Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS393942.roa
File: AS393942.roa (raw, json)
Hash identifier: GeD6ODhimDyw7Yt48GjKwFdpbJl8SSicuEcPAL8h5Zc=
Subject key identifier: 1A:6C:B1:5A:ED:52:5E:3E:EB:67:47:EA:06:30:CE:98:C0:37:EA:5D
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 67B4EC0185FE99EB111F5F177E304D021B47E056
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS393942.roa
Signing time: Tue 07 Apr 2026 06:17:02 +0000
ROA not before: Tue 07 Apr 2026 06:12:02 +0000
ROA not after: Tue 06 Apr 2027 06:17:02 +0000
asID: 393942
IP address blocks: 178.83.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:b4:ec:01:85:fe:99:eb:11:1f:5f:17:7e:30:4d:02:1b:47:e0:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 7 06:12:02 2026 GMT
Not After : Apr 6 06:17:02 2027 GMT
Subject: CN=1A6CB15AED525E3EEB6747EA0630CE98C037EA5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:09:47:62:f7:0c:e5:08:db:f0:ac:b3:46:
5e:a1:3b:6f:94:c2:7a:55:c4:00:32:3c:fb:45:76:
27:72:cf:a0:63:a3:0d:b3:40:e7:5f:f6:0d:f4:28:
6a:8a:5e:af:55:22:a0:ac:69:95:6c:9f:5d:92:f4:
12:fe:f2:84:11:45:47:c1:53:b3:84:8b:af:7b:5c:
f3:34:10:9f:4e:b5:c5:24:45:51:8e:38:dc:3e:dd:
12:07:6e:4d:71:5b:0e:04:06:2d:92:d7:1d:28:68:
30:40:dd:a3:c5:7a:68:03:24:b5:9a:75:d6:2a:e7:
2d:e1:ef:7e:06:44:f8:e2:a8:c1:d4:21:cc:4d:df:
72:d2:46:dd:10:67:53:85:2f:f4:d8:62:e6:ef:09:
51:0c:02:02:4e:83:ca:23:f7:c1:ac:54:84:af:05:
a6:7a:c9:0c:e8:3f:fa:11:2f:d7:82:58:14:d4:b2:
3a:fb:71:08:14:1f:16:f3:28:4b:ce:1c:f0:0c:48:
4c:87:c8:cd:e7:fc:b9:bd:19:60:de:96:66:29:78:
06:81:e6:99:d3:bb:86:f1:cf:52:93:b8:cd:d1:10:
b8:2d:30:df:09:d6:f5:33:85:1a:1b:77:62:a7:56:
c4:a0:65:ae:ce:2f:c8:7d:27:a0:97:46:31:d4:c7:
58:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:6C:B1:5A:ED:52:5E:3E:EB:67:47:EA:06:30:CE:98:C0:37:EA:5D
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS393942.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.65.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:0d:92:d3:f8:f9:04:84:0e:e4:a3:4f:2f:6d:6b:e3:17:95:
14:eb:44:ed:5d:12:70:81:ad:9e:c7:7c:c7:a0:3e:54:11:72:
b0:c9:ce:ca:a5:77:09:8a:71:f7:c5:a3:28:46:ee:ae:ad:40:
ec:72:98:69:60:b4:14:47:4c:c6:30:dd:71:3c:5d:8d:49:fc:
a7:df:4a:d4:0f:5f:89:8c:50:de:fe:63:6f:ab:fa:de:36:b2:
68:91:87:6e:57:9f:c6:86:53:26:29:3f:29:b9:f1:66:45:8c:
38:6a:51:5d:5d:0b:91:d4:b9:b6:29:28:84:ec:e1:90:d0:b2:
55:b8:d8:1a:6d:57:89:e3:c8:2d:de:b7:be:f2:dd:9c:06:6c:
9f:55:b3:72:38:88:c7:84:56:c5:9d:1d:d1:d1:79:3e:ab:57:
b0:2e:ce:89:79:ed:67:ea:f4:0d:79:61:ce:2f:b2:45:fc:6c:
65:11:1e:4c:c7:cc:38:19:5d:3d:9c:8f:95:31:b1:6e:3a:a8:
f8:4f:16:1b:e0:0f:e5:c0:99:b2:33:d6:ab:d8:7a:9c:f4:10:
65:14:ab:48:50:ec:39:8f:ac:55:53:ef:27:3e:67:b4:6d:2f:
df:02:99:92:cf:f8:92:35:d4:63:36:f0:8c:04:b8:c1:e0:f8:
84:3f:8c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:59:03 2026 by rpki-client