Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29066.roa
File: AS29066.roa (raw, json)
Hash identifier: ICTkcemC0ItA22iWGQps0UlADomaW0b0jeQIgPwWje0=
Subject key identifier: BF:6B:10:26:0F:2C:7B:83:CA:E3:D9:C1:46:76:52:FA:C0:61:4F:97
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 2FCA937D5DFE216F80061B6FB32E1DA3EF532E5E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29066.roa
Signing time: Mon 13 Apr 2026 22:13:31 +0000
ROA not before: Mon 13 Apr 2026 22:08:31 +0000
ROA not after: Mon 12 Apr 2027 22:13:31 +0000
asID: 29066
IP address blocks: 82.39.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:ca:93:7d:5d:fe:21:6f:80:06:1b:6f:b3:2e:1d:a3:ef:53:2e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 13 22:08:31 2026 GMT
Not After : Apr 12 22:13:31 2027 GMT
Subject: CN=BF6B10260F2C7B83CAE3D9C1467652FAC0614F97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:92:2f:45:ef:5d:c7:cf:41:56:4f:5b:0b:e4:
74:fb:8f:07:53:77:8c:44:42:7b:8c:3d:a3:73:bc:
38:2b:8f:4f:c3:be:7f:a1:be:bd:93:d4:b2:3a:8a:
c5:82:ba:a8:92:0a:3a:a5:87:c2:aa:5a:87:d9:d7:
2a:5e:7f:1b:9b:00:3a:4a:01:7a:96:2c:22:98:00:
4a:51:c3:4d:eb:f5:2d:8f:be:46:d6:ec:84:a4:f4:
49:5d:5f:c4:de:9d:22:0e:b3:ba:6a:0a:2f:1b:22:
61:1f:4d:56:46:16:99:c2:80:6e:99:7e:66:bd:ea:
e4:2c:3c:0f:0d:cd:bc:cc:e7:d3:9e:f6:8e:d6:d7:
9d:e7:ee:3d:47:21:4d:70:46:60:f8:bb:1d:48:b4:
88:08:13:fb:63:5a:9e:74:4c:e8:52:91:01:80:91:
9a:3e:6f:b0:45:a2:b5:8b:5e:5f:fc:54:32:ca:6f:
50:af:0a:48:13:a3:95:62:72:c6:b6:90:45:7e:a8:
6c:46:41:b2:d1:57:37:d0:dd:95:78:4b:f7:be:ef:
69:2c:3c:04:17:f9:37:6a:46:ff:4c:dd:4e:77:95:
5d:3f:6d:1f:eb:2e:19:a6:bc:c2:e1:b0:a7:57:bf:
20:69:ae:bf:60:6c:21:57:64:6b:07:20:c9:38:b6:
0f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6B:10:26:0F:2C:7B:83:CA:E3:D9:C1:46:76:52:FA:C0:61:4F:97
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS29066.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.39.93.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e7:c1:1d:ee:8d:d6:04:97:65:79:6e:0a:85:65:b5:94:fb:
41:2f:1a:00:11:f4:dd:e2:a9:f8:1b:03:16:33:26:8c:37:5a:
b3:f9:1b:ca:2b:1e:97:e6:67:74:90:af:04:6a:68:68:7a:e9:
45:c7:77:24:2f:78:b6:d7:8b:91:64:d4:af:95:75:48:2f:8c:
c1:1d:4b:9f:c5:5b:4f:84:e6:b9:0c:b5:08:ba:28:ac:26:71:
1f:42:14:05:71:18:7b:0f:dd:c1:97:b6:78:be:d0:72:0f:a8:
f1:ad:25:e7:91:86:06:97:ed:9d:4c:5b:9c:aa:3a:8f:6a:45:
b3:9e:5f:57:31:b9:c9:e2:c4:94:bc:87:b3:25:aa:aa:ef:74:
6b:28:ca:95:59:32:b0:ac:36:27:9b:a3:20:42:8f:91:da:15:
e8:77:ad:64:9c:92:03:df:d0:58:6f:a8:db:a1:b1:35:ef:f7:
f9:41:59:70:6a:81:5b:8e:4a:81:3d:80:9f:8f:9f:df:7e:eb:
28:f3:f7:a9:7c:c6:25:bc:91:ca:0d:5b:0c:82:be:ab:46:fa:
e8:99:2e:c4:b4:6b:a8:d9:d1:23:1d:1b:eb:d5:2a:8b:40:14:
86:5a:74:fd:f2:1a:7d:75:00:b9:a9:06:6f:86:6f:7f:11:d7:
9e:85:53:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:46:53 2026 by rpki-client