Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa
File: AS215152.roa (raw, json)
Hash identifier: 4QRPA010ba3bN38PQe0g/mXVvnkhePoPwI6RZQLEEbs=
Subject key identifier: 1F:87:04:80:3B:56:57:48:0C:A5:84:A2:59:AA:DE:01:DC:F0:80:46
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3AFEFF93AA0BE1B2D06C97DED4A6962AB94CA1EE
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa
Signing time: Wed 10 Jun 2026 22:40:45 +0000
ROA not before: Wed 10 Jun 2026 22:35:45 +0000
ROA not after: Wed 09 Jun 2027 22:40:45 +0000
asID: 215152
IP address blocks: 82.22.49.0/24 maxlen: 24
82.24.25.0/24 maxlen: 24
82.26.205.0/24 maxlen: 24
82.27.133.0/24 maxlen: 24
82.39.128.0/24 maxlen: 24
82.39.239.0/24 maxlen: 24
82.47.17.0/24 maxlen: 24
82.47.45.0/24 maxlen: 24
82.47.99.0/24 maxlen: 24
82.47.157.0/24 maxlen: 24
82.47.168.0/24 maxlen: 24
82.47.182.0/24 maxlen: 24
84.75.186.0/24 maxlen: 24
84.75.240.0/24 maxlen: 24
178.83.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:fe:ff:93:aa:0b:e1:b2:d0:6c:97:de:d4:a6:96:2a:b9:4c:a1:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 10 22:35:45 2026 GMT
Not After : Jun 9 22:40:45 2027 GMT
Subject: CN=1F8704803B5657480CA584A259AADE01DCF08046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:68:8d:85:90:00:d7:3b:e3:69:ee:e9:23:72:
b8:f4:44:6d:e8:f3:ec:44:e3:15:27:11:95:01:c5:
35:55:be:96:27:34:87:90:b7:6a:74:ab:5b:80:18:
56:a3:05:9b:78:55:0c:26:5b:b1:46:75:ef:d4:e5:
de:e1:a6:c2:0b:07:0a:f8:84:54:49:d8:01:75:a8:
e0:ea:55:20:92:8e:6b:98:67:f2:92:91:1a:53:7a:
1d:e2:0a:75:95:82:2e:95:f1:74:2e:f9:fe:7b:73:
b1:ad:5c:a2:c9:13:7b:7f:4d:26:20:6d:a7:f3:57:
57:83:9b:54:7b:1b:47:06:97:74:23:ea:10:8e:15:
d1:cd:1f:14:fb:25:9e:94:0f:d0:6f:26:c1:a7:f7:
7b:df:aa:da:1c:a5:0a:28:3d:7b:68:3f:dd:ea:cb:
30:5a:be:08:d5:c6:f9:c1:ab:15:f0:3c:51:81:84:
30:aa:f1:ce:e8:6c:cb:96:3f:ae:4e:5a:f6:0b:6e:
88:c6:30:0d:90:f5:cc:ce:eb:e0:53:26:e2:f8:fe:
52:67:e8:dc:41:62:10:9d:f3:5e:2a:c0:0c:a8:bb:
e4:70:ef:69:0f:09:92:06:d7:c3:27:aa:35:b7:7e:
e4:f4:4a:ea:85:d2:e5:45:83:3a:79:41:55:75:2a:
9d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:87:04:80:3B:56:57:48:0C:A5:84:A2:59:AA:DE:01:DC:F0:80:46
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS215152.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.49.0/24
82.24.25.0/24
82.26.205.0/24
82.27.133.0/24
82.39.128.0/24
82.39.239.0/24
82.47.17.0/24
82.47.45.0/24
82.47.99.0/24
82.47.157.0/24
82.47.168.0/24
82.47.182.0/24
84.75.186.0/24
84.75.240.0/24
178.83.89.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ff:5f:56:0f:52:89:8f:b8:38:e5:78:14:fb:ef:fb:43:7c:
14:b5:06:d6:ab:a1:47:63:23:2c:bb:de:b4:c8:2d:4a:13:ed:
db:79:dd:d0:82:e0:55:46:1a:6a:42:47:4c:20:44:f9:fd:ab:
b9:3b:7d:e1:87:d4:66:f7:a7:cf:a2:1c:35:d6:3d:07:df:1e:
d6:d8:71:46:30:0b:cf:83:a9:53:e0:c0:a5:3c:c5:01:af:e7:
6d:26:65:ac:d5:e2:f0:79:51:7c:8e:d9:1e:b3:2d:7c:b4:1b:
d6:a1:78:69:8c:16:75:47:04:be:a4:1e:66:35:e5:d2:dd:56:
a0:30:d2:a9:6f:32:22:68:ff:40:09:ce:be:ae:e0:53:79:98:
23:23:79:01:df:73:bf:e9:ce:ab:88:20:e3:f6:36:25:57:27:
36:47:b2:e0:7d:9a:cb:e1:fc:4e:e0:60:7e:06:1f:a0:db:e6:
14:4a:a1:14:7f:d7:fa:a1:9f:54:f2:74:1b:bd:dd:c0:56:eb:
da:5a:4a:cd:44:f2:a5:ea:dc:ed:a8:68:56:c4:b9:90:65:5e:
11:68:ea:a3:ae:c2:bd:98:1b:de:e2:73:5d:88:77:8b:c3:4b:
b6:4c:d5:7b:e0:d1:3a:40:72:d0:80:c7:f5:fd:dc:d4:11:8a:
17:39:fb:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:43:00 2026 by rpki-client