Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS216405.roa
File: AS216405.roa (raw, json)
Hash identifier: OwXt5evJcBtWkS3/M3OIH7MhPw7yWCFlioi9e2Sq/dk=
Subject key identifier: 71:4E:F4:01:38:D7:A8:C6:D4:7D:11:42:13:B0:E2:44:C4:0E:6C:27
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3D7571462F26964B213FC8A4D585159C29445567
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS216405.roa
Signing time: Sat 06 Jun 2026 15:13:26 +0000
ROA not before: Sat 06 Jun 2026 15:08:26 +0000
ROA not after: Sat 05 Jun 2027 15:13:26 +0000
asID: 216405
IP address blocks: 2a13:9500:18d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:75:71:46:2f:26:96:4b:21:3f:c8:a4:d5:85:15:9c:29:44:55:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 6 15:08:26 2026 GMT
Not After : Jun 5 15:13:26 2027 GMT
Subject: CN=714EF40138D7A8C6D47D114213B0E244C40E6C27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:eb:4a:b5:f9:d2:c9:5b:f5:3a:a7:f7:99:4e:
7f:44:da:5c:62:6c:10:4d:d6:ab:16:6a:2f:33:19:
8a:ab:39:62:57:8f:dd:77:17:a5:df:5c:ce:95:7c:
f2:31:45:80:df:b0:af:2c:34:07:4c:af:35:d3:dc:
6c:2f:03:db:e9:73:ff:48:15:b6:50:e7:72:0b:da:
27:cb:3c:10:33:e4:57:23:d0:a5:8a:16:9f:02:75:
14:87:0b:45:54:9f:58:64:ae:b7:80:c9:4b:61:6e:
a2:36:d0:06:57:97:b5:8f:c6:e6:44:a1:fa:95:9a:
f0:f3:e2:8f:9b:e0:33:8e:71:52:76:ad:ae:2d:f6:
3e:4f:12:b6:0f:cd:9a:b5:15:6b:41:95:9d:a1:79:
eb:c3:b1:a3:7d:68:af:9d:d4:a6:90:e9:b9:7c:f0:
7a:fd:de:cd:8f:89:1b:30:60:53:e3:1a:1c:8b:a1:
91:f2:2d:a8:f3:4c:bc:68:80:b8:fe:6b:88:d5:c6:
b3:45:52:a5:e9:6d:7a:ab:a6:76:15:13:72:7f:79:
e8:41:ab:ab:a4:ca:db:c8:b8:dc:dc:bb:b4:50:b0:
3f:d6:80:fb:d2:1b:b4:12:ae:cf:3c:1f:ee:ed:3c:
57:b7:c7:b5:12:0c:3a:ec:08:4e:0a:2f:2b:8d:91:
5a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:4E:F4:01:38:D7:A8:C6:D4:7D:11:42:13:B0:E2:44:C4:0E:6C:27
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS216405.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:18d::/48
Signature Algorithm: sha256WithRSAEncryption
12:79:88:94:55:0c:aa:dd:e2:c8:3d:75:42:c7:f9:17:f3:06:
07:01:24:ac:12:63:dd:52:69:40:80:7b:ce:21:92:32:4b:ba:
7b:c5:a3:c5:1e:e0:a7:57:58:36:9d:0c:5d:ae:39:f0:fb:5b:
ed:26:05:c6:27:2c:e0:59:ff:cc:2d:c7:1e:83:8d:97:e5:27:
fc:19:2d:31:f5:59:06:ba:01:16:54:0c:e5:6c:bc:9b:5e:df:
16:2e:9e:3a:c4:5f:51:7c:93:a6:82:cd:e0:1c:ff:8c:f2:84:
0f:7a:ff:d4:37:d0:d7:8e:f2:02:eb:4a:88:c3:0c:73:af:85:
15:f4:a7:0b:61:81:04:a9:09:ef:32:45:69:ac:39:3a:7e:20:
b1:70:f5:e4:b9:00:19:78:6d:b2:0f:84:e4:a5:0e:36:25:6a:
fa:84:eb:71:c8:5a:25:bc:4b:a2:5f:f2:19:61:87:3a:ff:32:
7a:73:85:e0:2a:be:ec:23:0c:32:2c:32:b0:6a:66:df:04:b6:
1b:f3:16:da:4c:5f:df:35:ae:32:09:6c:04:5a:2f:05:89:c9:
e3:ef:bc:6b:aa:b3:85:f2:79:13:01:06:3e:41:bc:54:6d:c1:
91:40:2c:a4:ef:6f:3e:76:7e:f0:de:db:89:74:e9:c6:9f:4e:
d3:0a:c6:7d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIUPXVxRi8mlkshP8ik1YUVnClEVWcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA2MDYxNTA4MjZaFw0yNzA2MDUxNTEzMjZaMDMxMTAvBgNV
BAMTKDcxNEVGNDAxMzhEN0E4QzZENDdEMTE0MjEzQjBFMjQ0QzQwRTZDMjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk60q1+dLJW/U6p/eZTn9E2lxi
bBBN1qsWai8zGYqrOWJXj913F6XfXM6VfPIxRYDfsK8sNAdMrzXT3GwvA9vpc/9I
FbZQ53IL2ifLPBAz5Fcj0KWKFp8CdRSHC0VUn1hkrreAyUthbqI20AZXl7WPxuZE
ofqVmvDz4o+b4DOOcVJ2ra4t9j5PErYPzZq1FWtBlZ2heevDsaN9aK+d1KaQ6bl8
8Hr93s2PiRswYFPjGhyLoZHyLajzTLxogLj+a4jVxrNFUqXpbXqrpnYVE3J/eehB
q6ukytvIuNzcu7RQsD/WgPvSG7QSrs88H+7tPFe3x7USDDrsCE4KLyuNkVqtAgMB
AAGjggINMIICCTAdBgNVHQ4EFgQUcU70ATjXqMbUfRFCE7DiRMQObCcwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE2NDA1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhOV
AAGNMA0GCSqGSIb3DQEBCwUAA4IBAQASeYiUVQyq3eLIPXVCx/kX8wYHASSsEmPd
UmlAgHvOIZIyS7p7xaPFHuCnV1g2nQxdrjnw+1vtJgXGJyzgWf/MLcceg42X5Sf8
GS0x9VkGugEWVAzlbLybXt8WLp46xF9RfJOmgs3gHP+M8oQPev/UN9DXjvIC60qI
wwxzr4UV9KcLYYEEqQnvMkVprDk6fiCxcPXkuQAZeG2yD4TkpQ42JWr6hOtxyFol
vEuiX/IZYYc6/zJ6c4XgKr7sIwwyLDKwambfBLYb8xbaTF/fNa4yCWwEWi8Ficnj
77xrqrOF8nkTAQY+QbxUbcGRQCyk728+dn7w3tuJdOnGn07TCsZ9
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:39:32 2026 by rpki-client