Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402315.roa
File: AS402315.roa (raw, json)
Hash identifier: fHwM+59xCW8qJgn0xQyvVItiibEbkxrsdqiyMbo9MH4=
Subject key identifier: 99:AE:2F:E3:D2:E5:68:E9:07:17:B1:FF:87:0F:7D:10:51:80:C9:E3
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5E8B444688287844123FF5C0614CBE6277CD63FC
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402315.roa
Signing time: Sat 04 Apr 2026 12:05:29 +0000
ROA not before: Sat 04 Apr 2026 12:00:29 +0000
ROA not after: Sat 03 Apr 2027 12:05:29 +0000
asID: 402315
IP address blocks: 82.41.19.0/24 maxlen: 24
82.41.168.0/24 maxlen: 24
178.83.48.0/24 maxlen: 24
178.83.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:8b:44:46:88:28:78:44:12:3f:f5:c0:61:4c:be:62:77:cd:63:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 4 12:00:29 2026 GMT
Not After : Apr 3 12:05:29 2027 GMT
Subject: CN=99AE2FE3D2E568E90717B1FF870F7D105180C9E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ec:0a:07:8c:b3:a3:ee:7b:88:f9:b7:33:be:
8c:b9:0f:b1:a9:37:3c:1d:2b:ea:e6:8c:16:4c:81:
af:13:66:9e:47:47:f3:10:a4:04:8f:27:ef:af:3e:
6f:2e:31:0e:30:22:f0:14:31:a7:f1:11:6e:68:32:
ec:c5:cd:d0:07:60:7b:1b:fa:35:4c:e9:94:e0:2b:
1e:5e:5d:0e:4d:4d:2a:f3:7b:4d:2c:cc:ab:4a:03:
b8:d4:fb:97:44:6b:57:48:64:81:02:a1:69:fa:50:
d9:d6:bc:21:d2:4b:c3:81:de:cd:eb:51:0a:54:29:
72:3e:d7:fe:38:e7:b4:29:1f:05:2b:4a:2e:04:c4:
f5:49:9c:e0:7b:ca:10:45:c7:a4:6e:73:39:8f:e6:
78:03:5d:87:93:8e:38:7b:6c:6b:0f:0c:54:41:41:
fc:5a:e1:41:2d:46:4e:09:d9:42:bd:0f:81:e5:78:
65:ea:bc:73:e8:e0:52:98:ce:c7:e5:10:44:fc:8e:
42:3c:3f:c5:a5:61:02:78:31:ce:73:31:12:6c:44:
bd:c8:c4:57:68:d6:12:2e:10:e5:45:84:ce:76:76:
60:6a:8c:f9:81:d1:22:0a:d2:a4:d5:47:b7:5b:bb:
8c:44:42:1c:52:47:5e:05:8e:1d:13:98:8b:dc:34:
c4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AE:2F:E3:D2:E5:68:E9:07:17:B1:FF:87:0F:7D:10:51:80:C9:E3
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402315.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.19.0/24
82.41.168.0/24
178.83.48.0/23
Signature Algorithm: sha256WithRSAEncryption
58:e4:bd:4f:7a:97:57:ca:a3:eb:cb:08:e2:5c:f5:d1:c6:2b:
a1:7b:53:53:46:bf:86:c5:64:88:db:40:0c:de:e3:2d:f6:71:
f3:01:19:94:03:24:59:7d:69:e8:cd:d9:b6:d7:0e:70:b0:bf:
ae:81:2c:c0:e0:a8:51:69:9b:8a:29:83:b4:e1:1e:c9:4e:c3:
7a:e3:63:ee:29:70:ac:e4:3a:af:2c:bb:10:64:90:8a:0c:27:
39:86:8d:d7:e2:c2:78:92:c5:f5:f4:9f:2e:29:62:23:73:e1:
6e:af:38:18:20:52:c4:99:a4:1e:0b:ff:13:6a:4f:ed:80:2b:
86:6d:61:18:79:3f:6e:07:3e:78:9e:90:7f:10:12:db:32:0c:
da:d9:58:e7:7b:6f:5e:a2:f8:07:e5:7e:96:7c:a0:ed:e1:56:
53:fd:61:ab:f6:06:50:cf:35:96:73:8a:b4:e2:66:dc:62:9b:
fe:14:4c:66:13:d0:08:42:1c:ac:0b:aa:11:8a:d5:ca:6a:07:
4d:31:c1:9e:51:cd:96:2c:e7:a6:5b:e7:9a:20:f0:8e:76:41:
cb:3c:3f:39:96:16:95:84:f7:d0:08:e2:ab:a8:7c:c7:09:a0:
78:38:fa:d7:65:57:e3:14:f2:48:ee:df:98:a2:ca:17:32:a3:
56:11:47:c4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUXotERogoeEQSP/XAYUy+YnfNY/wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MDQxMjAwMjlaFw0yNzA0MDMxMjA1MjlaMDMxMTAvBgNV
BAMTKDk5QUUyRkUzRDJFNTY4RTkwNzE3QjFGRjg3MEY3RDEwNTE4MEM5RTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl7AoHjLOj7nuI+bczvoy5D7Gp
NzwdK+rmjBZMga8TZp5HR/MQpASPJ++vPm8uMQ4wIvAUMafxEW5oMuzFzdAHYHsb
+jVM6ZTgKx5eXQ5NTSrze00szKtKA7jU+5dEa1dIZIECoWn6UNnWvCHSS8OB3s3r
UQpUKXI+1/4457QpHwUrSi4ExPVJnOB7yhBFx6RuczmP5ngDXYeTjjh7bGsPDFRB
Qfxa4UEtRk4J2UK9D4HleGXqvHPo4FKYzsflEET8jkI8P8WlYQJ4Mc5zMRJsRL3I
xFdo1hIuEOVFhM52dmBqjPmB0SIK0qTVR7dbu4xEQhxSR14Fjh0TmIvcNMQ/AgMB
AAGjggIWMIICEjAdBgNVHQ4EFgQUma4v49LlaOkHF7H/hw99EFGAyeMwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAyMzE1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUikT
AwQAUimoAwQBslMwMA0GCSqGSIb3DQEBCwUAA4IBAQBY5L1PepdXyqPrywjiXPXR
xiuhe1NTRr+GxWSI20AM3uMt9nHzARmUAyRZfWnozdm21w5wsL+ugSzA4KhRaZuK
KYO04R7JTsN642PuKXCs5DqvLLsQZJCKDCc5ho3X4sJ4ksX19J8uKWIjc+FurzgY
IFLEmaQeC/8Tak/tgCuGbWEYeT9uBz54npB/EBLbMgza2Vjne29eovgH5X6WfKDt
4VZT/WGr9gZQzzWWc4q04mbcYpv+FExmE9AIQhysC6oRitXKagdNMcGeUc2WLOem
W+eaIPCOdkHLPD85lhaVhPfQCOKrqHzHCaB4OPrXZVfjFPJI7t+YosoXMqNWEUfE
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:02 2026 by rpki-client