Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
File: AS401776.roa (raw, json)
Hash identifier: 8s59rRcuhRgIgX2xdPPI7HbKz6rNAJ1uUExb4wFsnxE=
Subject key identifier: 91:4D:38:B2:30:26:7A:88:63:D4:28:32:C4:CC:34:D9:39:11:D1:03
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 52364265BE571C682A9A891D146D7D1C99E2B7D4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
Signing time: Sun 01 Mar 2026 05:41:56 +0000
ROA not before: Sun 01 Mar 2026 05:36:56 +0000
ROA not after: Sun 28 Feb 2027 05:41:56 +0000
asID: 401776
IP address blocks: 82.29.103.0/24 maxlen: 24
82.38.169.0/24 maxlen: 24
82.38.181.0/24 maxlen: 24
82.39.170.0/24 maxlen: 24
82.41.20.0/24 maxlen: 24
82.41.21.0/24 maxlen: 24
82.41.72.0/24 maxlen: 24
82.41.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:36:42:65:be:57:1c:68:2a:9a:89:1d:14:6d:7d:1c:99:e2:b7:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 1 05:36:56 2026 GMT
Not After : Feb 28 05:41:56 2027 GMT
Subject: CN=914D38B230267A8863D42832C4CC34D93911D103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0a:1a:0f:fb:13:8c:b8:54:a9:13:76:27:44:
7d:14:97:97:d9:27:81:90:8a:31:3d:7d:d6:f4:14:
00:94:18:33:6f:62:fe:4f:ab:87:59:f9:56:18:3b:
20:df:37:ef:d2:24:20:1f:92:0c:2c:6c:40:46:e9:
f5:8f:0c:60:7e:3b:ed:ba:8b:2c:28:e5:aa:40:4b:
6e:7c:5d:7f:2c:57:4e:89:3d:d2:7a:70:cf:ed:73:
f5:8b:24:ea:4a:cd:4e:96:36:b8:2a:bf:09:88:a0:
df:b9:47:6d:d1:46:70:56:9e:45:0c:ee:ab:eb:02:
e5:ab:50:b2:7c:a2:fa:7c:3d:70:43:3f:bb:97:b6:
81:ba:4d:65:91:d4:3d:b4:7f:5a:e5:d5:14:30:03:
61:8b:5e:83:6b:18:6f:35:3d:07:c2:40:41:28:52:
b2:3b:e0:29:82:11:cf:88:2c:39:a2:8b:be:93:b7:
53:ca:f5:0d:cb:af:85:57:f2:0c:c4:37:08:77:0e:
09:a4:5c:f2:ee:eb:e3:d0:b6:13:f5:73:2d:82:1d:
c6:a1:d9:fc:62:a9:98:ff:14:83:e9:b1:53:1d:c4:
28:da:7b:a9:a6:9c:e0:62:0a:0c:dd:4f:ce:75:86:
4e:02:c1:d5:b9:a9:15:78:58:58:09:0d:18:ab:7f:
4b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4D:38:B2:30:26:7A:88:63:D4:28:32:C4:CC:34:D9:39:11:D1:03
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.103.0/24
82.38.169.0/24
82.38.181.0/24
82.39.170.0/24
82.41.20.0/23
82.41.72.0/24
82.41.98.0/24
Signature Algorithm: sha256WithRSAEncryption
93:83:55:0b:c4:4e:30:69:b4:01:de:99:b9:79:9c:02:7c:bb:
60:9b:16:17:d6:d4:eb:3f:d2:b7:0f:83:a9:b0:4e:30:e2:ee:
48:7f:15:0c:d0:9c:b9:56:11:86:5d:d0:c3:c2:55:74:ea:bf:
c2:73:a0:5c:5e:2a:d3:44:52:f2:dc:29:13:51:10:8b:36:bf:
6f:c1:ca:82:fb:19:51:da:c1:26:f1:84:05:d4:f1:6f:67:43:
04:82:f9:72:8e:57:3f:59:1d:1c:21:9f:37:b7:bb:ec:1e:16:
8f:55:de:68:00:6c:97:ca:6e:1f:8c:2f:b0:b9:32:0f:e8:27:
c9:f4:7f:26:8b:7a:86:d1:e0:9b:8e:44:6a:13:8e:6e:09:f5:
a6:fc:ab:47:ef:a7:f7:cd:f5:d2:e8:d1:e5:41:11:d2:07:8f:
9c:b9:ab:a9:8a:44:71:1b:86:1c:8f:8a:b6:78:d8:27:01:6a:
3c:f1:40:49:7a:aa:22:71:88:4e:0b:a9:65:ac:55:80:2e:db:
ef:63:4e:56:40:ba:30:5d:e7:35:c0:40:bd:8d:0c:7a:dc:23:
cc:07:e2:fb:b1:2d:0b:87:fa:45:4d:b7:c6:a8:0b:c1:fc:f4:
c8:be:45:81:d6:32:43:54:f4:bf:6d:92:1b:02:e8:84:53:b3:
3a:27:bb:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:40:01 2026 by rpki-client