Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa
File: AS214654.roa (raw, json)
Hash identifier: dsUIm9lELtSDnbeVj9iQrqhWCwAOvEh3dN7pySAIRoo=
Subject key identifier: 50:54:7F:7B:E8:20:6D:54:0D:AA:7E:E2:A4:AC:BB:D3:56:E7:E2:A2
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4BAC84AB765AB7A5093DF03210CA33D058AD4FDC
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa
Signing time: Mon 07 Jul 2025 00:01:58 +0000
ROA not before: Sun 06 Jul 2025 23:56:58 +0000
ROA not after: Mon 06 Jul 2026 00:01:58 +0000
asID: 214654
IP address blocks: 82.26.91.0/24 maxlen: 24
82.26.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 01:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ac:84:ab:76:5a:b7:a5:09:3d:f0:32:10:ca:33:d0:58:ad:4f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 6 23:56:58 2025 GMT
Not After : Jul 6 00:01:58 2026 GMT
Subject: CN=50547F7BE8206D540DAA7EE2A4ACBBD356E7E2A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:a6:88:f7:49:e5:29:26:98:30:19:8f:32:
2d:e5:bd:9b:74:e3:2b:de:40:06:17:50:28:86:22:
b8:24:75:16:c6:be:ed:96:e5:fb:3c:66:5d:0a:a3:
4d:ea:fe:99:19:2d:be:2e:c9:93:35:b2:0f:f5:9a:
1e:8f:08:40:52:46:e5:e7:c7:9f:37:11:42:ce:3b:
24:ef:c4:cc:75:58:93:e2:11:99:76:d1:81:88:0c:
33:28:c5:99:be:09:10:c9:02:ea:d1:ac:39:74:b5:
f4:78:ef:42:ad:63:9d:0a:40:0a:04:6e:ed:8e:e8:
76:55:f8:21:44:31:50:36:66:ee:eb:bf:8a:af:23:
da:b4:1c:f0:ad:cd:86:6f:19:f1:e4:8f:15:89:bf:
41:e8:91:34:95:53:dd:00:17:2c:e9:dd:b4:4d:39:
68:62:c4:c7:62:07:6d:c7:63:47:27:0e:15:4e:cd:
24:d2:6e:1c:5e:86:a6:57:70:6a:0e:fe:1a:23:f0:
6d:f1:31:b9:85:88:97:ff:a4:7e:ec:d3:54:84:7e:
60:03:fd:e7:1f:a1:3a:92:72:ca:71:48:0d:18:c0:
b8:a1:fd:b8:c9:90:41:a7:d2:56:ae:d0:c4:74:73:
93:91:01:a8:5e:95:71:5d:73:16:f8:f2:00:da:0c:
78:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:54:7F:7B:E8:20:6D:54:0D:AA:7E:E2:A4:AC:BB:D3:56:E7:E2:A2
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214654.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.91.0/24
82.26.93.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b5:96:cf:2c:d8:54:aa:2a:13:54:8f:32:cb:0c:41:a8:47:
22:b1:ac:e0:c5:96:d3:8f:41:ab:f4:b4:05:11:d7:97:8a:35:
a8:42:ee:f9:a8:1e:ee:ee:ce:78:7e:3e:9d:eb:4e:0c:0b:f9:
b9:91:7f:fe:5c:f9:81:43:09:b0:a6:49:90:49:e1:5c:26:be:
10:da:fe:d2:86:fb:65:c9:2b:4a:39:c5:aa:46:79:fa:fa:3b:
13:4a:07:df:6a:8e:2a:4f:78:20:e8:b5:d8:02:9a:f1:e7:c8:
fd:ac:d3:6c:77:60:b7:65:f8:52:93:a9:69:18:43:06:0c:c9:
7c:28:ba:2c:f2:10:cf:f6:cc:83:b1:c4:8f:38:18:e4:74:62:
0e:2e:d7:a0:15:f4:86:a6:b4:1a:b5:ff:73:4c:aa:29:ea:b1:
a7:7b:ae:81:3b:73:62:6f:d5:03:e6:9a:37:8e:f8:05:91:d7:
56:b8:81:9b:55:a8:04:5b:31:8f:76:44:61:32:df:f5:71:8d:
6b:f1:08:67:df:1d:94:f0:18:e6:30:c0:07:0f:cb:e0:9b:3f:
7c:76:ac:6c:24:cd:aa:f1:32:ba:7a:39:d9:91:ff:3c:e6:7d:
7b:c9:f2:38:4f:bf:74:6d:b7:1d:1d:9c:37:07:2e:fd:b4:64:
ec:a6:b0:c9
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUS6yEq3Zat6UJPfAyEMoz0FitT9wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNTA3MDYyMzU2NThaFw0yNjA3MDYwMDAxNThaMDMxMTAvBgNV
BAMTKDUwNTQ3RjdCRTgyMDZENTQwREFBN0VFMkE0QUNCQkQzNTZFN0UyQTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQiaaI90nlKSaYMBmPMi3lvZt0
4yveQAYXUCiGIrgkdRbGvu2W5fs8Zl0Ko03q/pkZLb4uyZM1sg/1mh6PCEBSRuXn
x583EULOOyTvxMx1WJPiEZl20YGIDDMoxZm+CRDJAurRrDl0tfR470KtY50KQAoE
bu2O6HZV+CFEMVA2Zu7rv4qvI9q0HPCtzYZvGfHkjxWJv0HokTSVU90AFyzp3bRN
OWhixMdiB23HY0cnDhVOzSTSbhxehqZXcGoO/hoj8G3xMbmFiJf/pH7s01SEfmAD
/ecfoTqScspxSA0YwLih/bjJkEGn0lau0MR0c5ORAahelXFdcxb48gDaDHibAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUUFR/e+ggbVQNqn7ipKy701bn4qIwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0NjU0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhpb
AwQAUhpdMA0GCSqGSIb3DQEBCwUAA4IBAQCOtZbPLNhUqioTVI8yywxBqEcisazg
xZbTj0Gr9LQFEdeXijWoQu75qB7u7s54fj6d604MC/m5kX/+XPmBQwmwpkmQSeFc
Jr4Q2v7ShvtlyStKOcWqRnn6+jsTSgffao4qT3gg6LXYAprx58j9rNNsd2C3ZfhS
k6lpGEMGDMl8KLos8hDP9syDscSPOBjkdGIOLtegFfSGprQatf9zTKop6rGne66B
O3Nib9UD5po3jvgFkddWuIGbVagEWzGPdkRhMt/1cY1r8Qhn3x2U8BjmMMAHD8vg
mz98dqxsJM2q8TK6ejnZkf885n17yfI4T790bbcdHZw3By79tGTsprDJ
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:39:04 2025 by rpki-client