Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51847.roa
File: AS51847.roa (raw, json)
Hash identifier: u2pfUFRNeWmDjM7ULHb1EzhWHBSENhEo+fVQ8DD3Bj0=
Subject key identifier: 31:87:98:E5:AE:E2:79:47:88:81:BE:B2:DE:46:94:09:D8:E1:D2:99
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1FFD423C2491A5BBD3AA18E70AE9F6D883B0391C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51847.roa
Signing time: Fri 12 Jun 2026 13:05:31 +0000
ROA not before: Fri 12 Jun 2026 13:00:31 +0000
ROA not after: Fri 11 Jun 2027 13:05:31 +0000
asID: 51847
IP address blocks: 82.21.206.0/24 maxlen: 24
82.22.78.0/24 maxlen: 24
82.41.138.0/23 maxlen: 24
84.75.180.0/23 maxlen: 24
178.83.220.0/23 maxlen: 24
2a13:9500:f0::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:fd:42:3c:24:91:a5:bb:d3:aa:18:e7:0a:e9:f6:d8:83:b0:39:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 12 13:00:31 2026 GMT
Not After : Jun 11 13:05:31 2027 GMT
Subject: CN=318798E5AEE279478881BEB2DE469409D8E1D299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:de:ba:06:dc:5a:31:74:1b:5e:5b:ce:29:
1b:a7:39:eb:af:24:27:42:03:72:b2:ef:53:1e:50:
12:7d:00:4b:04:cd:ce:9a:8e:ec:ce:8d:97:5f:a8:
a0:69:eb:15:1b:7c:1d:26:13:5d:07:6f:e0:f3:d3:
bf:61:4f:be:1e:b5:f6:7e:3f:d4:4f:9f:7a:0c:77:
00:91:fa:1b:22:40:74:d6:ff:4a:4c:09:73:36:f5:
62:c1:a7:fd:ed:1b:33:1c:8a:69:c7:23:ee:8d:8c:
d0:cf:73:b3:a5:66:7c:58:31:6b:cc:4b:df:53:c1:
cf:18:83:60:a4:80:68:07:44:d5:da:24:b9:e1:70:
d7:bd:a5:5c:8f:15:3c:b4:a2:c1:79:95:a7:ad:4f:
77:de:60:7c:91:f4:f3:24:46:53:dc:5a:57:23:2f:
04:39:0a:ae:8d:c0:af:74:30:24:1f:1e:be:72:a1:
6c:50:82:4a:49:1a:d3:22:06:ff:69:cd:11:a7:74:
e4:2b:72:1f:be:0b:42:55:58:62:c5:5e:08:e7:24:
cf:30:67:d0:9d:c7:81:8c:31:b5:35:e2:02:00:11:
20:50:94:e3:ea:26:c6:c3:26:65:5e:b6:61:9f:d9:
25:97:05:ec:fa:19:7d:c5:e7:75:5f:86:63:02:b3:
85:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:87:98:E5:AE:E2:79:47:88:81:BE:B2:DE:46:94:09:D8:E1:D2:99
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS51847.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.206.0/24
82.22.78.0/24
82.41.138.0/23
84.75.180.0/23
178.83.220.0/23
IPv6:
2a13:9500:f0::/48
Signature Algorithm: sha256WithRSAEncryption
a1:b1:79:69:b6:5a:33:5e:09:ab:fc:c1:d2:32:44:ed:0a:38:
09:af:9e:b8:09:24:32:e2:36:65:f8:04:c4:6d:76:31:e5:62:
de:4b:19:69:1f:b1:4c:10:85:f1:88:8e:f0:50:9c:6e:11:05:
ac:ba:73:f1:5f:91:8f:4a:62:ea:07:66:e1:5a:6f:af:16:a2:
2f:75:59:23:28:9f:04:b8:94:16:20:dc:53:81:1f:31:ee:9f:
26:ff:da:8c:63:ec:37:f9:1d:68:2c:d8:a7:61:2b:cd:68:f4:
09:2a:ac:88:9a:06:c5:dc:81:a6:48:cc:df:2d:98:93:96:bc:
a5:6d:53:2d:ec:40:78:78:76:c1:0f:c0:6a:11:8e:e8:6c:5e:
b4:65:c5:d6:71:c4:b8:f5:4c:67:57:f4:b2:4c:99:8f:1f:a8:
4c:b1:b2:3f:8a:d8:86:6e:69:1b:90:8c:f7:09:83:73:b6:9a:
a4:92:65:c8:aa:5d:6a:b5:a5:e1:2c:76:1f:b7:6f:2a:a2:0d:
9b:f5:79:66:0c:d2:35:34:1f:c6:11:8b:73:b3:c4:db:ac:55:
5c:34:64:6d:22:ec:6c:d0:4b:df:11:2e:a2:95:dc:49:e2:3a:
b6:ed:3b:80:43:49:6a:cc:bc:38:17:16:00:d3:2a:8c:35:d9:
a3:ce:9f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:26:06 2026 by rpki-client