:54:06 +0000
ROA not before: Sat 06 Jun 2026 09:49:06 +0000
ROA not after: Sat 05 Jun 2027 09:54:06 +0000
asID: 203054
IP address blocks: 82.47.187.0/24 maxlen: 24
84.75.156.0/24 maxlen: 24
84.75.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:c5:c3:f5:5a:44:3b:da:7e:9d:25:f3:37:5c:04:1f:e0:a8:fa:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 6 09:49:06 2026 GMT
Not After : Jun 5 09:54:06 2027 GMT
Subject: CN=9AF6B7C549E72C483A1540C45FB7547B395EB345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:13:e8:6f:c7:59:a7:f0:da:86:e9:4f:83:92:
c4:b6:bc:b0:68:66:ab:7c:f1:b6:61:3b:35:cf:c3:
ad:c6:62:df:69:ed:00:96:ef:f4:6a:ba:9d:38:1e:
28:6f:e8:ea:7f:1f:11:f1:b8:27:6b:09:1a:9a:60:
73:01:f5:55:93:4f:83:65:99:32:04:fd:ba:06:81:
cf:cf:e4:3b:2e:79:d6:6f:00:22:75:a6:ec:05:19:
73:53:3d:e5:18:15:3d:48:75:00:70:71:90:39:1f:
1b:75:a9:f4:84:f1:b9:6a:5f:03:78:ca:f1:eb:40:
a7:d2:4a:5d:87:3a:c6:4b:fc:c5:03:d9:d9:6b:d8:
07:24:19:30:a5:ae:f8:3c:44:06:e6:8b:0a:3b:a2:
db:f0:ba:01:1c:51:3b:d8:8d:de:e4:d0:13:29:32:
19:d1:b7:ab:f5:68:54:f3:6d:d0:13:53:e5:e1:e4:
7f:fa:9a:e4:e1:cc:ed:ae:de:5c:ae:05:70:de:82:
15:42:d6:96:0c:dd:c7:4b:1a:fb:ab:eb:92:dd:da:
56:8c:bc:d8:3d:2c:ed:a0:b1:d6:37:b5:76:78:12:
2f:d9:6b:81:8d:7c:95:4f:c9:b2:bf:9f:bb:31:6d:
64:49:ce:fe:b0:5c:0b:e5:0f:47:41:9e:46:c0:33:
32:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F6:B7:C5:49:E7:2C:48:3A:15:40:C4:5F:B7:54:7B:39:5E:B3:45
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.187.0/24
84.75.156.0/24
84.75.242.0/24
Signature Algorithm: sha256WithRSAEncryption
99:9f:8b:b0:04:1d:0e:ba:6b:89:5e:c6:41:9f:ed:4d:a8:d1:
86:55:4a:12:6c:72:36:36:01:3f:86:32:e7:e7:f4:6b:df:87:
1a:bc:27:d6:0e:7c:71:27:80:91:95:a8:97:8f:1e:2c:f6:80:
3e:d4:89:37:5c:ba:2c:b8:30:51:ad:be:1b:7d:de:bf:7f:65:
56:bb:ba:17:f0:7c:91:b0:0f:45:23:13:5c:c4:f6:12:83:6d:
72:b1:e6:bf:ac:cf:7d:6a:3a:82:f2:c2:72:c1:f1:80:f7:0c:
ac:c3:d1:51:e7:6f:63:40:18:1e:43:ac:95:18:37:86:19:38:
c4:0b:92:57:dd:d8:d0:ad:b2:84:04:c1:ef:15:70:8b:06:67:
ba:48:8c:00:7c:e9:47:6c:d0:51:98:e2:fd:6f:66:e6:29:44:
ed:49:40:87:46:24:aa:f1:e7:d7:87:ec:47:57:3c:ce:b1:20:
9c:2e:f1:43:14:51:65:62:21:c0:c9:b4:81:c0:ac:e1:0f:8e:
93:5b:5e:0c:ae:0a:31:ad:86:b4:b6:66:5b:16:8e:5b:57:49:
6f:ed:d9:7c:b1:37:b9:04:48:e7:49:f1:8c:52:5a:75:db:10:
9c:2d:3f:22:dc:25:97:14:42:f2:74:5e:35:fb:42:8f:58:30:
c4:cb:ae:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:27:00 2026 by rpki-client