Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
File: AS48266.roa (raw, json)
Hash identifier: MwYnulmWctNUCweWtQ5sIJRwoe6JxLrWXvTyFcyrIcY=
Subject key identifier: 89:AE:73:A6:17:E2:C8:34:C3:FD:7E:94:03:0D:EE:1F:B9:6B:75:B0
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4C47CF5C2E226AA5A6833AB194BFC43D0B60BF6B
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
Signing time: Mon 02 Mar 2026 01:53:47 +0000
ROA not before: Mon 02 Mar 2026 01:48:47 +0000
ROA not after: Mon 01 Mar 2027 01:53:47 +0000
asID: 48266
IP address blocks: 82.25.33.0/24 maxlen: 24
82.25.40.0/24 maxlen: 24
82.38.121.0/24 maxlen: 24
82.39.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:47:cf:5c:2e:22:6a:a5:a6:83:3a:b1:94:bf:c4:3d:0b:60:bf:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 2 01:48:47 2026 GMT
Not After : Mar 1 01:53:47 2027 GMT
Subject: CN=89AE73A617E2C834C3FD7E94030DEE1FB96B75B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ff:cc:8d:71:9e:7d:72:6b:07:f3:40:71:db:
91:8b:ba:20:0e:e2:12:1d:92:c9:8a:25:db:20:47:
5a:28:99:13:0b:a5:24:30:88:d1:9f:51:2c:7a:16:
ea:38:c4:08:2a:38:dc:f9:73:4b:7e:1c:fe:a7:fb:
d3:85:8a:44:55:70:8b:0d:28:09:b8:d1:64:3f:33:
06:eb:e3:09:46:b1:39:00:fc:e9:3f:6f:72:91:8d:
11:5a:3d:4a:d8:66:b7:96:92:c9:99:36:b4:86:dd:
87:43:43:dc:44:19:88:95:8a:c2:74:35:30:bf:ad:
af:92:e1:7d:c8:8b:21:29:8e:5a:12:c4:68:6e:b5:
e6:d5:d7:64:0f:94:72:dd:da:a2:a8:55:ed:4d:29:
2b:ff:89:fb:59:fd:9f:95:52:d9:67:a0:44:d4:7d:
02:a6:5a:dd:da:83:58:9f:43:5a:36:83:06:63:7b:
7c:7e:34:f8:60:47:92:91:7b:0a:78:5e:f4:f4:7f:
17:f1:92:98:16:93:1b:92:56:98:47:eb:43:58:42:
d1:c6:d5:39:c9:9f:a4:23:4c:10:4e:a3:d3:32:6c:
86:46:db:68:b4:8e:d7:76:21:65:8d:cd:50:27:9f:
37:b3:75:b0:dc:ec:a6:3e:0b:98:f8:c1:30:9f:12:
a4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AE:73:A6:17:E2:C8:34:C3:FD:7E:94:03:0D:EE:1F:B9:6B:75:B0
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.33.0/24
82.25.40.0/24
82.38.121.0/24
82.39.150.0/24
Signature Algorithm: sha256WithRSAEncryption
14:b3:d6:b0:ba:e6:8c:bf:c9:a7:fd:22:fb:57:44:21:6a:88:
5b:36:8b:0d:a9:62:49:11:40:45:11:2e:67:c9:a3:26:ba:34:
ad:2d:7d:be:bf:b6:1d:98:c7:c1:9b:06:0e:b7:ad:48:e6:bc:
86:77:8f:a1:e3:2a:d9:56:28:7c:f0:89:ce:34:b8:0b:3a:c6:
40:a4:d4:83:73:97:04:b4:44:8a:2f:e4:a6:12:c4:53:59:67:
92:b6:46:d3:03:08:ce:9e:e8:db:f5:05:16:58:3e:f9:cd:ff:
34:b3:f7:f9:1b:d5:46:47:94:a9:59:ed:33:a8:92:05:2b:08:
5d:6b:1d:8e:96:07:a1:ee:b0:ec:3b:1b:27:23:24:0a:51:1b:
76:cb:53:59:81:fa:fc:a6:de:35:e6:b1:b8:00:25:ba:07:27:
e1:45:3a:70:9a:8d:6b:45:3f:cd:d5:75:55:d3:81:24:dd:71:
5a:f1:9e:89:2e:48:c5:3b:90:8b:03:8b:40:2d:c2:6f:ea:88:
10:a6:b9:a0:70:b0:cc:a3:02:f9:1b:01:62:2c:f0:ff:6d:02:
e4:95:a7:e8:26:5f:9d:ea:67:a7:a1:a8:1f:4c:46:d1:fb:e1:
a6:2a:04:f8:64:fc:80:1f:84:d8:6f:cc:7d:2e:c5:df:b5:c6:
bb:aa:1f:6b
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUTEfPXC4iaqWmgzqxlL/EPQtgv2swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAzMDIwMTQ4NDdaFw0yNzAzMDEwMTUzNDdaMDMxMTAvBgNV
BAMTKDg5QUU3M0E2MTdFMkM4MzRDM0ZEN0U5NDAzMERFRTFGQjk2Qjc1QjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr/8yNcZ59cmsH80Bx25GLuiAO
4hIdksmKJdsgR1oomRMLpSQwiNGfUSx6Fuo4xAgqONz5c0t+HP6n+9OFikRVcIsN
KAm40WQ/Mwbr4wlGsTkA/Ok/b3KRjRFaPUrYZreWksmZNrSG3YdDQ9xEGYiVisJ0
NTC/ra+S4X3IiyEpjloSxGhutebV12QPlHLd2qKoVe1NKSv/iftZ/Z+VUtlnoETU
fQKmWt3ag1ifQ1o2gwZje3x+NPhgR5KRewp4XvT0fxfxkpgWkxuSVphH60NYQtHG
1TnJn6QjTBBOo9MybIZG22i0jtd2IWWNzVAnnzezdbDc7KY+C5j4wTCfEqSHAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUia5zphfiyDTD/X6UAw3uH7lrdbAwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDgyNjYucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBABSGSED
BABSGSgDBABSJnkDBABSJ5YwDQYJKoZIhvcNAQELBQADggEBABSz1rC65oy/yaf9
IvtXRCFqiFs2iw2pYkkRQEURLmfJoya6NK0tfb6/th2Yx8GbBg63rUjmvIZ3j6Hj
KtlWKHzwic40uAs6xkCk1INzlwS0RIov5KYSxFNZZ5K2RtMDCM6e6Nv1BRZYPvnN
/zSz9/kb1UZHlKlZ7TOokgUrCF1rHY6WB6HusOw7GycjJApRG3bLU1mB+vym3jXm
sbgAJboHJ+FFOnCajWtFP83VdVXTgSTdcVrxnokuSMU7kIsDi0Atwm/qiBCmuaBw
sMyjAvkbAWIs8P9tAuSVp+gmX53qZ6ehqB9MRtH74aYqBPhk/IAfhNhvzH0uxd+1
xruqH2s=
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:48:24 2026 by rpki-client