Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: fRjvA6MKQ7PbZzfGfB3N9qzLIhTkHz9rqfdFFv+A7h4=
Subject key identifier: 97:10:CA:97:56:B6:64:11:9D:30:09:4F:96:D4:1A:EA:8C:12:1B:0A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 21FFADA20990C835CDFAF826ED20ABDBA12306AD
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
Signing time: Wed 10 Jun 2026 10:43:37 +0000
ROA not before: Wed 10 Jun 2026 10:38:37 +0000
ROA not after: Wed 09 Jun 2027 10:43:37 +0000
asID: 2914
IP address blocks: 82.21.98.0/24 maxlen: 24
82.21.99.0/24 maxlen: 24
82.26.139.0/24 maxlen: 24
82.26.142.0/24 maxlen: 24
82.26.143.0/24 maxlen: 24
82.26.144.0/24 maxlen: 24
82.29.48.0/24 maxlen: 24
82.38.12.0/24 maxlen: 24
82.38.62.0/24 maxlen: 24
82.38.93.0/24 maxlen: 24
82.38.94.0/24 maxlen: 24
82.38.95.0/24 maxlen: 24
82.38.98.0/24 maxlen: 24
82.38.113.0/24 maxlen: 24
82.38.120.0/24 maxlen: 24
82.38.131.0/24 maxlen: 24
82.38.144.0/24 maxlen: 24
82.38.145.0/24 maxlen: 24
82.38.146.0/24 maxlen: 24
82.38.151.0/24 maxlen: 24
82.38.169.0/24 maxlen: 24
82.38.172.0/24 maxlen: 24
82.38.175.0/24 maxlen: 24
82.38.181.0/24 maxlen: 24
82.39.164.0/24 maxlen: 24
82.47.30.0/24 maxlen: 24
82.47.40.0/24 maxlen: 24
82.47.43.0/24 maxlen: 24
82.47.44.0/24 maxlen: 24
82.47.53.0/24 maxlen: 24
82.47.107.0/24 maxlen: 24
82.47.110.0/24 maxlen: 24
82.47.111.0/24 maxlen: 24
82.47.113.0/24 maxlen: 24
82.47.116.0/24 maxlen: 24
82.47.118.0/24 maxlen: 24
82.47.119.0/24 maxlen: 24
82.47.122.0/24 maxlen: 24
82.47.135.0/24 maxlen: 24
82.47.151.0/24 maxlen: 24
82.47.156.0/24 maxlen: 24
82.47.163.0/24 maxlen: 24
82.47.173.0/24 maxlen: 24
82.47.178.0/24 maxlen: 24
82.47.183.0/24 maxlen: 24
82.47.209.0/24 maxlen: 24
82.47.210.0/24 maxlen: 24
82.47.213.0/24 maxlen: 24
82.47.215.0/24 maxlen: 24
82.47.223.0/24 maxlen: 24
82.47.248.0/24 maxlen: 24
84.75.128.0/24 maxlen: 24
84.75.131.0/24 maxlen: 24
84.75.136.0/24 maxlen: 24
84.75.137.0/24 maxlen: 24
84.75.147.0/24 maxlen: 24
84.75.163.0/24 maxlen: 24
84.75.167.0/24 maxlen: 24
84.75.168.0/24 maxlen: 24
84.75.173.0/24 maxlen: 24
84.75.208.0/24 maxlen: 24
84.75.244.0/24 maxlen: 24
84.75.245.0/24 maxlen: 24
178.83.116.0/24 maxlen: 24
178.83.119.0/24 maxlen: 24
178.83.155.0/24 maxlen: 24
178.83.160.0/24 maxlen: 24
178.83.162.0/24 maxlen: 24
178.83.170.0/24 maxlen: 24
178.83.177.0/24 maxlen: 24
178.83.179.0/24 maxlen: 24
178.83.184.0/24 maxlen: 24
178.83.189.0/24 maxlen: 24
178.83.193.0/24 maxlen: 24
178.83.194.0/24 maxlen: 24
178.83.202.0/24 maxlen: 24
178.83.204.0/24 maxlen: 24
178.83.212.0/24 maxlen: 24
178.83.213.0/24 maxlen: 24
178.83.214.0/24 maxlen: 24
178.83.223.0/24 maxlen: 24
178.83.227.0/24 maxlen: 24
178.83.241.0/24 maxlen: 24
178.83.246.0/24 maxlen: 24
178.83.247.0/24 maxlen: 24
178.83.253.0/24 maxlen: 24
178.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:ff:ad:a2:09:90:c8:35:cd:fa:f8:26:ed:20:ab:db:a1:23:06:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 10 10:38:37 2026 GMT
Not After : Jun 9 10:43:37 2027 GMT
Subject: CN=9710CA9756B664119D30094F96D41AEA8C121B0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:50:92:c2:42:30:4a:2b:da:bf:7d:25:2c:
8e:52:dd:e3:ea:0b:44:89:c0:1d:70:b7:bc:63:17:
d7:f3:c0:3d:cf:ad:5e:2d:7d:42:de:5f:98:3e:e1:
c9:73:1e:3d:11:25:ed:80:39:fe:24:eb:b5:cb:a9:
81:d4:b2:99:98:5b:b8:8d:a3:5c:20:bc:a6:a8:c2:
71:2b:e4:8b:72:9d:fe:d1:48:52:5d:a5:04:c2:36:
5a:ec:97:1e:49:55:cb:78:3c:38:fe:f2:a6:ec:ad:
d1:d0:7b:38:00:20:5b:2c:5e:58:61:1b:41:22:b9:
d6:c6:39:ef:c9:67:0d:dc:75:ac:dd:17:86:ac:b9:
24:3e:58:6c:e9:1d:a6:4d:31:b0:36:ce:6e:77:71:
30:85:5e:f0:58:c2:42:4a:23:50:6b:7b:62:5b:24:
e3:6f:91:0f:64:0a:62:18:50:19:24:e9:10:42:0c:
4f:98:db:5b:2d:c9:42:a7:06:85:22:6f:a0:45:f2:
57:3e:ed:ef:95:2f:95:36:44:43:53:f7:2a:4e:6e:
15:1d:13:1a:42:14:03:75:03:66:08:31:84:28:ca:
80:64:7a:18:1f:89:63:37:b1:81:fd:ed:bf:5d:60:
65:1f:c8:0a:a6:e5:83:64:ac:c7:2c:a6:0b:8c:fc:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:10:CA:97:56:B6:64:11:9D:30:09:4F:96:D4:1A:EA:8C:12:1B:0A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.98.0/23
82.26.139.0/24
82.26.142.0-82.26.144.255
82.29.48.0/24
82.38.12.0/24
82.38.62.0/24
82.38.93.0-82.38.95.255
82.38.98.0/24
82.38.113.0/24
82.38.120.0/24
82.38.131.0/24
82.38.144.0-82.38.146.255
82.38.151.0/24
82.38.169.0/24
82.38.172.0/24
82.38.175.0/24
82.38.181.0/24
82.39.164.0/24
82.47.30.0/24
82.47.40.0/24
82.47.43.0-82.47.44.255
82.47.53.0/24
82.47.107.0/24
82.47.110.0/23
82.47.113.0/24
82.47.116.0/24
82.47.118.0/23
82.47.122.0/24
82.47.135.0/24
82.47.151.0/24
82.47.156.0/24
82.47.163.0/24
82.47.173.0/24
82.47.178.0/24
82.47.183.0/24
82.47.209.0-82.47.210.255
82.47.213.0/24
82.47.215.0/24
82.47.223.0/24
82.47.248.0/24
84.75.128.0/24
84.75.131.0/24
84.75.136.0/23
84.75.147.0/24
84.75.163.0/24
84.75.167.0-84.75.168.255
84.75.173.0/24
84.75.208.0/24
84.75.244.0/23
178.83.116.0/24
178.83.119.0/24
178.83.155.0/24
178.83.160.0/24
178.83.162.0/24
178.83.170.0/24
178.83.177.0/24
178.83.179.0/24
178.83.184.0/24
178.83.189.0/24
178.83.193.0-178.83.194.255
178.83.202.0/24
178.83.204.0/24
178.83.212.0-178.83.214.255
178.83.223.0/24
178.83.227.0/24
178.83.241.0/24
178.83.246.0/23
178.83.253.0-178.83.254.255
Signature Algorithm: sha256WithRSAEncryption
84:69:12:67:88:0b:de:dd:3b:70:06:df:8f:65:99:ad:23:ad:
b7:78:83:e3:b6:13:e9:23:be:f3:67:61:3b:ef:b1:2d:55:7b:
ad:26:4a:f2:ef:95:60:d6:b6:29:38:7a:38:cb:21:bb:99:25:
69:b6:22:f2:73:b3:97:1c:75:ec:91:b8:f3:90:b3:68:9f:d3:
4e:21:28:5c:a1:53:7f:89:a2:9f:8e:cf:e9:f2:06:78:e2:e8:
5e:91:06:3f:1b:ed:fb:09:11:3b:e1:32:93:83:c1:6b:83:84:
37:5d:8b:e1:8d:d5:83:88:ac:5a:10:a0:63:44:53:2f:26:77:
ac:df:01:83:36:1d:27:0c:60:0a:ee:6f:bd:6f:7f:ab:d0:aa:
66:bc:c5:47:81:1a:6c:ec:9b:3a:be:17:19:02:89:7f:7b:ae:
04:20:e4:bd:1e:75:e3:f8:59:66:bf:76:14:4c:6f:1f:2c:17:
8a:15:a2:88:42:a4:05:51:c8:70:a1:1a:ee:f1:22:59:81:25:
ba:db:49:6d:9c:c0:b9:5f:67:b7:1a:8c:bc:3f:02:e4:a3:cb:
ad:7f:1b:24:aa:f1:24:29:f7:63:f6:23:f2:7e:67:53:fa:f8:
c3:8c:17:a9:2f:45:ad:d1:43:fc:a1:3a:a3:79:61:ca:c7:75:
66:a7:f8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:41:57 2026 by rpki-client