Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS26737.roa
File: AS26737.roa (raw, json)
Hash identifier: /XR+61j+744SyvGEHxBvFTjANBs0KFQfkY9pcTNAlzA=
Subject key identifier: 68:F0:41:18:38:57:CB:A6:15:13:F6:B5:BB:1F:04:D0:2C:F7:20:3B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 499646D0E8C30E44F3BD810C5928F9E0C1AEC403
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS26737.roa
Signing time: Mon 23 Feb 2026 12:55:39 +0000
ROA not before: Mon 23 Feb 2026 12:50:39 +0000
ROA not after: Mon 22 Feb 2027 12:55:39 +0000
asID: 26737
IP address blocks: 82.29.28.0/24 maxlen: 24
82.29.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:96:46:d0:e8:c3:0e:44:f3:bd:81:0c:59:28:f9:e0:c1:ae:c4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 23 12:50:39 2026 GMT
Not After : Feb 22 12:55:39 2027 GMT
Subject: CN=68F041183857CBA61513F6B5BB1F04D02CF7203B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:62:d2:94:4d:98:53:58:79:c2:05:e4:7e:7e:
37:32:bd:71:bc:ae:f6:37:7b:17:27:63:0a:af:fd:
08:a5:98:e2:63:fb:e5:13:8e:f7:60:a5:ab:53:0f:
46:c7:3a:ef:cf:bc:94:4f:d8:78:ca:91:ce:6d:3a:
bd:52:13:0c:16:50:0a:79:1a:d0:6e:42:84:ad:aa:
90:f7:48:d8:bd:15:b8:f4:89:3a:f9:fd:34:24:da:
93:06:f4:84:c5:91:cb:bc:52:b9:48:f1:83:28:15:
87:7e:8e:60:28:e7:13:93:8f:14:b4:d2:39:35:21:
9d:e8:0f:3d:89:c3:f7:47:0a:05:ef:fd:bd:68:56:
6c:c1:01:94:b4:b2:52:36:56:cb:4f:c6:e8:ad:c9:
a2:cc:2a:19:35:dd:24:84:b8:a1:80:68:54:2d:0c:
f8:65:2d:be:58:4a:d1:da:34:e6:e5:7f:8b:c4:24:
61:d3:38:5a:dc:e2:d3:8e:5d:b5:68:96:96:cb:03:
94:5e:f3:1f:37:bd:16:a9:81:51:10:f0:81:63:4b:
e0:28:32:0e:ad:f4:3c:b5:64:d6:6a:6f:d7:0c:7d:
ca:4e:39:2a:83:ca:7f:0a:37:48:77:34:69:92:8f:
e2:3a:68:43:67:a5:5d:e1:06:33:ed:64:e8:a2:26:
bb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F0:41:18:38:57:CB:A6:15:13:F6:B5:BB:1F:04:D0:2C:F7:20:3B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS26737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.28.0/24
82.29.93.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:79:d0:47:85:e9:2c:9c:a5:a6:fa:fe:db:18:8f:2f:08:1d:
a1:5a:53:5d:2a:30:86:16:db:4e:81:96:76:44:d1:61:90:b9:
81:ae:48:9d:1a:5b:4a:2d:97:9b:2d:41:e4:c9:07:ea:71:48:
04:42:0d:01:53:33:e6:0e:d4:cf:12:62:2d:9b:7d:49:e8:79:
d3:78:dc:ea:e8:79:b6:6b:f7:26:ac:59:de:ba:27:fa:17:e8:
0b:ab:db:d4:9f:25:4e:1b:40:19:51:27:e6:94:66:61:54:23:
89:d5:6a:b1:42:ac:12:73:dd:71:81:0c:9f:1d:9b:97:d7:4d:
34:e6:a7:ed:4e:20:1a:77:e0:0e:c1:b8:1d:e1:36:0c:aa:cc:
aa:fc:4a:e0:28:55:85:96:6f:ea:e8:5c:98:51:00:4c:25:4a:
c6:64:d5:bb:d7:b6:4d:db:90:09:fd:de:dc:7a:fd:89:c9:48:
39:04:1f:54:58:dd:3e:dd:bf:90:48:45:06:68:bc:94:e7:d1:
c2:02:0c:65:90:e0:85:ce:b2:07:d7:06:8e:5e:14:ea:d2:56:
a0:05:66:b2:aa:2c:c4:d0:ac:53:1e:a0:99:78:ed:d5:9f:b7:
53:e7:be:d2:73:d5:39:af:20:a6:58:ab:96:28:66:df:fb:7b:
69:3d:3c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:38:49 2026 by rpki-client