Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402493.roa
File: AS402493.roa (raw, json)
Hash identifier: jMYmfZSZtrKS4wt9To1qdmj+5c4lnbjbSHoMEADVsj4=
Subject key identifier: C7:F2:0A:C5:38:84:22:88:7E:B5:7B:D8:F9:CA:0A:1F:9A:A9:5B:F6
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4D2B44D8A2C4D5CCF39CAB5376952715624546F1
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402493.roa
Signing time: Fri 05 Jun 2026 02:17:56 +0000
ROA not before: Fri 05 Jun 2026 02:12:56 +0000
ROA not after: Fri 04 Jun 2027 02:17:56 +0000
asID: 402493
IP address blocks: 82.47.114.0/24 maxlen: 24
82.47.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2b:44:d8:a2:c4:d5:cc:f3:9c:ab:53:76:95:27:15:62:45:46:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 5 02:12:56 2026 GMT
Not After : Jun 4 02:17:56 2027 GMT
Subject: CN=C7F20AC5388422887EB57BD8F9CA0A1F9AA95BF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:25:3d:e0:d1:36:da:44:d7:82:31:be:b9:ef:
e6:ea:de:88:24:fb:88:5c:3d:cc:72:b7:18:92:3a:
17:bf:57:c4:ee:8b:94:b3:e3:d8:a7:8c:eb:58:16:
70:27:6f:7b:cd:ad:a4:cb:53:c7:3e:a8:a5:c2:2d:
a3:6b:5b:bf:9a:dd:81:5c:f2:e5:af:ba:fa:7e:bd:
bc:de:84:1a:52:62:a2:e8:9f:fa:a8:3b:4f:6f:86:
a9:24:0b:30:15:6c:71:9c:4b:3e:b5:df:08:e6:40:
2d:75:07:ca:03:56:f2:7c:5f:03:3d:88:83:1b:da:
3d:96:52:45:4b:62:b3:95:1f:3a:aa:21:7c:92:88:
95:c4:25:78:f0:d7:de:fc:48:47:68:d4:ec:6e:d7:
9c:3c:f2:ed:34:11:93:c4:37:ef:6a:b3:d0:56:ed:
96:8b:87:5d:68:49:b3:a0:ae:d9:2d:b0:4a:55:d0:
96:60:e2:e3:2c:70:80:ec:8e:9c:ce:bd:3d:39:b4:
58:94:b9:02:bf:08:a0:f0:42:a0:6b:e8:74:30:7f:
e0:bd:bd:c5:b9:46:78:cc:46:4e:5e:72:b7:cd:e2:
ca:40:71:35:db:1a:21:07:1c:5c:5a:7d:c2:c1:2c:
31:ff:5f:95:6c:5d:4a:31:0a:65:55:24:7d:1a:2d:
79:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:F2:0A:C5:38:84:22:88:7E:B5:7B:D8:F9:CA:0A:1F:9A:A9:5B:F6
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402493.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.114.0/24
82.47.188.0/24
Signature Algorithm: sha256WithRSAEncryption
48:41:be:37:b4:6f:40:d2:dc:7f:05:0b:08:e3:e0:41:d1:1f:
7f:a1:a3:3f:23:c7:3c:d1:19:7a:41:83:c2:51:f6:5d:92:d4:
a4:9d:c2:bd:42:bc:d1:40:f0:36:bf:97:7c:74:87:4d:29:cf:
e6:62:99:7e:cd:f3:97:d9:ee:cc:ad:80:8a:35:06:e7:43:3f:
e7:25:18:46:19:65:ff:3d:19:74:9e:a6:8d:d6:d7:30:6b:5f:
b5:2d:54:cf:4f:e9:0f:eb:17:2e:3f:59:23:06:ff:e3:e9:0f:
fe:5a:7d:a4:32:b3:4d:71:78:f1:4c:5e:87:74:10:a2:62:00:
1f:af:21:74:45:6c:cc:33:59:0f:24:9f:1a:02:13:26:64:1a:
c2:b8:4f:ac:d9:6e:88:77:66:8d:b6:bb:1a:60:a0:8f:b2:98:
16:df:e9:84:a1:f7:bd:7c:cf:05:67:d9:2c:dd:20:bb:5b:af:
84:b5:2c:7c:09:14:fb:35:63:31:cc:ca:a6:9b:2e:83:37:3d:
68:03:c5:6f:93:67:97:7e:22:6c:1f:e1:0a:6c:3b:0e:d7:79:
ac:e8:b0:e4:d3:7f:55:8e:c8:eb:80:be:02:45:7b:f1:d9:f7:
31:76:30:fe:ad:b6:04:9f:c6:24:4c:74:e0:71:6c:6d:da:04:
08:d3:27:ac
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUTStE2KLE1czznKtTdpUnFWJFRvEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA2MDUwMjEyNTZaFw0yNzA2MDQwMjE3NTZaMDMxMTAvBgNV
BAMTKEM3RjIwQUM1Mzg4NDIyODg3RUI1N0JEOEY5Q0EwQTFGOUFBOTVCRjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcJT3g0TbaRNeCMb657+bq3ogk
+4hcPcxytxiSOhe/V8Tui5Sz49injOtYFnAnb3vNraTLU8c+qKXCLaNrW7+a3YFc
8uWvuvp+vbzehBpSYqLon/qoO09vhqkkCzAVbHGcSz613wjmQC11B8oDVvJ8XwM9
iIMb2j2WUkVLYrOVHzqqIXySiJXEJXjw1978SEdo1Oxu15w88u00EZPEN+9qs9BW
7ZaLh11oSbOgrtktsEpV0JZg4uMscIDsjpzOvT05tFiUuQK/CKDwQqBr6HQwf+C9
vcW5RnjMRk5ecrfN4spAcTXbGiEHHFxafcLBLDH/X5VsXUoxCmVVJH0aLXldAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUx/IKxTiEIoh+tXvY+coKH5qpW/YwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAyNDkzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUi9y
AwQAUi+8MA0GCSqGSIb3DQEBCwUAA4IBAQBIQb43tG9A0tx/BQsI4+BB0R9/oaM/
I8c80Rl6QYPCUfZdktSkncK9QrzRQPA2v5d8dIdNKc/mYpl+zfOX2e7MrYCKNQbn
Qz/nJRhGGWX/PRl0nqaN1tcwa1+1LVTPT+kP6xcuP1kjBv/j6Q/+Wn2kMrNNcXjx
TF6HdBCiYgAfryF0RWzMM1kPJJ8aAhMmZBrCuE+s2W6Id2aNtrsaYKCPspgW3+mE
ofe9fM8FZ9ks3SC7W6+EtSx8CRT7NWMxzMqmmy6DNz1oA8Vvk2eXfiJsH+EKbDsO
13ms6LDk039VjsjrgL4CRXvx2fcxdjD+rbYEn8YkTHTgcWxt2gQI0yes
-----END CERTIFICATE-----
Generated at Sat Jun 13 06:39:29 2026 by rpki-client