Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
File: AS272696.roa (raw, json)
Hash identifier: jOIiqHSWCeik0Tznu9xpvvNoWtNmscDaoNxaADdmQVY=
Subject key identifier: 73:B3:8F:DC:EC:5B:23:73:53:A0:37:1C:1C:94:C4:24:BE:F2:85:27
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4D2C6658C5D67FD292B9721A99F1083446FB5DC1
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
Signing time: Wed 15 Apr 2026 20:07:53 +0000
ROA not before: Wed 15 Apr 2026 20:02:53 +0000
ROA not after: Wed 14 Apr 2027 20:07:53 +0000
asID: 272696
IP address blocks: 82.27.17.0/24 maxlen: 24
82.38.173.0/24 maxlen: 24
178.83.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2c:66:58:c5:d6:7f:d2:92:b9:72:1a:99:f1:08:34:46:fb:5d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 15 20:02:53 2026 GMT
Not After : Apr 14 20:07:53 2027 GMT
Subject: CN=73B38FDCEC5B237353A0371C1C94C424BEF28527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2c:9c:bc:e7:96:e7:e4:1a:9e:69:2c:e0:e9:
3e:18:00:6d:32:06:e7:61:3c:76:d1:2f:ae:4b:ba:
0b:d5:72:e1:71:b9:dd:3b:d4:e6:44:d3:43:4d:50:
e1:c6:ee:2f:ad:31:58:6d:a3:f5:17:5c:1e:d1:c9:
fc:e6:bd:63:ba:e1:24:d4:58:21:d3:06:37:83:7b:
00:97:e8:9d:33:19:76:80:60:b9:8d:5e:83:87:b8:
4b:69:af:48:4d:b3:e3:cf:6c:4a:ea:1d:32:42:aa:
78:5e:b1:ce:69:cc:e9:15:c2:75:22:95:97:fd:90:
67:81:b3:f5:c7:5d:0f:89:36:ea:d0:94:fd:51:ac:
55:b1:e0:45:52:2d:18:15:8e:d8:1e:69:07:35:c8:
4c:59:44:c5:85:f6:11:5b:18:36:6b:14:08:78:55:
3e:2c:47:cb:a9:6f:8f:aa:7e:75:f4:7a:c7:2a:50:
19:fe:0c:aa:a7:2b:36:76:a5:16:7b:da:83:c0:cd:
30:e0:46:67:e4:59:95:53:7e:c0:06:8d:58:12:fe:
2e:6f:10:09:27:25:41:cc:f5:68:24:a9:f2:50:51:
ac:9f:00:f6:ba:5d:c4:14:24:21:98:2b:9f:6b:49:
38:74:29:05:69:f8:e1:15:a8:7c:79:66:8c:48:9a:
c2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B3:8F:DC:EC:5B:23:73:53:A0:37:1C:1C:94:C4:24:BE:F2:85:27
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.27.17.0/24
82.38.173.0/24
178.83.141.0/24
Signature Algorithm: sha256WithRSAEncryption
29:0b:4c:56:e9:52:b4:28:bb:19:36:65:d0:3a:f0:3b:f3:e0:
53:e4:c5:b5:44:59:b1:4c:89:d3:2e:60:c4:4d:e9:04:4f:77:
b8:43:22:6e:f0:e9:1c:bc:45:bb:bf:70:1e:c7:7a:ac:1f:64:
bb:22:5b:5b:d5:3f:0a:e6:9f:2a:11:38:9b:2f:e4:00:fe:e2:
47:b7:83:fc:1f:23:99:b8:e5:3c:62:d8:e6:ac:67:1e:7b:82:
f4:8e:34:29:d1:47:89:14:85:29:86:29:b2:95:7e:46:5d:88:
77:90:37:2a:50:dd:9b:32:1e:a8:d1:d9:19:92:14:25:94:22:
28:44:10:48:76:51:fd:cc:2a:84:78:68:c5:52:3d:22:c9:1f:
23:9c:69:42:8e:64:8e:c9:27:6c:91:4f:1e:01:16:f4:3b:e0:
1d:61:2c:63:f3:70:b4:14:22:ae:11:b8:27:3d:37:3a:d0:24:
64:87:5c:72:6b:08:04:4e:22:c6:80:74:92:a4:99:af:5e:c6:
aa:48:f4:79:50:77:a9:d6:8d:9b:21:10:ce:00:0e:47:21:a3:
a9:19:56:94:33:9b:ad:46:e4:b4:d4:dd:ad:9d:64:7a:d9:c4:
dd:c2:61:65:c3:cc:4c:f9:a4:10:56:8d:25:41:9f:00:c4:37:
cb:a0:24:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:01:45 2026 by rpki-client