Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: gVdOE7RvczicUjd7AKO/mTFkJ6m+krbyzFcN4W5ZAHM=
Subject key identifier: 94:D2:9F:05:5D:65:E4:BF:78:1D:6D:54:61:DD:0E:88:BE:13:1A:47
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0455791D362E7EF2CB82635D7A538E1836D40724
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS61317.roa
Signing time: Thu 26 Mar 2026 08:03:49 +0000
ROA not before: Thu 26 Mar 2026 07:58:49 +0000
ROA not after: Thu 25 Mar 2027 08:03:49 +0000
asID: 61317
IP address blocks: 82.22.200.0/24 maxlen: 24
82.23.195.0/24 maxlen: 24
82.24.92.0/22 maxlen: 24
82.24.181.0/24 maxlen: 24
82.26.66.0/24 maxlen: 24
82.27.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Apr 2026 15:15:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:55:79:1d:36:2e:7e:f2:cb:82:63:5d:7a:53:8e:18:36:d4:07:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 26 07:58:49 2026 GMT
Not After : Mar 25 08:03:49 2027 GMT
Subject: CN=94D29F055D65E4BF781D6D5461DD0E88BE131A47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:4a:66:72:d9:9b:c8:ce:06:f9:40:9a:7b:
d1:03:db:9f:c5:9a:3b:06:75:75:d4:f1:ec:63:7a:
4a:58:00:98:6c:9b:ae:7b:12:6d:16:c5:b3:95:1a:
39:d3:6f:c0:41:6f:82:f7:7d:2e:58:00:f1:61:5e:
07:6d:95:6e:a5:62:c4:27:09:61:5a:9b:06:3a:40:
39:28:09:87:18:23:68:06:77:98:fd:86:e0:a8:f7:
7d:cb:56:fc:cf:ad:fd:c0:bc:d6:c4:c6:4f:a3:d7:
12:74:97:20:55:99:86:9f:aa:63:3f:88:b3:69:5b:
c7:11:3a:37:38:64:1c:99:d1:fe:7f:e7:74:97:90:
e0:36:28:28:66:bc:70:73:a8:62:e7:7e:7b:a5:8c:
20:02:7c:de:4f:6d:65:f1:12:5d:08:4b:dc:ff:8c:
13:2f:a0:f3:bf:c3:50:72:2c:44:7e:92:81:99:a3:
14:70:1c:07:6e:8c:fb:a3:16:c4:9e:f6:1f:c4:e0:
ab:2f:f1:a2:19:2f:46:8c:f5:9b:dd:48:67:18:08:
86:20:42:96:ca:16:ff:db:30:8f:03:ce:25:13:62:
58:6c:23:dd:d7:0c:5d:b0:59:47:cb:78:2f:08:b4:
f4:a7:58:74:53:bb:60:a5:2e:de:ec:ef:6d:c9:70:
5e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D2:9F:05:5D:65:E4:BF:78:1D:6D:54:61:DD:0E:88:BE:13:1A:47
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.200.0/24
82.23.195.0/24
82.24.92.0/22
82.24.181.0/24
82.26.66.0/24
82.27.8.0/24
Signature Algorithm: sha256WithRSAEncryption
70:f1:63:61:be:dd:b3:de:05:2d:12:d4:aa:10:9a:f5:6b:2f:
1d:53:17:90:99:30:de:03:e8:4c:84:b6:ad:43:81:12:d4:32:
c3:3c:f0:49:3d:c3:b7:3f:a2:c7:a0:f6:33:01:f1:bd:84:b9:
10:cb:f5:a2:67:6f:2e:1d:c4:5e:ab:4b:00:98:4f:40:58:2c:
fd:21:2f:94:5a:ba:06:96:17:ec:65:77:17:4b:44:f1:aa:fc:
d8:18:6c:0d:b4:61:d5:f3:e6:92:a8:5f:43:cf:15:3e:c4:ec:
2f:d3:63:59:fd:9b:65:8e:3d:69:35:62:aa:23:84:cf:39:c6:
f7:f0:72:a4:35:d1:dc:ae:8d:cc:86:6f:46:55:a3:01:b6:a1:
10:54:96:75:b8:e2:bd:84:61:53:74:48:bf:c1:0b:56:89:13:
24:da:c7:53:f1:8a:bb:88:3a:b8:ba:06:1c:5f:fd:ec:8a:bf:
3c:c9:d0:e0:30:aa:d9:5a:c5:cd:ed:7e:20:e1:0b:62:28:11:
34:87:44:b1:95:03:62:84:9c:59:f7:d1:f6:e3:51:d7:25:21:
a9:f1:2b:b4:14:4d:a2:ef:52:3a:74:46:63:ac:e5:d9:66:e7:
4c:02:f9:58:1a:29:1c:1d:2b:7b:c4:f1:5e:04:3e:d2:4a:ef:
49:ef:fc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 8 23:05:29 2026 by rpki-client