Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51765.roa
File: AS51765.roa (raw, json)
Hash identifier: uEiHbO7D6g5BrX1afGTElB0r+ZuTJim0nPjWTN/b5Ps=
Subject key identifier: 80:C5:6B:0C:F3:C7:F2:B0:D8:69:6F:01:73:C9:E2:E9:E0:71:B5:D8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 318429A18A295149582D7360F95E5A6D22490C23
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51765.roa
Signing time: Mon 23 Feb 2026 12:55:39 +0000
ROA not before: Mon 23 Feb 2026 12:50:39 +0000
ROA not after: Mon 22 Feb 2027 12:55:39 +0000
asID: 51765
IP address blocks: 82.21.220.0/24 maxlen: 24
82.21.233.0/24 maxlen: 24
82.21.249.0/24 maxlen: 24
82.22.230.0/24 maxlen: 24
82.22.231.0/24 maxlen: 24
82.22.232.0/24 maxlen: 24
82.22.249.0/24 maxlen: 24
82.23.208.0/24 maxlen: 24
82.23.239.0/24 maxlen: 24
82.24.208.0/24 maxlen: 24
82.24.211.0/24 maxlen: 24
82.24.213.0/24 maxlen: 24
82.24.218.0/24 maxlen: 24
82.24.228.0/24 maxlen: 24
82.24.236.0/24 maxlen: 24
82.24.249.0/24 maxlen: 24
82.25.217.0/24 maxlen: 24
82.25.249.0/24 maxlen: 24
82.26.225.0/24 maxlen: 24
82.26.229.0/24 maxlen: 24
82.27.223.0/24 maxlen: 24
82.29.213.0/24 maxlen: 24
82.29.237.0/24 maxlen: 24
82.29.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:84:29:a1:8a:29:51:49:58:2d:73:60:f9:5e:5a:6d:22:49:0c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 23 12:50:39 2026 GMT
Not After : Feb 22 12:55:39 2027 GMT
Subject: CN=80C56B0CF3C7F2B0D8696F0173C9E2E9E071B5D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:77:57:4b:47:95:ac:f1:19:71:b7:2e:ca:a0:
b5:8f:ff:57:b8:e5:fb:83:22:e3:02:34:f4:43:30:
05:c0:73:7d:a7:f8:4c:3d:00:c9:93:8d:61:e1:a6:
42:0d:cf:36:38:73:da:a9:71:ef:5f:96:f9:08:32:
ae:0e:fe:92:28:ed:d7:75:84:9f:9e:a6:3e:44:5e:
f3:6a:80:07:62:bb:bb:88:59:21:f9:c9:b1:3d:79:
31:20:72:19:53:64:e9:66:99:35:0f:31:39:13:57:
ad:b0:1f:5f:74:1f:b0:42:8d:36:13:dd:d8:f4:e5:
4f:9b:ec:9c:fb:2d:3d:98:8a:c1:2e:05:80:e9:09:
9d:f2:65:23:e4:10:08:9a:90:b1:15:eb:12:85:95:
81:89:84:96:f2:34:9c:8e:73:72:46:2e:1c:fc:32:
c5:2c:32:d9:c6:77:be:ed:b9:0d:80:f3:ce:8c:65:
cd:8f:e4:8d:cd:6a:50:bc:8b:f0:43:9f:43:9d:50:
b2:ce:ab:2b:ab:5d:71:bb:b1:68:25:f3:f5:d9:d8:
b1:c5:a3:59:be:a9:6b:20:de:17:d8:e6:e4:42:22:
94:e6:ff:9e:07:74:99:dd:5f:66:e3:a9:fc:37:d6:
48:ea:21:81:00:0e:c0:52:c0:d1:df:19:05:94:dc:
04:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C5:6B:0C:F3:C7:F2:B0:D8:69:6F:01:73:C9:E2:E9:E0:71:B5:D8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51765.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.220.0/24
82.21.233.0/24
82.21.249.0/24
82.22.230.0-82.22.232.255
82.22.249.0/24
82.23.208.0/24
82.23.239.0/24
82.24.208.0/24
82.24.211.0/24
82.24.213.0/24
82.24.218.0/24
82.24.228.0/24
82.24.236.0/24
82.24.249.0/24
82.25.217.0/24
82.25.249.0/24
82.26.225.0/24
82.26.229.0/24
82.27.223.0/24
82.29.213.0/24
82.29.237.0/24
82.29.249.0/24
Signature Algorithm: sha256WithRSAEncryption
25:4f:65:86:50:7d:b3:5f:6d:7c:07:90:e4:f1:7c:1b:58:ee:
91:02:c9:13:26:c1:6a:fc:75:61:3c:02:76:27:a0:03:61:2b:
3b:60:b6:03:76:cc:62:58:6b:e5:d3:14:e8:ae:d2:a3:d7:72:
ed:47:ad:11:b4:a0:9a:ae:76:15:5e:e9:27:9f:fb:a4:4e:d6:
71:2d:bf:4f:0a:c1:30:0e:c9:a1:8a:20:0d:bf:48:f4:5e:ef:
f4:4d:bc:43:cc:1b:42:6c:e8:47:1f:22:4e:9b:7f:e8:c6:a3:
2c:1e:e5:2f:cc:a0:d3:67:b5:4b:5b:24:95:f2:e5:5b:ac:ee:
b7:6b:9c:5e:f7:07:27:e0:17:b2:63:4f:87:26:a5:f7:c5:36:
a1:f8:a2:17:9e:00:bd:60:ef:6b:65:46:9d:16:97:f0:28:b5:
1b:e8:8a:9f:29:f5:f2:a5:75:7a:d6:10:2a:00:cc:d7:54:1b:
61:0e:31:5c:52:77:33:ca:81:64:2d:77:05:d9:59:ba:73:12:
5d:81:46:09:5a:57:85:89:67:20:95:af:17:20:bd:95:b6:f6:
13:92:79:61:e5:ca:f7:42:ba:7f:de:23:a5:97:12:ab:09:fe:
ed:36:38:cf:9d:93:61:df:4b:8d:b1:f0:1f:e0:47:8a:71:5e:
29:25:f5:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:13:35 2026 by rpki-client