
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
File: AS154132.roa (raw, json)
Hash identifier: XMvmdRnVPP58oJuo/ZJ+D5uZw3J26NQEkK+bFrji3so=
Subject key identifier: 6E:9D:68:BB:DD:36:FB:FD:FF:98:CA:F4:60:70:67:A1:3B:E7:CE:0E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 061903B5C165739475780004FEDE0241273F820E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
Signing time: Thu 16 Jul 2026 12:01:47 +0000
ROA not before: Thu 16 Jul 2026 11:56:47 +0000
ROA not after: Thu 15 Jul 2027 12:01:47 +0000
asID: 154132
IP address blocks: 82.38.122.0/24 maxlen: 24
84.75.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:19:03:b5:c1:65:73:94:75:78:00:04:fe:de:02:41:27:3f:82:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 16 11:56:47 2026 GMT
Not After : Jul 15 12:01:47 2027 GMT
Subject: CN=6E9D68BBDD36FBFDFF98CAF4607067A13BE7CE0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a3:6e:3a:76:dd:25:65:41:9a:9c:b9:58:2b:
13:73:74:56:43:0f:f4:29:77:05:97:68:08:e0:75:
b0:ef:74:f7:dc:4d:a7:36:93:fa:c8:6c:2a:24:25:
a7:df:ba:85:1a:cd:85:50:02:f9:c2:f3:8a:26:1a:
de:ee:ee:ac:25:e8:e6:50:0e:e2:11:79:5f:53:24:
9f:a5:4a:5a:f2:f9:cc:da:73:04:69:88:d4:8b:f1:
ec:8f:46:9c:29:97:98:3e:54:98:65:ff:e8:2a:c1:
8e:b8:b9:24:e9:21:41:51:88:54:da:58:98:b8:ad:
36:e3:1c:bd:fa:41:66:6a:e9:ef:f3:6b:ed:5d:70:
b8:ac:9c:e5:ee:10:e4:73:d5:b8:ff:7d:79:0c:a2:
bd:e2:ca:ba:06:80:06:e9:5f:00:4d:1a:1f:cc:9c:
9d:ac:29:44:8d:c8:bd:8d:58:b7:71:ad:a7:90:cd:
29:82:e7:76:05:2b:36:64:77:a7:99:af:9c:b9:43:
69:f5:5f:f8:00:b5:dd:fe:b9:58:0e:57:94:eb:a9:
d9:31:9d:01:0b:d3:30:fd:47:9f:21:0b:f6:22:2d:
1d:e1:d8:23:f3:98:b5:fe:0d:67:86:80:b8:ac:84:
e9:bc:45:9e:96:a1:b5:d7:0f:3e:07:b4:27:61:50:
97:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9D:68:BB:DD:36:FB:FD:FF:98:CA:F4:60:70:67:A1:3B:E7:CE:0E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS154132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.38.122.0/24
84.75.149.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:06:24:7f:6b:49:25:43:8f:ed:e8:58:2e:04:84:bf:f4:c0:
5f:f8:ad:5e:82:89:ae:4c:95:5d:d5:27:0d:14:05:40:1a:86:
15:57:bd:1b:04:d3:a9:52:5b:5e:6b:9a:d4:b5:2a:40:13:c5:
36:3d:b9:f5:44:d8:0e:2e:29:d1:cc:24:f7:ea:f0:c0:8c:2d:
3d:46:32:1a:db:97:cb:a7:e9:fa:af:75:86:8c:64:c8:31:36:
fe:57:54:79:3e:69:55:5b:90:59:b6:1b:62:cb:e8:e7:33:49:
b9:1a:df:ab:0a:af:19:24:e1:8c:36:12:14:37:63:dd:b3:60:
2d:82:30:a6:30:6e:2e:a4:9a:a9:7a:74:9c:73:62:17:8c:1d:
69:ab:f0:c5:db:59:a6:a1:67:07:40:6c:04:52:e8:f1:db:5a:
79:85:d3:91:0e:3e:5e:d1:6f:94:5d:6a:12:3a:73:c0:c3:78:
1d:09:f6:a6:28:b3:bf:0a:cc:15:31:b9:ef:29:a8:82:01:af:
3f:17:5d:d5:ea:89:17:0b:f5:cc:96:3e:63:5f:f2:b6:b8:9b:
27:a9:e7:7e:99:59:2d:55:f6:e9:47:d8:d1:0e:63:33:a7:41:
ca:78:5b:4c:d0:ef:5c:77:88:84:e3:54:f3:6f:14:2d:d8:69:
c7:6b:1a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:08:00 2026 by rpki-client