Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401861.roa
File: AS401861.roa (raw, json)
Hash identifier: YqdXiGbgmYnSlMqj/Td/QoIE7IHPGQjA/qPC0G0wqCk=
Subject key identifier: 0A:BB:6C:F1:71:AA:57:17:D4:06:AA:3F:D9:B4:BF:EC:D5:30:7D:91
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3567538305529CA8E1099CCD32206B9E7E88804A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401861.roa
Signing time: Sat 11 Apr 2026 11:36:29 +0000
ROA not before: Sat 11 Apr 2026 11:31:29 +0000
ROA not after: Sat 10 Apr 2027 11:36:29 +0000
asID: 401861
IP address blocks: 82.39.119.0/24 maxlen: 24
178.83.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:67:53:83:05:52:9c:a8:e1:09:9c:cd:32:20:6b:9e:7e:88:80:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 11 11:31:29 2026 GMT
Not After : Apr 10 11:36:29 2027 GMT
Subject: CN=0ABB6CF171AA5717D406AA3FD9B4BFECD5307D91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:24:20:5f:28:4d:d0:46:22:ab:c2:86:35:04:
27:ea:bf:29:ef:b5:c8:82:8e:7f:68:b9:ea:bb:4b:
0f:16:fd:36:bc:e0:d3:74:a0:07:e5:e8:05:f4:88:
f4:a7:73:79:e7:97:71:1a:c4:ad:a6:3f:57:15:54:
65:62:b3:29:e3:b1:fd:c3:cc:d2:63:4c:22:1b:ce:
23:31:c5:4a:c3:2f:13:a9:9a:07:13:1a:a6:38:c1:
a6:3f:ed:72:62:8e:a1:52:0f:b6:e0:77:8b:d7:aa:
38:aa:0c:6c:4f:d4:7b:c1:cd:cd:d6:58:74:12:23:
5c:48:02:58:04:49:b8:d0:4a:35:6e:2f:06:90:84:
30:a2:9a:18:00:3c:55:16:0e:c3:a8:25:a6:fb:67:
95:50:7f:b2:03:05:25:24:e4:e2:4a:0c:bd:91:ab:
52:e5:69:d0:47:37:13:3a:83:d6:65:66:2e:36:c7:
24:28:f6:68:01:0e:be:e3:cf:41:62:30:f5:84:cf:
ae:18:ee:89:fe:99:bf:47:c5:64:e8:bd:43:f2:b1:
41:fe:9c:cb:af:c1:23:97:26:f2:3e:c0:4e:bd:4d:
42:e6:16:20:b6:36:10:77:e9:22:7c:67:e7:55:d3:
35:dc:af:72:f2:ac:2f:0a:f1:1d:8a:ac:03:96:f0:
a1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BB:6C:F1:71:AA:57:17:D4:06:AA:3F:D9:B4:BF:EC:D5:30:7D:91
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401861.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.39.119.0/24
178.83.102.0/24
Signature Algorithm: sha256WithRSAEncryption
34:75:a8:13:b0:44:e9:4d:13:ed:60:dd:04:a5:6a:08:a2:5e:
bf:c3:ef:1f:35:73:34:51:70:df:dc:cf:7f:31:21:d4:12:e6:
65:59:8b:ad:05:a4:9d:4a:be:18:4b:c5:5c:4c:5c:62:a5:91:
49:bc:ad:b0:20:22:f4:a9:73:4d:1f:9d:d3:80:3b:56:67:5d:
d3:49:fc:ce:43:e3:42:21:19:40:9d:cd:a1:34:9f:f7:e5:b2:
f6:ce:a9:63:8d:c3:c4:f7:6b:4f:b6:4f:6f:c6:a7:69:d1:0a:
66:25:ea:5a:0b:ad:4e:3b:23:5a:e0:14:6b:20:38:d0:1a:05:
a3:07:ee:48:ff:0c:68:12:e1:59:23:79:aa:a9:09:f6:57:0d:
83:07:1c:39:35:67:10:87:60:5e:d5:f1:d2:6b:ab:6b:fd:aa:
c5:b6:2d:80:68:11:98:e4:8f:8b:a4:ed:ef:fe:24:91:48:4b:
0d:f2:3c:cb:70:7a:8f:b5:00:bc:e3:5d:01:0e:f4:28:62:54:
b2:60:dd:43:3a:19:07:d0:01:b4:98:05:fd:d0:66:f7:63:43:
75:78:01:61:cf:2f:58:26:27:6a:33:e4:36:c1:13:a0:cb:f7:
cf:0a:7a:f2:4d:ce:1f:e6:c5:b5:75:c8:8d:7c:db:2d:77:58:
c3:0d:33:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:06 2026 by rpki-client