Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203057.roa
File: AS203057.roa (raw, json)
Hash identifier: tdk2M1lAB69esiZNFo4QgVAX8i5YTqCNMDpKj/+re6o=
Subject key identifier: 81:A1:7B:F6:F0:E7:AC:3B:01:77:AC:F0:08:20:2B:BE:07:74:41:FD
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 540C5856C12D7C3786CD69502EA9A584F7196D1C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203057.roa
Signing time: Sat 04 Apr 2026 12:02:53 +0000
ROA not before: Sat 04 Apr 2026 11:57:53 +0000
ROA not after: Sat 03 Apr 2027 12:02:53 +0000
asID: 203057
IP address blocks: 178.83.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:0c:58:56:c1:2d:7c:37:86:cd:69:50:2e:a9:a5:84:f7:19:6d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 4 11:57:53 2026 GMT
Not After : Apr 3 12:02:53 2027 GMT
Subject: CN=81A17BF6F0E7AC3B0177ACF008202BBE077441FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d8:c2:ea:a8:44:26:47:88:5b:0b:e2:31:2a:
17:50:7e:da:4c:8d:93:a8:5e:f5:c4:7e:fc:44:53:
d1:7a:91:cc:b4:58:7a:8c:f6:00:f4:54:28:90:8a:
b6:38:96:cb:f4:46:66:1a:75:e0:7a:19:63:5b:95:
fb:4b:2d:30:6c:a2:28:83:e7:9f:c3:4d:fb:1f:b7:
19:21:26:3f:d4:43:cf:0e:51:bf:71:8e:8c:ec:47:
95:3c:6e:57:7a:11:99:c9:74:9c:d3:d5:63:c7:e5:
03:fb:2e:cf:d8:b0:a3:dc:66:0d:e6:6c:5e:4e:30:
ee:51:19:7e:44:18:d5:72:65:f2:6e:15:f6:7b:3f:
be:90:d9:af:8e:a8:a9:e3:23:cc:20:1c:08:ab:e2:
64:a4:7f:64:5b:7c:7c:44:1e:68:e1:27:56:e1:5c:
5c:48:57:53:a9:92:24:84:08:c5:23:57:81:90:b3:
4b:de:d4:5f:c5:a2:05:e1:ed:45:27:c1:94:1c:d8:
08:91:b0:2d:0a:cc:f2:6c:79:b0:a6:97:21:71:b3:
1a:ad:73:52:e6:ec:58:d1:99:48:66:f7:01:c8:c7:
d2:f5:f8:f5:4d:db:a6:83:50:f3:4c:ec:1c:99:e6:
ef:56:3c:6e:fd:db:b3:45:95:22:32:8a:31:b7:cb:
1c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A1:7B:F6:F0:E7:AC:3B:01:77:AC:F0:08:20:2B:BE:07:74:41:FD
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203057.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.255.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:04:93:d3:6e:51:7f:94:bc:f0:3c:2f:6e:ad:ba:38:8f:c8:
2d:33:52:84:5c:62:39:23:3a:a4:6f:aa:08:68:77:95:64:a5:
69:ae:6f:b3:39:9d:7a:7a:5f:49:d2:b4:b6:a4:d7:53:40:90:
98:c7:0a:12:21:76:84:b5:3b:c8:aa:0c:31:cf:df:b7:3f:2f:
60:cc:c3:65:36:4c:99:32:b9:19:f4:cf:71:f0:4b:70:6e:af:
e0:c3:28:89:b2:ae:64:34:d4:ba:20:c7:14:d4:cc:76:c6:a3:
fd:db:25:d1:c1:41:94:9c:e0:d7:48:53:6f:01:b5:dd:5c:ce:
44:e7:19:39:91:14:5d:fc:c2:fb:f6:9a:86:eb:28:81:b8:1d:
95:98:41:43:8f:50:52:bf:1a:a3:a8:88:59:78:9c:ce:93:37:
c8:72:92:fe:be:b9:0e:74:b3:f9:aa:aa:04:9c:92:c8:92:d6:
7e:aa:23:f3:cd:1b:86:7e:38:9a:b6:66:62:7b:38:bf:2e:89:
70:fa:b7:6d:2d:2e:c5:e0:a6:a8:be:d2:5c:f9:11:b4:a2:c7:
0a:96:98:74:bc:85:99:b4:42:a3:c0:48:86:ee:9c:93:62:57:
49:61:25:b7:3f:38:34:48:2b:f3:a3:6c:cc:21:cb:ee:c1:06:
81:4f:2f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:01:47 2026 by rpki-client