Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS984.roa
File: AS984.roa (raw, json)
Hash identifier: +iJHDyARfVVvJ5Dq0wotL+Fz8TpMTOuQZTbFfUoVPag=
Subject key identifier: 5A:AB:2A:89:3C:F1:D7:51:A0:AE:BE:73:E5:6C:A5:A8:18:EB:D5:DF
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 638DC97EA21A8FE2C0FF43940FB9900977A8CA60
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS984.roa
Signing time: Sun 01 Mar 2026 05:41:56 +0000
ROA not before: Sun 01 Mar 2026 05:36:56 +0000
ROA not after: Sun 28 Feb 2027 05:41:56 +0000
asID: 984
IP address blocks: 178.83.144.0/24 maxlen: 24
2a13:9500:8c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:8d:c9:7e:a2:1a:8f:e2:c0:ff:43:94:0f:b9:90:09:77:a8:ca:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 1 05:36:56 2026 GMT
Not After : Feb 28 05:41:56 2027 GMT
Subject: CN=5AAB2A893CF1D751A0AEBE73E56CA5A818EBD5DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:b3:f5:c3:ad:78:e0:89:bb:18:88:28:44:
a3:ff:3a:14:e8:9c:1a:e4:35:c5:21:91:b0:c3:ff:
d4:ab:69:4e:0d:c6:a2:88:e9:c8:3c:25:ef:b3:67:
2a:10:80:2f:8d:e3:d6:6b:ad:ef:dd:3f:d5:84:e5:
77:41:2d:73:fb:8c:19:58:7a:27:11:c7:9e:03:91:
23:5a:41:22:d1:d4:77:2a:49:e2:92:35:52:e7:3c:
9f:0d:e0:59:1b:55:24:a4:9a:c9:d1:38:d7:f6:b1:
67:5e:a9:5a:8d:59:fb:71:26:6e:40:4e:6e:10:7f:
62:03:42:8c:22:d7:4f:4e:4e:2d:a6:0c:fe:a6:48:
0a:c4:c5:87:d0:6b:b7:a4:17:0d:5c:fd:90:fb:d8:
0f:7e:32:ce:a0:c9:8d:9a:dc:25:5b:e6:5a:af:8a:
96:1a:ae:7e:3f:d6:bd:f1:e1:16:1f:92:e4:fc:42:
08:03:37:d0:30:d0:5e:35:08:04:80:e8:a3:45:50:
5c:f5:14:28:f1:74:87:a0:3f:f8:12:b9:29:b7:a6:
3e:d7:22:7e:1c:43:19:7a:99:12:b0:7e:eb:e5:35:
9e:1e:ac:b6:63:e2:40:b7:93:59:98:63:61:c8:94:
2d:2a:15:dd:00:54:b0:0a:4b:67:ec:71:7f:20:fc:
fe:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AB:2A:89:3C:F1:D7:51:A0:AE:BE:73:E5:6C:A5:A8:18:EB:D5:DF
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS984.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.144.0/24
IPv6:
2a13:9500:8c::/48
Signature Algorithm: sha256WithRSAEncryption
a2:73:e5:e7:e3:1b:b4:c3:27:fa:a1:55:d2:01:93:84:bf:b3:
45:39:d7:b6:6e:c5:aa:22:4a:e4:0f:d8:c2:83:33:db:5f:36:
9b:ed:d8:62:cb:28:2b:3d:c6:e6:b7:f2:a9:d3:3d:fd:40:a6:
dd:f9:73:56:a3:96:ae:41:87:29:1f:be:4c:7a:eb:cc:94:7b:
e9:70:6e:3a:c8:35:35:d8:43:69:ce:4e:bd:7b:54:f2:45:ce:
77:00:20:d4:9d:4c:18:ac:7b:54:d8:e9:c5:78:8f:9e:0c:60:
02:24:95:61:2c:f6:a3:fe:91:ba:d6:a5:50:03:e0:c5:11:77:
e2:ec:1b:ba:a5:6d:bb:e2:ab:1f:eb:14:28:bb:55:1f:a5:cd:
c0:b7:ac:43:01:5a:b9:1f:7e:6c:75:c2:6e:fe:cb:73:9e:1b:
13:9e:93:fd:52:36:64:51:2c:bd:ed:c0:f2:b1:f6:83:8c:c9:
fb:ef:96:31:2d:9d:99:13:db:55:0d:07:96:f5:79:b4:4e:72:
42:fe:49:88:a4:e3:d7:cb:98:51:4a:2c:c3:4d:85:20:92:eb:
d6:ac:ec:7a:35:2e:ae:a6:94:d9:ad:51:b4:b7:0f:f7:22:57:
8c:4c:83:7b:7b:03:06:08:48:79:8a:84:50:7e:e5:dc:ae:8b:
5f:f4:bf:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:10:45 2026 by rpki-client