Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402507.roa
File: AS402507.roa (raw, json)
Hash identifier: VloItK7et9qFyHkfcFdxWOMnW1KdLtc3xHxTiT8c6GM=
Subject key identifier: 1E:AA:87:20:15:0F:62:F2:83:B4:A3:18:87:6A:2E:A6:22:99:B3:83
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 41C45FE544BF629C95A21648A25DC73CEEAEC95D
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402507.roa
Signing time: Fri 05 Jun 2026 18:39:35 +0000
ROA not before: Fri 05 Jun 2026 18:34:35 +0000
ROA not after: Fri 04 Jun 2027 18:39:35 +0000
asID: 402507
IP address blocks: 82.22.161.0/24 maxlen: 24
82.38.219.0/24 maxlen: 24
178.83.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:c4:5f:e5:44:bf:62:9c:95:a2:16:48:a2:5d:c7:3c:ee:ae:c9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 5 18:34:35 2026 GMT
Not After : Jun 4 18:39:35 2027 GMT
Subject: CN=1EAA8720150F62F283B4A318876A2EA62299B383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8f:ba:39:94:0c:af:83:21:e2:76:ff:c4:e7:
95:17:a4:73:9c:fc:69:85:fa:39:77:44:51:ed:cd:
69:2a:ae:df:9a:1a:a6:ca:a9:b5:d0:4e:ef:3e:ce:
2f:e9:9e:4d:9c:47:d4:53:ad:5e:53:a8:69:e8:74:
cd:70:15:04:63:e2:56:78:9f:77:5a:a6:ec:21:d0:
11:50:b4:6f:29:16:c3:b5:ca:06:8b:72:86:33:31:
eb:41:2f:82:3b:d4:e4:e9:2d:f6:92:d5:d9:3e:52:
db:5d:a8:8d:23:d4:ff:dd:b0:e3:43:91:38:15:35:
72:c9:e4:fa:23:5e:92:74:c5:95:90:5a:c3:6b:f1:
ce:46:e5:ff:92:3f:08:4d:fe:c4:95:0b:25:e5:d7:
e7:18:8a:9b:40:55:3c:03:da:f0:2f:8e:64:02:b6:
14:9e:c5:5f:18:73:e3:1f:b8:ed:90:aa:73:66:39:
80:67:ff:e3:c2:86:62:96:59:b1:53:ca:de:f8:fb:
68:94:6f:09:a0:4f:ae:12:75:2b:83:30:65:4c:72:
dd:30:59:5a:86:77:0c:14:c9:25:93:37:8a:a8:4a:
ba:e8:6b:34:73:e0:0e:c2:03:cf:b4:aa:00:90:a4:
d3:dc:09:37:e6:04:88:09:ed:5c:3c:b6:d8:85:a7:
65:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AA:87:20:15:0F:62:F2:83:B4:A3:18:87:6A:2E:A6:22:99:B3:83
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402507.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.161.0/24
82.38.219.0/24
178.83.40.0/24
Signature Algorithm: sha256WithRSAEncryption
88:af:bd:b8:84:a2:9c:fa:f3:2d:3b:b8:2f:7c:26:c1:c3:0d:
df:68:84:ee:16:70:bb:27:23:d2:67:8c:b1:a1:c5:3f:93:03:
4c:fd:86:79:f5:5e:2c:ed:6b:58:d5:a6:76:4a:8b:c2:72:7a:
5e:f7:4b:61:66:c1:69:48:a3:86:3f:fd:17:5a:e3:2a:e5:c5:
1b:34:ee:04:0c:3a:b3:96:29:aa:8b:c8:e0:fb:63:dc:b3:a5:
e2:a1:5f:56:3b:5a:fe:56:6a:59:5c:9d:26:5c:fa:34:3c:d6:
ec:f6:70:9e:1f:cb:48:b9:68:44:10:d0:04:b1:3c:53:c7:48:
8b:7a:79:8c:7e:d3:3f:2b:c1:50:2b:f7:3a:58:c0:0c:0e:68:
b1:c7:64:0f:e6:85:be:1c:60:e4:f2:37:83:86:d9:d1:c2:8e:
a1:f6:02:06:69:f2:3f:52:5e:21:4e:ae:4a:cb:a3:70:12:cb:
7c:88:50:2b:b2:d0:31:be:70:98:e8:b5:34:c6:a0:51:6d:1c:
67:6e:fe:99:f1:74:76:e1:38:bf:6f:52:84:3f:9e:b3:52:a8:
e9:d8:61:0b:87:70:b4:ed:35:53:1f:63:42:a8:b2:4c:d2:d8:
b1:78:c1:16:85:38:b6:56:e9:cf:9a:46:c4:07:5a:8b:16:9e:
53:18:6c:6e
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIUQcRf5US/YpyVohZIol3HPO6uyV0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA2MDUxODM0MzVaFw0yNzA2MDQxODM5MzVaMDMxMTAvBgNV
BAMTKDFFQUE4NzIwMTUwRjYyRjI4M0I0QTMxODg3NkEyRUE2MjI5OUIzODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjj7o5lAyvgyHidv/E55UXpHOc
/GmF+jl3RFHtzWkqrt+aGqbKqbXQTu8+zi/pnk2cR9RTrV5TqGnodM1wFQRj4lZ4
n3dapuwh0BFQtG8pFsO1ygaLcoYzMetBL4I71OTpLfaS1dk+UttdqI0j1P/dsOND
kTgVNXLJ5PojXpJ0xZWQWsNr8c5G5f+SPwhN/sSVCyXl1+cYiptAVTwD2vAvjmQC
thSexV8Yc+MfuO2QqnNmOYBn/+PChmKWWbFTyt74+2iUbwmgT64SdSuDMGVMct0w
WVqGdwwUySWTN4qoSrroazRz4A7CA8+0qgCQpNPcCTfmBIgJ7Vw8ttiFp2VjAgMB
AAGjggIWMIICEjAdBgNVHQ4EFgQUHqqHIBUPYvKDtKMYh2oupiKZs4MwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAyNTA3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAUhah
AwQAUibbAwQAslMoMA0GCSqGSIb3DQEBCwUAA4IBAQCIr724hKKc+vMtO7gvfCbB
ww3faITuFnC7JyPSZ4yxocU/kwNM/YZ59V4s7WtY1aZ2SovCcnpe90thZsFpSKOG
P/0XWuMq5cUbNO4EDDqzlimqi8jg+2Pcs6XioV9WO1r+VmpZXJ0mXPo0PNbs9nCe
H8tIuWhEENAEsTxTx0iLenmMftM/K8FQK/c6WMAMDmixx2QP5oW+HGDk8jeDhtnR
wo6h9gIGafI/Ul4hTq5Ky6NwEst8iFArstAxvnCY6LU0xqBRbRxnbv6Z8XR24Ti/
b1KEP56zUqjp2GELh3C07TVTH2NCqLJM0tixeMEWhTi2VunPmkbEB1qLFp5TGGxu
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:53:52 2026 by rpki-client