Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
File: AS174.roa (raw, json)
Hash identifier: iiUYHpci8IXcJUru0uzCgE6rkvrito3CJOj1ovG5D7Q=
Subject key identifier: 3A:65:D1:B8:3C:9A:17:24:D9:98:C8:CE:06:35:71:82:1E:F2:12:F9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3BE5FE5BBAC6FFBCFF1A83C7D75F6B84C8F1515E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
Signing time: Tue 02 Jun 2026 03:33:03 +0000
ROA not before: Tue 02 Jun 2026 03:28:03 +0000
ROA not after: Tue 01 Jun 2027 03:33:03 +0000
asID: 174
IP address blocks: 82.47.24.0/23 maxlen: 24
2a13:9500:14f::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:e5:fe:5b:ba:c6:ff:bc:ff:1a:83:c7:d7:5f:6b:84:c8:f1:51:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 2 03:28:03 2026 GMT
Not After : Jun 1 03:33:03 2027 GMT
Subject: CN=3A65D1B83C9A1724D998C8CE063571821EF212F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5d:c5:fa:b7:53:fa:cc:02:24:4a:11:25:b6:
d1:33:a6:c6:ca:d7:9d:c9:ab:c3:c3:40:9e:e0:84:
d4:4e:b7:84:82:01:ed:63:ad:2f:10:08:a8:bb:e9:
73:21:4f:8c:42:b0:bc:70:ae:4f:0a:a7:bd:47:4a:
7f:7f:db:c3:1f:ee:07:96:a2:49:68:d4:3a:f7:04:
30:45:cd:f6:db:70:1c:62:5c:5f:ce:64:ce:7f:a3:
bb:eb:b3:10:7f:d9:98:eb:56:01:dc:67:5a:09:47:
b2:73:14:72:ff:11:e0:5c:65:4f:7a:51:fc:07:30:
31:08:2b:a7:b4:81:1a:c4:f0:62:8a:f6:ce:ee:c3:
8a:4b:b0:7b:38:69:f0:a2:b3:1e:3a:f3:c8:bd:84:
f3:8e:84:ea:96:9a:be:cb:2c:22:b6:9a:eb:8a:06:
69:b2:22:97:26:3a:96:a2:f1:79:8f:b0:8c:a3:92:
a4:77:f9:fe:16:8c:ac:c0:1f:23:82:cc:4a:36:79:
08:02:39:d9:d6:68:c9:cd:fa:9b:ed:83:dd:db:81:
81:a9:b6:9c:d0:35:ec:8e:4a:aa:13:4b:59:c8:f3:
f7:41:b0:18:8c:b2:2d:85:eb:91:0c:e0:3f:9f:ad:
dc:2c:97:e5:fd:46:80:52:c4:4e:3d:23:31:7e:57:
d3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:65:D1:B8:3C:9A:17:24:D9:98:C8:CE:06:35:71:82:1E:F2:12:F9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS174.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.24.0/23
IPv6:
2a13:9500:14f::/48
Signature Algorithm: sha256WithRSAEncryption
73:31:bd:d8:0f:fb:54:d7:de:9b:a2:16:59:cf:4a:c7:5d:b6:
8e:dd:68:9e:b8:09:6a:48:91:99:9b:1b:a1:b4:20:19:44:48:
f0:55:5e:55:e3:97:86:55:23:85:c4:eb:05:d1:96:c4:de:54:
1d:4a:9c:cb:e8:80:23:d4:d0:66:d0:c1:db:2c:ea:c4:b0:79:
5b:8e:98:4d:d3:01:d7:b7:c4:34:69:12:76:cc:e8:53:8f:57:
d2:a2:5e:28:23:ef:da:6b:d0:52:0c:c9:22:09:e6:36:d6:19:
fc:82:b7:55:2f:b8:63:b2:23:a5:62:aa:2f:6e:6f:43:b3:bb:
ac:58:b6:c5:ab:ac:9c:ce:fb:4a:c9:4c:b5:e5:a1:3a:26:e1:
e8:8b:e6:23:e8:0b:96:d7:c6:90:b9:1d:fb:ba:e6:12:9b:96:
cc:7a:d0:7b:b0:29:48:92:43:18:7a:26:42:06:ba:0f:71:44:
d6:bc:96:f0:f1:d1:8f:5b:7a:62:e0:1c:fb:10:a0:9d:e3:1c:
d1:fb:a0:2d:6c:a3:9f:c5:83:6c:9b:81:06:75:28:f7:0d:27:
5b:ef:a3:eb:f8:a3:49:c3:8a:59:37:8c:a5:58:aa:2f:6a:49:
03:18:48:6c:38:45:a6:dd:ff:16:0c:31:b2:00:04:18:a6:96:
8d:d6:c6:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:44 2026 by rpki-client