Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS56582.roa
File: AS56582.roa (raw, json)
Hash identifier: S2DMYnnboIkrYv3YQDnKFb2wQquFukmh1fQ6I0v2JvU=
Subject key identifier: F4:A7:A8:D8:F0:19:74:DD:67:0D:84:44:30:00:64:ED:6A:BB:F2:42
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 68F977CD19A1BB899663F5DF0CAE4A8255B39F1B
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS56582.roa
Signing time: Tue 21 Apr 2026 09:49:13 +0000
ROA not before: Tue 21 Apr 2026 09:44:13 +0000
ROA not after: Tue 20 Apr 2027 09:49:13 +0000
asID: 56582
IP address blocks: 212.87.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:f9:77:cd:19:a1:bb:89:96:63:f5:df:0c:ae:4a:82:55:b3:9f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Apr 21 09:44:13 2026 GMT
Not After : Apr 20 09:49:13 2027 GMT
Subject: CN=F4A7A8D8F01974DD670D8444300064ED6ABBF242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7a:54:9a:67:06:d2:ba:20:bb:ec:da:06:8e:
4f:8f:4c:3b:3e:ac:fb:c9:e2:f7:31:51:da:79:ee:
bd:c5:14:cc:f7:d4:d0:9c:84:78:68:08:58:a5:5c:
8f:79:f5:77:ad:05:62:30:26:5d:e5:4c:8f:bc:20:
9b:ca:16:5d:1a:df:7f:a9:2b:24:ba:75:af:00:fd:
c3:c2:38:50:5b:31:6d:ba:2d:d3:3e:aa:d0:52:82:
e2:e0:fc:64:7c:91:61:66:a3:c7:69:3d:12:e7:37:
be:ea:3f:ae:06:4d:e3:9c:6c:7e:e6:71:20:c4:21:
7d:6c:5b:81:0f:b4:0e:94:98:d5:80:46:8b:f1:e1:
05:07:57:65:ea:a9:c1:3c:17:c8:59:2b:a5:08:91:
11:09:de:79:b8:ff:2f:a7:57:82:8e:11:ce:35:a1:
f1:93:6e:21:8b:92:c7:ea:63:bd:54:fd:f1:20:79:
19:90:c6:3f:fa:ee:54:4c:c1:01:d5:62:81:20:83:
4c:0e:18:d8:82:06:f1:7e:82:c3:7f:33:30:0b:75:
18:2d:57:21:71:b7:9f:fe:30:e7:4c:06:26:b4:62:
ec:4e:ea:99:8f:67:32:0c:2b:4d:22:2e:77:f6:04:
35:30:9b:fd:86:be:3f:82:84:e9:e2:3e:5d:e0:68:
58:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A7:A8:D8:F0:19:74:DD:67:0D:84:44:30:00:64:ED:6A:BB:F2:42
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS56582.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.196.0/24
Signature Algorithm: sha256WithRSAEncryption
08:c9:34:a7:a1:4c:b3:25:69:51:6a:26:08:95:3d:f3:54:9e:
29:4c:69:1e:d6:20:06:15:ce:19:ee:db:20:fc:ff:8b:5f:f0:
3d:ac:6c:ce:28:0a:43:6d:53:d3:9e:6d:23:a1:6b:7a:49:ae:
45:c4:b1:43:f8:ef:d9:a4:d2:f1:5e:75:9f:f9:01:12:ce:c5:
11:22:2d:ef:0c:37:87:d4:eb:a9:06:cd:cf:31:60:4a:ab:5c:
a8:38:aa:83:07:cd:42:37:9d:83:05:45:87:f2:ee:10:6f:d0:
89:89:fa:63:42:8c:c5:ae:9e:1d:00:63:97:2e:40:e1:df:43:
52:aa:87:3b:06:ec:82:18:f9:db:bd:8d:6b:21:f8:1e:17:8a:
9f:38:99:ab:c0:ca:ab:9f:d4:36:a3:18:a7:53:4d:23:ca:b9:
16:fc:c3:19:97:fd:59:5d:0a:38:02:42:bd:f2:95:72:1d:e7:
c9:3e:13:a2:8a:43:99:1a:1e:ad:a9:4f:d7:79:d7:b7:cb:3d:
ad:4d:92:e0:e3:d3:16:3e:bd:d6:f2:b3:86:fa:77:d9:1a:6c:
26:b8:ba:e7:cd:2a:f9:d0:53:f7:be:61:cd:d0:7e:7e:7f:62:
d6:ee:c0:73:90:9d:b4:c3:30:8e:5f:63:db:59:69:af:4b:e9:
7f:8d:03:3b
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIUaPl3zRmhu4mWY/XfDK5KglWznxswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWRmYmZmMjE3MTA1ZGY4ODc3ZDQ2M2Y2ZTliYWMyOGE0
MDg0ZDIwYzAeFw0yNjA0MjEwOTQ0MTNaFw0yNzA0MjAwOTQ5MTNaMDMxMTAvBgNV
BAMTKEY0QTdBOEQ4RjAxOTc0REQ2NzBEODQ0NDMwMDA2NEVENkFCQkYyNDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdelSaZwbSuiC77NoGjk+PTDs+
rPvJ4vcxUdp57r3FFMz31NCchHhoCFilXI959XetBWIwJl3lTI+8IJvKFl0a33+p
KyS6da8A/cPCOFBbMW26LdM+qtBSguLg/GR8kWFmo8dpPRLnN77qP64GTeOcbH7m
cSDEIX1sW4EPtA6UmNWARovx4QUHV2XqqcE8F8hZK6UIkREJ3nm4/y+nV4KOEc41
ofGTbiGLksfqY71U/fEgeRmQxj/67lRMwQHVYoEgg0wOGNiCBvF+gsN/MzALdRgt
VyFxt5/+MOdMBia0YuxO6pmPZzIMK00iLnf2BDUwm/2Gvj+ChOniPl3gaFjrAgMB
AAGjggIJMIICBTAdBgNVHQ4EFgQU9Keo2PAZdN1nDYREMABk7Wq78kIwHwYDVR0j
BBgwFoAUnfv/IXEF34h31GP26brCikCE0gwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNTViNGQ5ZTgtNDExMS00Mzk0LWEzYTYtYmQ4MjUxZTdm
YmJkLzAvOURGQkZGMjE3MTA1REY4ODc3RDQ2M0Y2RTlCQUMyOEE0MDg0RDIwQy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25mdl9JWEVGMzRoMzFHUDI2YnJDaWtD
RTBndy5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzU1YjRkOWU4LTQxMTEt
NDM5NC1hM2E2LWJkODI1MWU3ZmJiZC8wL0FTNTY1ODIucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADUV8Qw
DQYJKoZIhvcNAQELBQADggEBAAjJNKehTLMlaVFqJgiVPfNUnilMaR7WIAYVzhnu
2yD8/4tf8D2sbM4oCkNtU9OebSOha3pJrkXEsUP479mk0vFedZ/5ARLOxREiLe8M
N4fU66kGzc8xYEqrXKg4qoMHzUI3nYMFRYfy7hBv0ImJ+mNCjMWunh0AY5cuQOHf
Q1KqhzsG7IIY+du9jWsh+B4Xip84mavAyquf1DajGKdTTSPKuRb8wxmX/VldCjgC
Qr3ylXId58k+E6KKQ5kaHq2pT9d517fLPa1NkuDj0xY+vdbys4b6d9kabCa4uufN
KvnQU/e+Yc3Qfn5/YtbuwHOQnbTDMI5fY9tZaa9L6X+NAzs=
-----END CERTIFICATE-----
Generated at Mon Apr 27 14:44:42 2026 by rpki-client