Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205544.roa
File: AS205544.roa (raw, json)
Hash identifier: z54Pzjh9CLgt9s7SzaEaGumSFwJ4oKdDAIwv6V3+EBk=
Subject key identifier: B1:F4:A7:BA:BB:13:2B:25:AA:17:CD:02:2E:9D:59:C0:70:B8:D8:4B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 54E1F229998E1758F97071EE00EB58269502DE7C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205544.roa
Signing time: Mon 06 Apr 2026 10:48:37 +0000
ROA not before: Mon 06 Apr 2026 10:43:37 +0000
ROA not after: Mon 05 Apr 2027 10:48:37 +0000
asID: 205544
IP address blocks: 82.38.198.0/24 maxlen: 24
82.41.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:e1:f2:29:99:8e:17:58:f9:70:71:ee:00:eb:58:26:95:02:de:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 6 10:43:37 2026 GMT
Not After : Apr 5 10:48:37 2027 GMT
Subject: CN=B1F4A7BABB132B25AA17CD022E9D59C070B8D84B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f1:c2:85:e6:2a:ef:6a:fc:cb:14:f2:bf:02:
e8:26:0e:9b:d1:1e:7c:78:19:fa:ba:fa:83:f2:ad:
d7:1c:c7:85:51:3e:29:14:73:c8:cc:75:9d:e0:ca:
9a:c2:6f:37:05:89:30:66:eb:3b:e7:d0:f9:4f:c4:
94:e0:38:46:fb:48:76:56:a9:43:46:a8:1d:f8:32:
a0:5d:1c:6b:41:f7:66:a9:7e:bc:3e:7f:fe:af:1e:
23:61:ba:e0:15:1a:5c:46:dd:40:b6:63:8a:02:52:
4c:9d:9a:a2:54:12:f1:10:73:38:9e:ad:49:79:c0:
bc:b6:86:63:87:09:7c:12:06:52:3d:59:f5:24:df:
5f:ec:ed:bc:15:32:0b:db:0c:d5:9f:59:da:d5:f2:
8c:57:bd:94:6f:31:1f:96:d5:5e:5b:ae:d7:f3:41:
c3:db:98:87:a4:2a:9f:34:83:e4:54:24:9b:84:cd:
a2:61:14:b8:2a:ce:5f:16:08:86:6f:91:6b:7b:cb:
24:05:9c:28:8d:a7:f4:aa:22:e0:9f:4a:a1:e5:cf:
23:04:5e:6a:9d:2f:f6:f4:ff:80:ff:19:d8:99:04:
28:18:37:e1:d0:68:b8:88:a1:73:97:31:4d:0b:7b:
da:22:8a:db:59:a5:5b:71:ac:75:83:96:17:aa:ef:
06:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F4:A7:BA:BB:13:2B:25:AA:17:CD:02:2E:9D:59:C0:70:B8:D8:4B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205544.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.38.198.0/24
82.41.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:4b:0d:82:ae:1e:91:f7:93:e2:a9:f2:b0:38:0b:88:af:83:
7c:38:12:a4:12:cc:7c:83:0b:39:5e:00:e0:f0:94:e8:59:c6:
21:1f:8d:69:6d:91:f5:11:f2:56:b6:58:20:06:fc:d1:33:20:
1d:2d:3b:b3:74:e8:fc:ad:8e:48:40:f9:d5:47:28:7e:80:09:
0b:7f:bd:1c:2d:78:3a:84:02:24:98:0c:5f:04:8e:d4:0c:ca:
7c:90:aa:ef:d3:54:e6:31:a0:cf:b5:a1:d1:45:03:fb:5c:41:
e7:e8:92:9d:8b:11:98:11:d9:75:65:fa:f0:99:97:74:ce:05:
13:e2:a1:52:84:98:15:3a:1f:b3:38:91:88:9b:68:73:0f:ff:
0b:d8:2a:79:b3:79:1e:9a:1a:64:c1:2c:87:ff:3b:fd:1d:07:
70:df:b9:21:66:7e:ad:60:bd:1d:0c:ad:77:13:33:08:a5:94:
50:00:f4:87:0a:e9:ac:d6:31:5c:06:bd:9b:fa:cf:dc:5a:92:
e6:bc:b1:6d:5e:22:d4:c4:b1:8e:20:88:76:4e:9c:fd:3a:1d:
7a:68:fb:79:0f:dc:0e:09:84:f5:eb:88:e1:0f:47:c2:8d:57:
bf:ad:01:90:ef:9b:2a:03:26:1e:7f:c6:5c:6b:41:ea:03:77:
0d:14:49:1a
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUVOHyKZmOF1j5cHHuAOtYJpUC3nwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MDYxMDQzMzdaFw0yNzA0MDUxMDQ4MzdaMDMxMTAvBgNV
BAMTKEIxRjRBN0JBQkIxMzJCMjVBQTE3Q0QwMjJFOUQ1OUMwNzBCOEQ4NEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ8cKF5irvavzLFPK/AugmDpvR
Hnx4Gfq6+oPyrdccx4VRPikUc8jMdZ3gyprCbzcFiTBm6zvn0PlPxJTgOEb7SHZW
qUNGqB34MqBdHGtB92apfrw+f/6vHiNhuuAVGlxG3UC2Y4oCUkydmqJUEvEQczie
rUl5wLy2hmOHCXwSBlI9WfUk31/s7bwVMgvbDNWfWdrV8oxXvZRvMR+W1V5brtfz
QcPbmIekKp80g+RUJJuEzaJhFLgqzl8WCIZvkWt7yyQFnCiNp/SqIuCfSqHlzyME
XmqdL/b0/4D/GdiZBCgYN+HQaLiIoXOXMU0Le9oiittZpVtxrHWDlheq7wYtAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUsfSnursTKyWqF80CLp1ZwHC42EswHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjA1NTQ0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUibG
AwQAUinFMA0GCSqGSIb3DQEBCwUAA4IBAQCeSw2Crh6R95PiqfKwOAuIr4N8OBKk
Esx8gws5XgDg8JToWcYhH41pbZH1EfJWtlggBvzRMyAdLTuzdOj8rY5IQPnVRyh+
gAkLf70cLXg6hAIkmAxfBI7UDMp8kKrv01TmMaDPtaHRRQP7XEHn6JKdixGYEdl1
ZfrwmZd0zgUT4qFShJgVOh+zOJGIm2hzD/8L2Cp5s3kemhpkwSyH/zv9HQdw37kh
Zn6tYL0dDK13EzMIpZRQAPSHCums1jFcBr2b+s/cWpLmvLFtXiLUxLGOIIh2Tpz9
Oh16aPt5D9wOCYT164jhD0fCjVe/rQGQ75sqAyYef8Zca0HqA3cNFEka
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:04 2026 by rpki-client