Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401856.roa
File: AS401856.roa (raw, json)
Hash identifier: jN2qn1u37YaGsfNxegb5UwW/mWVpzqlk3lIZ1HlLAGY=
Subject key identifier: F9:A7:36:4C:2E:E1:EA:C9:87:52:DD:CE:0C:32:56:5B:8F:5C:36:06
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 142B42991FBACA40E9EFC4314B16CB73A6424963
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401856.roa
Signing time: Sat 11 Apr 2026 11:38:55 +0000
ROA not before: Sat 11 Apr 2026 11:33:55 +0000
ROA not after: Sat 10 Apr 2027 11:38:55 +0000
asID: 401856
IP address blocks: 82.40.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:2b:42:99:1f:ba:ca:40:e9:ef:c4:31:4b:16:cb:73:a6:42:49:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 11 11:33:55 2026 GMT
Not After : Apr 10 11:38:55 2027 GMT
Subject: CN=F9A7364C2EE1EAC98752DDCE0C32565B8F5C3606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:05:eb:24:4e:f4:4b:73:3d:4a:86:a8:0c:
49:54:87:6e:11:71:e2:11:de:ec:2a:8e:66:95:2f:
2b:10:ec:eb:33:70:72:28:d7:eb:e3:ab:e3:54:8b:
e7:5c:ca:48:6a:b5:06:99:54:66:61:72:6d:46:03:
fa:5e:ef:90:c7:b7:65:70:92:67:ab:6b:6a:54:e4:
1a:e2:5f:b0:1e:22:4d:4e:f9:c1:0b:ae:1b:31:68:
96:65:17:e4:8c:8e:78:d7:e6:c9:a6:1b:07:5f:fb:
c7:47:d7:9f:4d:2b:c1:0a:88:09:c8:0b:b5:a1:19:
de:b9:cb:57:0e:93:54:14:21:00:35:64:7d:be:6b:
1c:79:84:d7:5f:05:82:b5:8b:b7:5f:12:3a:0f:f4:
17:26:de:60:31:f6:43:17:f4:1c:87:ad:35:0c:34:
9c:52:3f:c8:be:4f:79:e0:78:b4:51:bb:05:fd:d3:
fc:23:51:65:f2:29:ce:5d:40:0b:d2:15:2a:e7:b0:
ac:9a:9c:74:b0:f7:e9:92:19:83:02:86:13:e9:5b:
bb:dd:30:b5:6e:cc:0b:cb:01:fc:ff:05:6a:80:41:
43:f1:03:da:f0:80:22:d2:e0:9f:c1:05:61:99:8e:
66:c7:ce:f7:c9:0a:d7:fa:cb:b5:4f:ba:a6:9d:2c:
7c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A7:36:4C:2E:E1:EA:C9:87:52:DD:CE:0C:32:56:5B:8F:5C:36:06
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401856.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.40.63.0/24
Signature Algorithm: sha256WithRSAEncryption
23:dd:1f:d2:a2:c4:2c:94:df:ea:e5:0f:94:9c:5a:d6:b2:0e:
84:3f:77:76:ef:eb:b4:f7:fa:0f:ff:dc:25:42:0a:58:17:6a:
c0:7f:99:9b:df:94:50:5f:1f:5d:a4:dc:df:ca:8a:85:ca:fc:
9a:e2:62:70:8d:09:1d:e5:de:37:ec:e8:2e:08:0f:7f:86:a1:
7e:c2:fa:b9:ac:e2:1e:6c:9e:47:72:02:5c:30:52:26:e3:6f:
ed:40:2c:de:0e:db:8e:5d:36:f5:9b:93:5c:21:bd:4f:f2:24:
e7:d5:d7:43:b4:eb:42:af:55:a2:48:92:fc:bc:5c:32:3c:47:
3e:99:1b:64:c7:22:42:a5:97:22:59:b9:1b:16:07:97:e8:68:
b7:e8:cb:9a:8f:d2:c5:b1:bc:26:0f:5f:18:78:71:43:95:21:
f1:bc:29:90:ed:33:a5:91:12:09:23:7f:50:57:69:a8:c3:d4:
0f:08:2b:e5:71:a5:53:0d:b1:78:7b:b8:1f:19:a8:8e:1d:d2:
e6:d5:24:aa:51:78:65:a0:50:4e:ea:79:a0:41:27:d4:7f:1b:
26:74:b6:c5:bb:84:f9:92:57:32:fe:0e:72:3f:58:c2:1a:ca:
b7:2c:a5:5a:11:e4:0d:2b:9c:84:04:a9:b1:bf:a6:43:57:7a:
83:42:2e:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:02:42 2026 by rpki-client