Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211693.roa
File: AS211693.roa (raw, json)
Hash identifier: 5H1zr+kNNi8jxKemKhzcDX2OWjD1F6ttqN4drrDWinY=
Subject key identifier: 4F:A8:6D:6A:5D:1F:F4:47:AB:96:95:84:48:A5:03:BB:FA:14:AC:1E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7CF2A0BCF0CBC64D999938F3BBD626F917A10741
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211693.roa
Signing time: Mon 13 Apr 2026 13:45:22 +0000
ROA not before: Mon 13 Apr 2026 13:40:22 +0000
ROA not after: Mon 12 Apr 2027 13:45:22 +0000
asID: 211693
IP address blocks: 82.39.212.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:f2:a0:bc:f0:cb:c6:4d:99:99:38:f3:bb:d6:26:f9:17:a1:07:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 13 13:40:22 2026 GMT
Not After : Apr 12 13:45:22 2027 GMT
Subject: CN=4FA86D6A5D1FF447AB96958448A503BBFA14AC1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bb:cc:68:03:f4:fb:d8:9f:a7:cb:bc:d6:bb:
7a:ba:1d:5d:d7:e4:9a:29:00:07:60:1f:56:ab:f1:
59:06:ac:36:36:a4:07:4d:8b:b4:50:21:d6:8b:d5:
b1:d7:2c:19:d3:34:7f:99:8f:87:eb:63:28:7c:d9:
49:3d:fb:f5:67:9c:c2:8c:1b:e0:e8:65:a7:64:dc:
49:6d:69:18:bf:84:29:9d:4c:34:65:d8:9a:73:53:
89:2b:89:1a:8d:cd:cd:12:5f:3b:8f:1d:e1:af:83:
d5:00:1c:df:47:ae:77:50:40:70:d8:8b:f2:76:23:
5f:ea:e4:7d:6c:ea:0d:67:78:f6:7f:3c:3f:4a:bc:
98:d5:ed:e9:ac:52:b8:0c:ab:ed:27:4d:d9:a7:ad:
69:1b:f6:1f:42:b2:70:61:c1:5c:ee:57:06:99:ed:
97:1b:2a:e6:f7:1a:ab:8e:36:9a:69:52:85:b6:7f:
0f:99:e1:da:46:c8:5c:ca:ea:4a:35:22:71:c2:ba:
27:5b:bd:97:08:09:f3:a7:4c:44:c4:3e:e4:dc:f4:
f1:42:e1:88:7d:a0:86:c3:3f:77:eb:0c:14:ba:29:
28:7e:b8:32:ad:bb:c9:fe:78:4c:4f:79:c8:6b:7a:
72:17:f5:90:30:99:81:55:44:d8:9e:43:b7:8c:22:
82:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A8:6D:6A:5D:1F:F4:47:AB:96:95:84:48:A5:03:BB:FA:14:AC:1E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211693.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.39.212.0/24
Signature Algorithm: sha256WithRSAEncryption
82:13:59:e2:b1:f9:27:a0:47:c1:4f:ed:d0:cb:30:82:cb:0c:
93:b1:ea:25:5f:e4:70:8c:64:41:df:0e:be:07:69:fb:d6:d2:
30:34:88:39:5e:c9:4a:7c:3a:2f:6c:e3:2c:c6:f5:ac:a8:40:
0e:0b:a3:88:84:5a:cd:6e:62:7c:f9:bb:02:50:77:22:fd:96:
25:aa:28:50:d5:23:20:63:89:4c:fb:59:a6:f5:17:d0:68:d2:
8c:ce:9e:43:4a:64:b4:6d:0d:34:a3:1f:fb:43:be:08:48:24:
e5:ff:69:ff:ac:5a:5f:98:48:57:ef:25:2e:57:82:cb:61:7c:
8a:90:79:0a:10:a2:52:ac:08:a6:c0:c0:75:7f:56:63:3b:13:
c0:39:3a:d5:40:9a:3e:67:cc:ec:85:fe:5f:33:97:e2:7b:3f:
39:48:56:82:b9:d6:86:9c:66:09:32:03:21:ac:75:1f:8b:8c:
94:79:55:7f:e6:8e:6d:23:e7:78:c1:c3:99:1a:74:8b:5a:13:
35:93:79:cb:c6:62:5d:70:7a:1a:e2:de:fb:a6:b7:b0:a3:66:
b9:ea:88:e2:88:02:3c:14:93:3b:50:e4:60:70:51:5b:9f:64:
eb:79:de:17:65:49:cb:71:b5:44:6c:53:b6:ef:b3:1f:bd:c3:
91:45:3e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:55:56 2026 by rpki-client