Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
File: AS4593.roa (raw, json)
Hash identifier: VnnoQy827Kbx42C956h7BHlOzo+x/wNxccvhltHFK2Q=
Subject key identifier: B2:AE:78:D6:23:0E:F7:EA:1F:4B:FF:8A:13:6F:0C:DC:09:C3:B7:CB
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 63D03859186B40E7A26392D1E202DA356E384A41
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
Signing time: Tue 09 Jun 2026 07:31:51 +0000
ROA not before: Tue 09 Jun 2026 07:26:51 +0000
ROA not after: Tue 08 Jun 2027 07:31:51 +0000
asID: 4593
IP address blocks: 84.75.139.0/24 maxlen: 24
178.83.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:d0:38:59:18:6b:40:e7:a2:63:92:d1:e2:02:da:35:6e:38:4a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 9 07:26:51 2026 GMT
Not After : Jun 8 07:31:51 2027 GMT
Subject: CN=B2AE78D6230EF7EA1F4BFF8A136F0CDC09C3B7CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5d:41:4c:da:8c:fb:74:4f:91:5f:6f:a9:52:
6a:09:0b:66:76:59:24:80:d2:31:87:10:e4:4f:1b:
3c:a8:27:55:2e:cc:41:40:0e:00:7f:32:c0:76:3f:
a5:1e:f1:60:45:a0:29:d8:c5:fc:08:28:59:4f:99:
66:dc:96:2f:fd:e6:99:d9:c9:f1:d1:1a:c9:e5:ed:
07:91:86:c9:e4:ba:70:e3:16:22:f5:de:0d:9a:f2:
2a:c8:0b:83:93:ca:71:d0:3d:3c:11:5b:fd:d7:c5:
c6:32:0a:a9:21:72:23:56:5a:19:b5:05:30:0c:65:
01:17:59:20:55:d2:67:e1:45:81:47:5c:fd:4a:22:
2e:72:48:89:8f:86:a2:7a:66:a4:1e:78:f3:8e:06:
a5:30:ca:36:71:a8:89:c2:09:cc:ef:ee:5a:11:83:
3d:ef:54:28:94:e1:67:48:52:29:f4:67:9f:d4:e7:
53:ec:19:2a:e2:6a:20:89:ad:e7:67:7d:f1:cf:d6:
64:ec:7a:b9:dd:53:2b:3d:fc:f9:6e:13:42:b9:30:
27:49:f9:b4:16:c6:5e:eb:cb:37:85:c5:ec:f2:e4:
7b:90:f8:0b:15:88:96:76:88:bd:e9:e8:da:3a:6a:
cf:59:91:f1:f3:5b:ae:76:41:ed:65:6a:34:33:2d:
62:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AE:78:D6:23:0E:F7:EA:1F:4B:FF:8A:13:6F:0C:DC:09:C3:B7:CB
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.139.0/24
178.83.153.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:7d:c7:38:7a:8d:de:5f:39:ae:a9:d9:ee:88:23:21:19:c0:
c3:80:cc:4d:4c:86:1c:2a:d0:82:a3:38:39:65:29:eb:79:c5:
24:97:5a:53:5a:76:a4:94:5e:35:13:62:03:52:3b:41:bf:67:
64:ba:ef:d9:08:f5:4d:0a:14:a7:a5:34:1c:f2:29:49:e1:0d:
d0:e7:3f:9e:6f:44:b3:97:3f:b8:1b:b0:ec:3f:38:ec:30:33:
39:11:ba:a3:b5:40:89:38:94:72:82:42:75:73:6d:77:60:7b:
21:fb:25:a3:82:0b:01:42:af:9e:8c:41:42:f6:12:e3:0d:83:
be:d0:ae:61:b3:30:1c:a2:d9:51:ea:7c:20:d0:be:f9:30:cc:
89:60:df:15:f7:3d:4a:d2:22:3e:86:3a:14:2f:9c:bd:85:7b:
88:57:32:60:f0:e9:55:f3:80:82:59:ea:2e:9a:67:e6:28:7d:
6a:7d:1d:38:44:0f:43:31:68:a3:da:a1:38:74:50:bf:ee:da:
40:b2:5e:1e:a4:d1:93:39:fc:92:da:e5:d4:c6:7b:fd:04:be:
1c:df:d4:8e:20:36:a0:c1:1f:8a:cc:e5:b9:95:3f:92:0a:57:
e0:e0:54:5d:68:56:7a:d5:7a:5a:ad:a7:c2:6b:26:59:4c:9c:
7e:68:5e:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:41:48 2026 by rpki-client