Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS396362.roa
File: AS396362.roa (raw, json)
Hash identifier: ZJwf8df+SuM6IS18JSzpqkl5veEA5lGPnS9mDlR1Wa0=
Subject key identifier: 48:F3:A1:04:F4:3D:82:C9:F6:D8:D4:F3:A3:C6:F3:B6:6B:B0:FE:56
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 65D38B67911E5824CF96B14A44904CBB26CAD18D
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS396362.roa
Signing time: Tue 14 Apr 2026 09:22:46 +0000
ROA not before: Tue 14 Apr 2026 09:17:46 +0000
ROA not after: Tue 13 Apr 2027 09:22:46 +0000
asID: 396362
IP address blocks: 84.75.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:d3:8b:67:91:1e:58:24:cf:96:b1:4a:44:90:4c:bb:26:ca:d1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 14 09:17:46 2026 GMT
Not After : Apr 13 09:22:46 2027 GMT
Subject: CN=48F3A104F43D82C9F6D8D4F3A3C6F3B66BB0FE56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:75:c6:d0:64:a2:c5:5b:c4:18:4c:c4:09:a1:
34:a5:82:42:39:16:3f:19:98:74:f6:46:59:f1:ce:
56:44:90:5c:b4:7a:21:1b:ba:ca:c6:68:6d:a5:d8:
ed:c8:31:b2:f3:fd:cc:9b:4f:19:b9:44:b3:34:9d:
0c:1a:0c:62:f4:f3:f3:24:0d:4d:c2:e8:bf:83:d0:
85:84:af:3f:09:39:69:d1:f6:87:ab:30:7d:c8:d2:
87:93:af:dc:b5:c5:93:f8:23:f4:4a:eb:19:3f:78:
9c:df:ae:12:e2:e4:f9:b0:e5:bf:55:35:3c:a9:37:
45:9f:1a:58:70:1c:9d:56:15:3a:8f:bc:43:ed:aa:
4b:93:20:d1:06:c6:55:91:1a:14:88:9b:3f:30:2f:
e1:a5:10:87:27:81:c5:76:92:b6:8a:9c:eb:97:35:
6e:b8:67:ad:a4:e2:a6:50:5c:14:30:6c:18:40:5e:
36:a7:5a:7d:4e:e9:59:09:3e:d3:8f:30:56:8a:ba:
4d:46:98:bf:4c:4d:fc:c9:93:68:59:d1:ff:7e:9a:
f8:4d:4c:ec:37:6c:5a:60:d9:90:ba:59:c5:5c:e3:
e9:b0:51:8c:97:9e:74:5d:56:b6:04:3b:60:3a:88:
11:79:ec:ae:1c:b1:66:83:f9:74:a9:39:7c:10:97:
c2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F3:A1:04:F4:3D:82:C9:F6:D8:D4:F3:A3:C6:F3:B6:6B:B0:FE:56
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS396362.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.194.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:81:45:5e:5d:97:ff:0b:d6:50:a2:33:22:1c:7b:46:ce:82:
ee:75:69:74:ae:29:e9:f0:ab:11:26:09:cf:77:2e:8c:76:f8:
fc:ca:b3:21:65:3b:b5:59:df:21:d1:4a:ab:12:a8:10:77:cc:
9e:99:d5:03:4e:01:58:6c:43:cc:6f:64:8a:71:b8:b4:ac:56:
50:9b:3a:b3:b0:e1:86:b8:5a:79:0c:f4:14:b7:aa:9a:15:1b:
61:26:84:55:5f:e0:a2:a9:6f:db:3a:29:04:44:26:ef:05:1c:
0b:be:20:64:2c:88:df:a5:54:a8:fd:d6:77:17:5b:92:cb:20:
a2:e6:c8:72:f4:cf:8f:c0:58:ef:e6:ef:3e:db:4e:94:b0:84:
20:19:7c:dd:ed:a1:92:ff:1a:e0:82:ea:88:b8:22:d0:b6:85:
d7:c0:84:2a:3e:f4:07:35:dd:2c:f8:d8:1e:90:fa:11:17:89:
19:63:02:71:25:85:35:be:7a:00:30:a6:29:50:6c:3a:72:56:
df:d1:08:53:b7:a7:92:0a:ef:2d:c5:60:0f:22:d8:8d:bf:36:
83:b4:39:35:1b:ae:00:2f:d1:74:60:eb:97:ce:86:8a:b1:24:
14:cc:c8:20:0d:93:d8:30:0f:c8:80:06:9e:19:56:ac:6b:a9:
19:b8:e0:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:02:29 2026 by rpki-client