Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa
File: AS137517.roa (raw, json)
Hash identifier: N1pDs9LwvxiKEtLXGARWYcauSMsB4FYqL/7d0mgxPLo=
Subject key identifier: A8:67:AA:38:55:C4:25:72:7B:22:74:F6:4C:00:DD:D4:A1:28:05:44
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 16756C80FBFE51637A171592924090E5F32FA595
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa
Signing time: Tue 02 Jun 2026 08:40:11 +0000
ROA not before: Tue 02 Jun 2026 08:35:11 +0000
ROA not after: Tue 01 Jun 2027 08:40:11 +0000
asID: 137517
IP address blocks: 82.23.250.0/24 maxlen: 24
82.39.110.0/24 maxlen: 24
82.47.21.0/24 maxlen: 24
178.83.159.0/24 maxlen: 24
178.83.173.0/24 maxlen: 24
178.83.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 17:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:75:6c:80:fb:fe:51:63:7a:17:15:92:92:40:90:e5:f3:2f:a5:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 2 08:35:11 2026 GMT
Not After : Jun 1 08:40:11 2027 GMT
Subject: CN=A867AA3855C425727B2274F64C00DDD4A1280544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ff:16:2b:35:f8:9c:d1:cf:29:38:21:21:1e:
8a:fd:89:46:51:30:24:06:ee:e5:46:a7:fc:95:90:
eb:f1:6e:34:31:53:b6:8a:66:61:db:b5:ea:24:56:
5c:09:57:d6:51:b1:09:1b:6c:b7:10:a6:d9:1a:ae:
5f:8f:30:03:19:80:6f:39:1a:9a:39:15:30:1b:7c:
e9:ba:cc:0f:f4:13:19:36:ac:2c:9f:fc:0a:0b:17:
70:ae:eb:e3:1e:f8:6e:e9:a4:cc:90:92:29:b4:9b:
e0:0e:2c:c5:a9:59:dd:59:11:3e:ae:77:97:d2:60:
44:97:2a:62:a0:5a:7b:f4:e7:34:4a:08:c3:d0:76:
33:dc:e5:3b:b6:f8:11:94:d4:3e:75:a8:1e:20:b1:
92:85:4a:1b:a8:ac:ee:ac:8f:d3:46:ac:35:32:dc:
fa:b5:44:14:43:eb:16:75:e6:67:f8:28:40:96:2d:
88:fc:0b:b4:50:dc:80:06:a9:12:c8:7f:e7:85:c7:
46:75:d4:79:a7:c0:7a:99:09:7b:aa:82:ea:b1:db:
34:f0:f3:58:77:6b:c8:f2:1e:90:f7:ea:3a:62:98:
1f:3a:72:23:7c:a8:2c:bc:bd:cc:9a:da:e7:6a:c1:
f8:36:dc:b0:29:f7:d5:2e:16:07:83:cd:52:27:45:
0a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:67:AA:38:55:C4:25:72:7B:22:74:F6:4C:00:DD:D4:A1:28:05:44
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS137517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.250.0/24
82.39.110.0/24
82.47.21.0/24
178.83.159.0/24
178.83.173.0/24
178.83.229.0/24
Signature Algorithm: sha256WithRSAEncryption
04:91:e1:9e:0b:52:93:b1:45:a7:be:a0:d0:3e:bb:2b:79:4b:
0e:62:15:16:cf:fc:bd:1e:de:85:8b:51:bc:9a:19:75:7c:96:
36:c5:9d:d5:4c:83:31:f5:fc:e1:52:1f:a5:8f:6e:ee:3a:e3:
6a:46:aa:7d:23:51:fc:49:0a:18:57:47:c7:68:89:95:5d:1b:
34:57:75:03:61:bf:5f:49:da:de:28:9c:a5:14:95:1d:ae:1a:
3b:2d:38:89:c8:2e:29:74:b6:ee:c6:99:16:3c:6b:c9:72:87:
3a:ab:2f:30:4a:82:13:c1:e0:fe:3a:84:f1:f0:87:ae:bb:8c:
ff:bd:2e:46:bb:ae:ca:44:bb:d0:45:8a:31:b7:de:76:37:08:
bb:b2:b0:f1:ee:2e:65:26:7e:45:5e:24:98:1d:74:e3:9b:6e:
7c:af:19:88:bd:9a:cd:49:e2:2c:80:14:16:15:d3:13:f8:9d:
ab:12:99:8c:20:62:97:f3:4e:ef:fb:52:ed:49:9d:3e:08:29:
64:d4:98:97:49:77:35:cd:cf:91:1e:17:ec:ae:a5:b2:d5:b3:
e4:61:11:1f:f4:26:28:26:d8:48:92:3c:dc:91:15:e0:7e:36:
a9:91:ef:a6:46:9f:b3:a9:a5:e5:2d:52:a9:7b:81:c6:0c:3d:
1b:26:b8:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 5 23:34:10 2026 by rpki-client