Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS59711.roa
File: AS59711.roa (raw, json)
Hash identifier: TfWhLUdGWrwUxXjUGHLljeXrSDlc40jiMEbSgo6sqpA=
Subject key identifier: C0:0D:D0:8E:0F:BB:39:0E:46:2F:B6:B9:FB:C7:78:A4:2B:D1:E1:2B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6FC340AD8171FF83E3F1F403D1D6FAE8EA195D26
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS59711.roa
Signing time: Wed 25 Feb 2026 11:46:27 +0000
ROA not before: Wed 25 Feb 2026 11:41:27 +0000
ROA not after: Wed 24 Feb 2027 11:46:27 +0000
asID: 59711
IP address blocks: 82.21.210.0/24 maxlen: 24
82.21.213.0/24 maxlen: 24
82.21.216.0/24 maxlen: 24
82.21.255.0/24 maxlen: 24
82.22.208.0/24 maxlen: 24
82.22.250.0/24 maxlen: 24
82.22.255.0/24 maxlen: 24
82.23.205.0/24 maxlen: 24
82.23.223.0/24 maxlen: 24
82.23.240.0/24 maxlen: 24
82.23.245.0/24 maxlen: 24
82.24.209.0/24 maxlen: 24
82.24.216.0/24 maxlen: 24
82.24.250.0/24 maxlen: 24
82.24.255.0/24 maxlen: 24
82.25.209.0/24 maxlen: 24
82.25.211.0/24 maxlen: 24
82.25.220.0/24 maxlen: 24
82.25.225.0/24 maxlen: 24
82.25.229.0/24 maxlen: 24
82.25.233.0/24 maxlen: 24
82.25.250.0/24 maxlen: 24
82.25.255.0/24 maxlen: 24
82.26.210.0/24 maxlen: 24
82.26.234.0/24 maxlen: 24
82.26.250.0/24 maxlen: 24
82.27.88.0/24 maxlen: 24
82.27.89.0/24 maxlen: 24
82.27.107.0/24 maxlen: 24
82.27.109.0/24 maxlen: 24
82.27.229.0/24 maxlen: 24
82.27.250.0/24 maxlen: 24
82.29.210.0/24 maxlen: 24
82.29.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:c3:40:ad:81:71:ff:83:e3:f1:f4:03:d1:d6:fa:e8:ea:19:5d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 25 11:41:27 2026 GMT
Not After : Feb 24 11:46:27 2027 GMT
Subject: CN=C00DD08E0FBB390E462FB6B9FBC778A42BD1E12B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:6a:83:b1:ce:f6:46:aa:90:f4:c1:33:dc:
0f:e9:bc:c2:d8:e4:94:59:de:08:30:19:fb:86:3d:
1b:51:ab:5d:f1:f1:89:2d:43:84:91:c6:2f:78:7e:
3b:4f:78:47:e5:8f:ae:96:c0:e3:a4:85:a9:9f:01:
15:ce:3c:8b:10:69:da:88:0b:7c:0d:c1:3b:09:94:
3d:8a:dd:e8:cd:bf:b9:3a:93:ed:2a:86:16:7d:34:
be:c4:16:36:4d:fe:0c:08:f5:0e:76:81:27:6b:d8:
6e:05:28:8c:4f:b6:e9:c2:b6:d2:71:3d:1c:19:84:
80:df:8f:d4:4e:2b:27:c7:5f:b1:9f:1b:74:b7:b3:
76:c5:2c:d2:0d:c0:c3:98:1e:29:28:9d:9e:f2:e4:
26:46:bc:e9:eb:5c:98:5a:66:06:2c:90:44:10:e3:
15:c1:06:6b:ef:ed:21:f5:d4:7a:54:7e:09:90:47:
f6:4b:5c:62:95:7a:2a:ef:7a:15:c0:3a:d7:f0:0d:
9b:9a:e8:63:a0:fa:a1:ca:80:bd:11:75:81:eb:79:
1d:a9:cc:22:4c:df:f1:1c:d3:70:b1:e6:4a:7f:1d:
85:91:87:83:02:77:ee:8d:13:e1:6f:09:f8:77:2d:
e2:51:10:66:a7:37:7a:cc:7a:61:2f:09:3b:e0:b8:
87:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0D:D0:8E:0F:BB:39:0E:46:2F:B6:B9:FB:C7:78:A4:2B:D1:E1:2B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS59711.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.210.0/24
82.21.213.0/24
82.21.216.0/24
82.21.255.0/24
82.22.208.0/24
82.22.250.0/24
82.22.255.0/24
82.23.205.0/24
82.23.223.0/24
82.23.240.0/24
82.23.245.0/24
82.24.209.0/24
82.24.216.0/24
82.24.250.0/24
82.24.255.0/24
82.25.209.0/24
82.25.211.0/24
82.25.220.0/24
82.25.225.0/24
82.25.229.0/24
82.25.233.0/24
82.25.250.0/24
82.25.255.0/24
82.26.210.0/24
82.26.234.0/24
82.26.250.0/24
82.27.88.0/23
82.27.107.0/24
82.27.109.0/24
82.27.229.0/24
82.27.250.0/24
82.29.210.0/24
82.29.255.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:be:b4:fc:44:03:86:f6:95:e0:ac:e4:99:43:27:5d:14:ce:
e8:a8:62:ae:b2:8a:96:f2:b1:e4:6a:9f:43:3a:6c:b2:8c:28:
cc:6b:f5:b7:5a:e2:6c:03:bb:bc:12:e6:33:f3:17:ab:71:8a:
84:5b:f0:dc:c6:8e:e6:12:2d:aa:d4:65:e6:9c:e2:d7:a1:69:
fc:4f:66:17:b1:6b:8d:92:f7:40:2a:79:85:8e:08:6b:b3:20:
6b:58:c5:59:b6:24:f4:0c:32:d6:d3:71:4d:9d:da:36:4f:cb:
aa:f2:22:55:14:80:d6:fc:7f:c9:9e:1f:5e:71:16:65:ca:85:
bb:80:97:99:ac:0e:64:6d:2d:fb:91:de:8d:81:c3:00:49:d0:
8a:e3:c7:a4:85:4c:fd:3d:85:b0:28:62:da:aa:5d:41:74:73:
95:0b:cb:e0:52:ac:de:e9:84:b6:03:d7:44:a4:d9:83:2e:38:
83:e9:a0:58:96:f8:15:c4:30:96:98:7b:db:20:5c:54:4e:c2:
37:20:d0:79:2e:e0:64:5b:44:ae:6b:61:b9:07:15:d0:f8:d4:
ca:11:24:0d:95:77:ec:fa:6e:dc:6c:c0:92:b0:4d:c8:e9:ba:
d4:80:78:24:b1:ad:2e:a4:3e:8e:bc:d7:16:76:af:fe:bc:94:
73:a0:78:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:57:31 2026 by rpki-client