Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210576.roa
File: AS210576.roa (raw, json)
Hash identifier: T7tRafPk0i9dp/BTKbtbFq5WBnawaQeuodaRx3G7sFY=
Subject key identifier: 26:F1:5E:9C:0C:55:94:C9:5C:65:D1:2E:BA:A4:64:5E:FA:18:B0:29
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 31AAF7670C30D2BE3F910291C79E886F9F01DF51
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210576.roa
Signing time: Sun 07 Jun 2026 09:47:29 +0000
ROA not before: Sun 07 Jun 2026 09:42:29 +0000
ROA not after: Sun 06 Jun 2027 09:47:29 +0000
asID: 210576
IP address blocks: 2a13:9500:a6::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:aa:f7:67:0c:30:d2:be:3f:91:02:91:c7:9e:88:6f:9f:01:df:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 7 09:42:29 2026 GMT
Not After : Jun 6 09:47:29 2027 GMT
Subject: CN=26F15E9C0C5594C95C65D12EBAA4645EFA18B029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5d:f5:c2:31:78:5e:bf:ff:6d:87:d9:7e:29:
51:8e:1b:cd:7d:59:71:e8:5e:b9:f5:48:d8:4e:a8:
b9:a7:89:ae:d6:a5:6d:5a:05:97:0b:92:da:30:81:
17:72:70:4b:6a:49:46:2e:6c:e1:8e:6f:a2:02:02:
24:43:be:58:60:1c:8b:37:71:b7:a0:b9:e0:0d:bb:
3b:1a:ec:3f:60:1e:19:bb:f7:fe:3c:79:bb:29:e4:
0f:c0:74:05:e3:74:57:18:e8:a3:14:67:d7:ec:d9:
16:e5:83:e9:ad:fa:62:3d:75:0e:d5:66:20:9c:ce:
81:d6:08:92:cd:07:cf:75:6f:4d:41:72:db:44:d2:
0b:1d:6e:0a:f6:4a:0e:40:04:2a:20:96:66:e3:f2:
c2:8d:7a:01:7c:af:78:c4:5f:6f:25:be:c9:87:fa:
17:ad:a7:0c:73:d2:fc:fb:ec:1d:fc:11:12:b4:35:
11:06:c0:db:0e:35:35:94:67:68:99:10:dc:b2:1a:
d8:4b:71:0a:d9:1e:54:23:bd:68:81:83:05:c2:f6:
8e:6d:57:dd:ea:c5:f8:7b:6a:2f:05:9a:7c:e9:9f:
f7:09:52:2e:a9:dd:63:2d:9d:1b:a9:22:48:67:bc:
be:41:e6:ec:8b:25:4a:e7:f9:e7:e8:ed:58:3b:1d:
1d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F1:5E:9C:0C:55:94:C9:5C:65:D1:2E:BA:A4:64:5E:FA:18:B0:29
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210576.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:a6::/48
Signature Algorithm: sha256WithRSAEncryption
4f:fe:24:fe:a4:ce:96:c1:28:82:43:6e:28:bf:68:1e:1b:f1:
3c:0f:5a:33:47:99:fd:73:e3:c6:eb:28:68:de:48:cd:61:43:
b0:73:e2:d2:ae:6b:1b:22:ec:0d:2e:3d:f2:8f:01:19:31:f9:
2f:df:b4:01:0f:4a:e3:d4:4b:f2:88:6b:fa:51:51:ba:fe:e0:
8f:db:33:82:36:5c:76:c1:c5:90:a6:06:d8:f8:74:82:eb:e0:
83:67:da:91:eb:66:49:18:3c:99:0b:18:79:ff:0b:3c:12:8d:
e0:40:fc:b2:5a:9b:dc:67:b5:8e:75:92:37:c5:26:76:03:bf:
9b:43:9a:9d:0c:7c:ad:3e:66:b2:b5:7f:67:f9:a0:e3:32:f7:
12:a8:05:62:e4:e7:82:ce:47:5b:9c:4c:09:7d:39:9c:5e:bc:
08:c9:cb:0d:53:5b:98:43:24:4b:f9:b1:a8:bc:78:be:3c:07:
96:c0:13:29:70:35:ee:d2:aa:0d:81:21:34:45:ec:4b:12:0d:
4a:5e:54:c0:96:17:77:d0:39:43:3e:59:21:40:c7:a2:8d:6a:
e7:f0:67:f0:8a:db:5b:22:3f:f3:22:30:e1:5a:b6:b6:e7:15:
94:e5:1d:e6:ec:c4:98:e4:72:a4:79:63:15:52:5b:1a:4a:a6:
e7:bc:c8:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:42:22 2026 by rpki-client