Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272045.roa
File: AS272045.roa (raw, json)
Hash identifier: XBp/BEt2VwMAGAR4taYInkG9+OmC3QEPjgm/z6JE/eI=
Subject key identifier: 46:0A:0E:90:F0:AE:31:1A:17:B8:2E:A0:B0:58:42:0F:E5:E4:CD:CF
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6368506FBAAD15BB382545B6CD0C8C03351100C9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272045.roa
Signing time: Sat 06 Jun 2026 07:47:29 +0000
ROA not before: Sat 06 Jun 2026 07:42:29 +0000
ROA not after: Sat 05 Jun 2027 07:47:29 +0000
asID: 272045
IP address blocks: 2a13:9500:a5::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:68:50:6f:ba:ad:15:bb:38:25:45:b6:cd:0c:8c:03:35:11:00:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 6 07:42:29 2026 GMT
Not After : Jun 5 07:47:29 2027 GMT
Subject: CN=460A0E90F0AE311A17B82EA0B058420FE5E4CDCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e2:b7:0e:be:57:9d:3a:d7:85:9c:25:7c:a1:
6d:79:6d:60:0b:92:a3:76:f3:bd:5d:03:21:ea:7c:
51:4a:ea:d4:90:56:0c:6c:a1:24:c7:48:ac:e5:85:
37:62:a2:bf:d2:0f:7b:cb:cb:a5:3b:76:e5:3e:41:
d1:25:c5:14:6d:68:0f:ba:1d:e3:01:a9:07:40:3a:
92:43:d5:fe:4e:87:7f:8f:dd:3e:96:ec:61:d2:b3:
bb:d7:e6:10:cb:f8:08:70:f7:cf:c2:ef:bb:ca:5b:
95:cb:7c:2b:5b:b3:19:bc:80:ae:f1:a0:ff:d6:ac:
98:d8:e8:3e:df:74:ea:33:1c:03:dd:7d:43:0d:5c:
be:56:f6:85:50:44:9b:5b:d3:74:07:bf:be:81:0b:
76:15:c8:04:02:06:92:3a:6b:aa:ef:d1:61:d9:5d:
ca:5e:62:91:1e:3b:9f:17:b6:0d:6b:02:9c:67:f8:
d7:65:57:27:59:45:f1:62:46:94:7d:62:e5:18:86:
98:47:d3:15:4a:8f:31:e3:a4:f8:3a:e6:e7:e2:c9:
21:5b:b0:a3:6b:33:6c:54:76:e3:a7:c3:42:e4:76:
e2:72:d8:45:58:cf:78:e4:3c:34:38:ac:a6:ac:18:
4a:c5:69:9e:06:b1:85:7b:dd:6d:90:4e:c8:a2:37:
92:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0A:0E:90:F0:AE:31:1A:17:B8:2E:A0:B0:58:42:0F:E5:E4:CD:CF
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272045.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:a5::/48
Signature Algorithm: sha256WithRSAEncryption
34:5b:d8:1c:ae:7d:28:3d:2c:e8:da:e3:5a:32:10:4a:8a:99:
9c:8f:aa:5c:77:89:de:a0:19:76:3c:df:9a:c0:44:7b:7e:66:
31:b7:6d:81:58:ed:1b:93:a7:b9:95:28:c7:d6:f0:02:f5:4b:
49:e3:30:b8:bb:0c:fe:2e:98:02:d0:31:78:0e:b0:4a:83:80:
cd:b5:ae:ea:bf:05:6b:c7:f7:4b:3d:93:0f:a0:16:be:1b:15:
f0:bf:67:cb:ba:56:93:f9:75:1a:3f:36:3d:d3:a6:dd:35:a6:
90:cc:eb:ad:9c:e6:f7:33:8a:f4:d6:3e:6b:a2:f9:bb:71:9f:
bc:49:49:5f:c4:91:41:96:d9:c0:d3:cb:9a:7a:08:3d:23:a7:
7d:ec:1d:04:03:d2:aa:a4:59:d2:d1:48:87:3c:44:4e:64:cd:
ef:3e:4f:57:43:1e:e5:82:3d:23:1a:dd:a4:69:00:29:4a:22:
fd:23:a4:9e:98:a9:ae:4c:bd:f4:c4:65:28:97:ab:4f:4b:7e:
1f:8f:70:18:c0:f6:cf:57:ab:32:ca:c8:f7:2b:9c:3c:86:84:
b0:09:6c:4f:b9:3c:ea:8f:54:24:38:7d:b9:5c:f3:9f:0f:ca:
c5:9c:0e:14:37:69:38:25:1b:6d:74:44:7f:8b:21:1e:51:f1:
6b:48:64:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:42:47 2026 by rpki-client