Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS56913.roa
File: AS56913.roa (raw, json)
Hash identifier: vGUDj7g/qlt9FH8ZYs+7dxtDBr9DoTaivQdCZepTqz0=
Subject key identifier: F0:91:43:2D:6F:08:16:08:4B:82:A2:0E:67:32:27:6B:8F:45:4F:A8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 35FF7FE00DB698D057829DC5394FABEA59293F91
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS56913.roa
Signing time: Fri 05 Jun 2026 06:54:50 +0000
ROA not before: Fri 05 Jun 2026 06:49:50 +0000
ROA not after: Fri 04 Jun 2027 06:54:50 +0000
asID: 56913
IP address blocks: 82.26.129.0/24 maxlen: 24
82.47.18.0/24 maxlen: 24
84.75.217.0/24 maxlen: 24
2a13:9500:4d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:ff:7f:e0:0d:b6:98:d0:57:82:9d:c5:39:4f:ab:ea:59:29:3f:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 5 06:49:50 2026 GMT
Not After : Jun 4 06:54:50 2027 GMT
Subject: CN=F091432D6F0816084B82A20E6732276B8F454FA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:37:d5:62:f5:b5:6a:38:17:62:ed:b5:f1:2c:
1c:f1:c7:1b:ce:95:2d:b5:50:0e:13:77:da:bb:3f:
64:22:83:54:0d:e5:dc:39:89:18:d5:d2:28:09:58:
54:be:38:53:b0:09:6f:60:28:c4:a3:9c:59:70:d4:
91:c9:d5:ce:1d:5b:02:b8:69:74:cc:6d:7e:49:52:
63:17:48:7b:18:a5:24:75:83:3d:11:3b:7a:9d:fa:
57:7b:93:4e:33:58:87:11:46:08:7c:4d:57:59:7f:
16:55:b2:2f:9a:be:c1:34:94:2d:9a:7a:f0:88:62:
a1:39:a6:fc:9f:3d:a8:52:43:51:49:da:98:17:87:
e0:44:dc:4f:2e:c4:c2:eb:4c:f6:c1:f0:eb:1c:df:
2a:04:03:5b:d7:90:66:20:96:e4:a3:2c:b1:b9:22:
d8:12:72:6f:92:38:4d:46:22:72:96:83:8a:bd:dd:
96:90:49:4f:c9:7c:a2:14:bf:b4:36:05:ed:9d:41:
6e:79:df:4d:a0:f7:45:28:ef:dd:99:b8:70:cc:36:
de:a2:27:b0:03:d9:dd:ec:c6:ed:35:30:f3:ea:27:
af:17:8f:f7:cb:a4:c2:23:74:b5:74:8c:9d:74:1d:
cb:1e:20:a6:19:95:d5:94:e5:b7:43:b9:2b:31:8b:
0d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:91:43:2D:6F:08:16:08:4B:82:A2:0E:67:32:27:6B:8F:45:4F:A8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS56913.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.129.0/24
82.47.18.0/24
84.75.217.0/24
IPv6:
2a13:9500:4d::/48
Signature Algorithm: sha256WithRSAEncryption
84:77:b8:99:8d:c5:89:02:91:7b:cb:0c:7a:ff:5b:a9:36:26:
d7:2f:c8:b7:a0:21:13:0d:23:1d:d0:a9:f9:2c:38:1d:09:fa:
65:c9:03:ee:79:5b:78:1b:1c:56:e4:5a:25:70:25:8d:a2:28:
f1:dc:66:ab:3d:94:52:44:34:72:97:cd:4f:b2:6d:fe:3c:10:
89:d9:ce:66:be:1f:25:77:82:fc:83:01:29:99:75:69:b5:d1:
b8:81:6d:75:d1:c3:24:5c:84:c1:fd:f1:e0:5d:ab:5b:7d:d1:
da:80:e1:b3:eb:14:b9:96:c7:a2:7e:d7:1e:0e:67:b1:78:62:
20:16:bf:57:9a:d2:4f:1e:48:23:78:cf:27:20:c8:35:b3:03:
3e:e1:a6:4f:3c:e4:b9:0a:74:7e:d9:e7:77:14:a3:16:0c:c0:
ce:ec:fb:83:60:d9:46:2b:e5:a9:a3:76:b9:a6:68:2e:cc:da:
d8:13:54:b4:0b:59:94:e3:17:88:47:14:49:4f:bf:b3:5e:94:
26:d4:f0:8d:7e:a8:0c:b2:7d:e2:17:fe:6b:0a:f9:65:ac:cb:
51:71:3c:5b:40:67:d7:a2:0d:09:7e:22:3e:3d:33:9e:49:3a:
28:c8:5d:10:b0:b7:7b:4d:8a:fd:9a:6e:fa:e4:bd:e6:8b:15:
2a:f9:af:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:26:53 2026 by rpki-client