Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
File: AS401776.roa (raw, json)
Hash identifier: 6+ZcQUF1xnKNhejiwVFf//fToRuMmUVBxQop1hHNafg=
Subject key identifier: 52:16:9B:50:AD:C0:24:01:F1:1A:70:78:F9:7B:FC:24:2A:1F:EC:00
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6B5CCD7400081F62520C6C9F6E009234951BAD68
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
Signing time: Thu 16 Apr 2026 09:32:20 +0000
ROA not before: Thu 16 Apr 2026 09:27:20 +0000
ROA not after: Thu 15 Apr 2027 09:32:20 +0000
asID: 401776
IP address blocks: 82.38.181.0/24 maxlen: 24
82.41.20.0/24 maxlen: 24
82.41.21.0/24 maxlen: 24
82.41.72.0/24 maxlen: 24
82.41.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:5c:cd:74:00:08:1f:62:52:0c:6c:9f:6e:00:92:34:95:1b:ad:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 16 09:27:20 2026 GMT
Not After : Apr 15 09:32:20 2027 GMT
Subject: CN=52169B50ADC02401F11A7078F97BFC242A1FEC00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:83:c8:d6:14:d9:a5:2f:18:0a:33:45:37:
8a:98:bc:90:9a:31:ad:50:f6:5a:e2:27:b9:b7:6f:
00:17:f2:8d:32:7b:3d:da:37:6f:18:2b:f8:38:0f:
80:29:4c:15:c1:7a:6c:a2:60:08:c2:07:ef:e2:a7:
24:4b:3a:f2:7d:dc:f4:c0:78:59:5b:ec:84:58:66:
3b:1e:ac:99:e0:21:01:df:17:e5:76:f9:e6:64:34:
8c:96:a8:08:9b:e7:d9:19:d7:c8:56:6c:bc:8f:b5:
ab:32:eb:a7:27:c4:53:47:70:ba:f9:84:8e:6c:5e:
20:ac:96:1e:9f:96:53:bb:5c:bd:2e:f2:4a:60:0a:
3b:31:d3:f7:2b:c8:00:19:62:30:b2:f4:0c:90:e9:
f2:c3:6f:79:2d:14:f6:15:56:0a:06:c6:f6:ed:e1:
97:0a:51:2c:76:1e:6d:0c:ec:5d:bf:ac:b5:50:8b:
0f:50:82:09:a1:d3:48:24:80:1f:f9:38:11:a7:96:
c2:48:e7:89:9e:f6:f4:d7:4b:15:19:01:e8:91:3d:
3e:ee:ec:50:9b:97:6f:2e:c9:51:ae:e8:84:da:74:
8a:dd:b4:d7:e7:06:93:44:85:97:e6:a8:45:f7:e2:
16:0d:e8:14:0d:a2:ce:9d:26:a0:7f:68:28:c9:f4:
bf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:16:9B:50:AD:C0:24:01:F1:1A:70:78:F9:7B:FC:24:2A:1F:EC:00
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.38.181.0/24
82.41.20.0/23
82.41.72.0/24
82.41.98.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ab:2d:f8:1d:6c:e7:76:7e:6c:f6:82:d8:1d:29:ee:35:31:
af:e0:89:d9:bb:03:db:f3:ba:08:56:68:9b:e2:97:84:45:f5:
43:01:de:0e:b2:d2:18:20:98:c3:b3:cd:ca:94:a1:3b:a7:72:
d1:81:85:97:ba:13:dc:02:00:b1:6b:a3:59:29:a1:9b:f7:40:
be:3f:50:8a:83:c2:d9:07:2a:13:52:81:ad:3d:51:8d:01:9e:
b2:af:9d:9e:6a:4d:0a:2a:ac:c1:66:58:26:cd:45:97:f0:6b:
f1:53:01:5a:0a:84:d9:23:a4:5f:ec:34:d6:c2:56:43:18:2e:
32:ee:1b:87:e0:27:a2:47:eb:8a:97:19:5d:ca:ba:ca:c6:96:
ad:c2:8a:60:86:f3:94:e2:b5:11:ce:b7:92:6f:21:19:12:d6:
47:46:22:6e:c6:76:c3:14:0d:85:21:cd:42:a9:c9:fc:d7:3d:
4d:4c:ca:93:25:8a:97:c6:cb:5e:2d:0d:c1:c6:14:d2:ee:b7:
01:81:bf:fb:74:a1:fc:35:8d:ac:84:92:74:49:2f:c3:8e:2c:
18:98:25:0b:7e:dd:bb:ed:1a:ad:ae:d8:48:94:39:42:90:7b:
a9:8e:c8:a5:6b:7a:a4:63:4a:74:89:61:ee:81:a6:a9:5e:42:
7a:98:14:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:01:40 2026 by rpki-client