Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
File: AS4593.roa (raw, json)
Hash identifier: 7QcZqPdJex8NdEReGXXUIejg//ttAEH/oCFFwnfiD9E=
Subject key identifier: FB:B9:30:F1:62:EA:C0:F5:BF:A1:0E:D7:FE:1F:EC:82:D8:50:2E:56
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1B96270E26F1C6398A4C69A26BBA43D72B3C772C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
Signing time: Thu 09 Apr 2026 08:19:56 +0000
ROA not before: Thu 09 Apr 2026 08:14:56 +0000
ROA not after: Thu 08 Apr 2027 08:19:56 +0000
asID: 4593
IP address blocks: 178.83.144.0/24 maxlen: 24
178.83.153.0/24 maxlen: 24
178.83.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:96:27:0e:26:f1:c6:39:8a:4c:69:a2:6b:ba:43:d7:2b:3c:77:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 9 08:14:56 2026 GMT
Not After : Apr 8 08:19:56 2027 GMT
Subject: CN=FBB930F162EAC0F5BFA10ED7FE1FEC82D8502E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:fd:8a:bd:ae:11:f7:7a:d0:f1:d4:b3:63:
83:95:b4:85:c6:07:f9:22:f7:78:79:b1:5d:4c:de:
11:70:f6:b3:66:d4:68:05:a9:a5:2d:7b:27:32:ef:
60:b4:f6:2f:15:f1:d7:bf:22:e2:60:d3:4e:4c:f0:
13:8c:9f:f9:b1:a4:f3:85:d9:a1:bb:f3:93:bf:41:
94:3d:df:5c:52:3b:5f:e1:d9:2c:16:1e:5c:8a:cd:
50:40:e6:d8:10:03:20:e7:86:09:ef:41:fa:23:2c:
81:ad:3d:5d:47:df:3b:1b:1d:2a:c1:a1:29:69:79:
37:41:b2:a7:20:0b:2d:1c:ff:5f:65:01:2f:42:99:
2f:c3:32:43:cc:ca:27:ad:80:f6:7e:2c:c8:d7:d2:
37:16:c2:1b:bd:a3:d7:72:dd:e3:f4:5c:8d:7b:d0:
40:18:68:41:02:2b:e4:8e:6f:ba:54:9f:1c:08:4a:
61:b9:5c:fe:c1:06:cf:eb:61:dc:0a:93:ff:b8:4c:
12:0f:fb:47:59:8c:91:29:57:bc:b2:ec:19:b4:13:
8e:db:75:e9:c2:38:97:34:ee:40:51:8a:f9:13:29:
3a:bf:08:a2:cf:1d:24:fa:0a:63:03:ef:6e:0a:48:
47:ff:f3:ca:13:14:59:6a:1f:a0:de:b0:e9:e8:58:
7c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B9:30:F1:62:EA:C0:F5:BF:A1:0E:D7:FE:1F:EC:82:D8:50:2E:56
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.144.0/24
178.83.153.0/24
178.83.157.0/24
Signature Algorithm: sha256WithRSAEncryption
62:b5:8d:be:05:1d:8a:02:36:69:f3:bb:69:ee:b9:24:d6:e4:
92:39:11:a1:ef:a0:78:f4:1c:17:7a:c1:ac:df:0e:87:65:39:
0f:09:3f:75:ac:de:e8:32:89:a8:42:9c:a4:25:ba:dd:ef:ed:
42:64:f2:04:cc:7f:6a:45:79:68:0a:de:a9:59:99:06:49:56:
be:5f:50:3a:f7:c2:93:c8:84:c5:21:9c:42:93:99:84:4a:d1:
f5:be:ed:18:04:ff:38:5a:67:32:6b:4d:ee:df:df:e2:43:6c:
9c:80:ec:6e:00:2e:e2:2c:05:72:61:5e:ca:21:82:8a:ae:6e:
d6:23:76:b6:19:9a:41:5c:cb:6b:59:38:56:d5:81:80:e7:e0:
4a:c8:ba:c3:9a:fe:ce:9a:68:db:8d:6b:0a:60:e3:d4:6f:db:
5d:f1:87:b2:73:03:18:0c:51:b4:00:cf:c0:d2:ab:69:52:3a:
49:2c:ab:a1:2f:01:23:25:ba:bd:a6:b3:19:0b:01:8d:f6:ea:
bb:04:7e:ba:c2:89:af:ba:fa:d4:30:18:6f:93:0f:2c:e3:34:
9f:8c:74:1a:d7:06:3b:5c:5e:dc:76:c8:9d:0c:d2:01:76:25:
75:85:08:61:2d:75:19:d6:1f:e0:ec:d1:05:cf:2e:e2:52:8e:
ae:32:2f:02
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:14 2026 by rpki-client