Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199779.roa
File: AS199779.roa (raw, json)
Hash identifier: swGo8tvGdSfsFnltcaSCgfa8iqzfWeNAA8vNfSCLLCo=
Subject key identifier: 84:BD:48:E2:98:38:2B:FD:AB:4C:0C:47:68:15:C4:A6:E8:87:68:D6
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5251FC4465EC2632ABCBFDA3B84D34211CFE60E3
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199779.roa
Signing time: Fri 29 May 2026 07:37:52 +0000
ROA not before: Fri 29 May 2026 07:32:52 +0000
ROA not after: Fri 28 May 2027 07:37:52 +0000
asID: 199779
IP address blocks: 2a13:9500:185::/48 maxlen: 48
2a13:9500:186::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:51:fc:44:65:ec:26:32:ab:cb:fd:a3:b8:4d:34:21:1c:fe:60:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 29 07:32:52 2026 GMT
Not After : May 28 07:37:52 2027 GMT
Subject: CN=84BD48E298382BFDAB4C0C476815C4A6E88768D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d9:95:af:27:96:34:a4:3b:24:91:d8:d2:62:
4f:9d:5c:a1:66:35:67:d2:e3:c0:8c:a1:66:cf:e3:
67:c9:17:32:c1:49:45:70:f0:1a:36:29:a9:8a:89:
95:f3:3f:7a:05:1f:44:b1:28:c2:ed:88:4d:4c:20:
e3:49:3f:82:a0:93:35:1b:8e:9a:6e:d5:8f:f3:6a:
7d:31:bd:45:ea:b9:26:1c:26:d2:3d:d0:e1:0f:3b:
cb:3c:0c:80:ed:79:6b:94:95:50:e5:49:19:b2:90:
8d:dd:72:a5:2f:60:60:72:da:58:1f:34:c0:48:fd:
65:f4:b7:47:df:57:01:c5:90:ca:63:f1:86:23:be:
3e:52:d9:92:ae:7b:c3:97:97:49:00:ca:77:25:9d:
7b:d7:f9:d7:fa:7b:65:da:78:4a:bf:00:a9:94:0c:
fe:da:7c:e4:42:fd:69:28:a4:14:f3:f5:b9:e9:e7:
9f:e5:2d:28:1d:f4:f5:33:57:a7:ee:ec:f7:ac:e3:
9b:d9:ef:6b:79:50:bf:45:8a:11:f6:4e:4d:e3:0a:
3a:bb:45:7e:05:6b:d9:2c:34:f4:72:0f:0a:bf:8a:
85:40:de:70:9d:dd:ae:3d:59:e9:43:01:1a:9e:e7:
9b:56:79:2c:e0:08:1e:07:1c:c6:d8:13:8a:33:22:
df:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BD:48:E2:98:38:2B:FD:AB:4C:0C:47:68:15:C4:A6:E8:87:68:D6
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199779.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:185::-2a13:9500:186:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
08:18:7c:ce:10:8e:c8:ed:8b:f4:54:4a:bc:0c:cc:b3:ce:52:
50:23:11:c5:dc:3f:a1:8d:ed:95:a9:95:8c:d6:20:68:8a:e4:
ea:07:ef:da:61:63:60:4a:93:f5:8d:1c:69:b7:28:7b:42:98:
38:b1:80:b6:33:8a:cf:37:e0:27:7b:70:54:f8:2b:87:88:fa:
e2:24:77:3a:fd:ab:a7:4a:b8:23:c7:9d:96:06:80:26:91:6e:
bd:c1:f4:53:17:1c:22:85:75:28:3c:f6:1a:ea:50:e4:cc:2f:
57:45:16:7e:3a:86:74:d8:da:2b:77:03:51:c7:43:93:0b:d6:
a4:03:dd:45:8a:db:b9:78:6d:bd:f5:e6:c0:9f:d0:c3:05:1b:
a1:e5:5a:b8:54:5a:4f:f8:b6:30:ac:3c:78:9f:91:0b:1c:39:
69:61:da:a8:51:26:66:17:2e:3c:fb:fc:b1:52:53:81:48:03:
8b:b6:2e:a1:0e:88:ad:5e:c5:d3:45:5e:83:da:eb:96:69:ec:
9f:29:12:76:cf:db:32:57:67:11:fa:54:af:d0:bb:7f:64:da:
c6:cf:45:5c:f6:2e:e7:3a:ae:5b:e7:03:aa:86:b9:95:ea:ca:
6e:d0:3d:07:3d:9b:6b:61:e9:43:ba:d6:a5:b9:ed:a1:b1:f0:
8b:07:b8:69
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgIUUlH8RGXsJjKry/2juE00IRz+YOMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MjkwNzMyNTJaFw0yNzA1MjgwNzM3NTJaMDMxMTAvBgNV
BAMTKDg0QkQ0OEUyOTgzODJCRkRBQjRDMEM0NzY4MTVDNEE2RTg4NzY4RDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ2ZWvJ5Y0pDskkdjSYk+dXKFm
NWfS48CMoWbP42fJFzLBSUVw8Bo2KamKiZXzP3oFH0SxKMLtiE1MIONJP4KgkzUb
jppu1Y/zan0xvUXquSYcJtI90OEPO8s8DIDteWuUlVDlSRmykI3dcqUvYGBy2lgf
NMBI/WX0t0ffVwHFkMpj8YYjvj5S2ZKue8OXl0kAynclnXvX+df6e2XaeEq/AKmU
DP7afORC/WkopBTz9bnp55/lLSgd9PUzV6fu7Pes45vZ72t5UL9FihH2Tk3jCjq7
RX4Fa9ksNPRyDwq/ioVA3nCd3a49WelDARqe55tWeSzgCB4HHMbYE4ozIt/PAgMB
AAGjggIYMIICFDAdBgNVHQ4EFgQUhL1I4pg4K/2rTAxHaBXEpuiHaNYwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk5Nzc5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAq
E5UAAYUDBwAqE5UAAYYwDQYJKoZIhvcNAQELBQADggEBAAgYfM4Qjsjti/RUSrwM
zLPOUlAjEcXcP6GN7ZWplYzWIGiK5OoH79phY2BKk/WNHGm3KHtCmDixgLYzis83
4Cd7cFT4K4eI+uIkdzr9q6dKuCPHnZYGgCaRbr3B9FMXHCKFdSg89hrqUOTML1dF
Fn46hnTY2it3A1HHQ5ML1qQD3UWK27l4bb315sCf0MMFG6HlWrhUWk/4tjCsPHif
kQscOWlh2qhRJmYXLjz7/LFSU4FIA4u2LqEOiK1exdNFXoPa65Zp7J8pEnbP2zJX
ZxH6VK/Qu39k2sbPRVz2Luc6rlvnA6qGuZXqym7QPQc9m2th6UO61qW57aGx8IsH
uGk=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:34 2026 by rpki-client