Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199829.roa
File: AS199829.roa (raw, json)
Hash identifier: bvLugluaHxr8HzsqsOAfhpq8qtNaWuhknyTTOWsmykY=
Subject key identifier: 04:51:E2:4F:B3:7A:A3:7A:54:E4:32:E7:F8:E3:31:90:59:09:A9:81
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 606D053A80ADC0C881A6F4C020D2E0425A6CE306
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199829.roa
Signing time: Fri 29 May 2026 02:48:14 +0000
ROA not before: Fri 29 May 2026 02:43:14 +0000
ROA not after: Fri 28 May 2027 02:48:14 +0000
asID: 199829
IP address blocks: 82.47.106.0/24 maxlen: 24
2a13:9500:de::/48 maxlen: 48
2a13:9500:129::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:6d:05:3a:80:ad:c0:c8:81:a6:f4:c0:20:d2:e0:42:5a:6c:e3:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 29 02:43:14 2026 GMT
Not After : May 28 02:48:14 2027 GMT
Subject: CN=0451E24FB37AA37A54E432E7F8E331905909A981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:34:af:0d:f7:44:00:42:af:ed:3a:39:5f:19:
41:fc:0f:00:13:8b:25:ee:d5:00:45:1e:1d:18:af:
a0:5a:a8:4e:e2:78:8f:8b:25:62:dd:6f:fc:bc:89:
8a:e8:4b:63:3b:d5:40:72:9b:8f:7b:df:01:93:39:
b5:e4:35:25:17:28:00:0c:1d:41:5e:b1:0a:2f:37:
ea:cd:5c:ba:f7:e9:89:b4:17:98:1f:0a:34:1f:9e:
85:5f:87:9b:0f:4f:3b:0f:f2:e9:58:da:ea:3b:7d:
16:a3:54:ec:f8:ed:9b:8b:e0:e7:67:e4:22:f9:80:
98:60:40:58:d0:1d:b5:8a:76:83:5c:da:73:3e:7b:
41:a7:4b:9d:8d:aa:c2:e3:db:ee:a6:00:b4:aa:e0:
5c:20:cb:b4:f9:6c:6d:dc:8a:10:eb:77:cb:d6:d1:
6a:a5:8a:42:b3:62:d7:dd:ee:ae:29:40:30:3e:27:
ff:de:12:4f:32:8e:b5:c4:eb:70:78:d6:97:ab:02:
89:bc:7d:9b:f0:f8:d3:9d:10:b2:98:f5:43:0d:e5:
7a:81:45:c0:c0:c2:19:0f:2e:f1:ea:78:e7:b5:84:
08:3f:ba:e0:97:c4:fc:59:46:78:50:a4:4c:15:63:
70:af:aa:c4:e3:e5:1a:69:41:92:2b:46:77:fc:5a:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:51:E2:4F:B3:7A:A3:7A:54:E4:32:E7:F8:E3:31:90:59:09:A9:81
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199829.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.106.0/24
IPv6:
2a13:9500:de::/48
2a13:9500:129::/48
Signature Algorithm: sha256WithRSAEncryption
50:4f:f8:f5:75:25:4a:f6:31:cb:c1:cf:68:08:ac:f2:b7:e7:
1a:b5:26:3b:29:1a:51:7f:91:31:fc:7b:38:a3:33:7d:bc:03:
d2:ee:66:ef:d8:e3:6e:0d:df:10:69:bd:10:f9:28:59:c4:45:
77:2d:f8:26:ab:c0:db:a2:13:00:da:73:d9:25:0c:9b:c2:bc:
16:72:b5:68:82:f3:e9:e2:be:4c:e6:21:77:81:9e:1e:72:e2:
cc:fd:a2:43:0c:2a:18:45:90:0c:64:b8:1e:13:1c:1c:ae:14:
a8:eb:c1:16:09:64:66:48:0e:8d:87:0a:e8:3a:26:14:a4:da:
b5:65:8b:3a:ec:26:4e:0a:6e:c0:37:5f:90:0a:99:f1:f2:d0:
bd:af:2e:58:3c:31:80:b4:44:5f:6e:a0:20:57:40:f1:b5:0b:
7f:2f:38:e1:e1:86:f4:4f:0c:82:c4:b2:e3:b6:a9:5e:13:9a:
fe:9f:fc:5e:f0:d3:a4:36:3c:c5:ef:e9:89:70:8b:58:17:d6:
5f:03:d4:0f:b3:7e:43:fd:cb:0a:fe:c9:0a:11:45:53:21:0f:
36:2b:6f:51:08:df:87:e8:ad:e7:1d:d6:ad:96:b3:d5:e4:5d:
c5:7f:33:3f:28:8b:6d:88:09:19:ae:c7:72:cb:16:12:87:f1:
8b:9d:98:f4
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgIUYG0FOoCtwMiBpvTAINLgQlps4wYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MjkwMjQzMTRaFw0yNzA1MjgwMjQ4MTRaMDMxMTAvBgNV
BAMTKDA0NTFFMjRGQjM3QUEzN0E1NEU0MzJFN0Y4RTMzMTkwNTkwOUE5ODEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNK8N90QAQq/tOjlfGUH8DwAT
iyXu1QBFHh0Yr6BaqE7ieI+LJWLdb/y8iYroS2M71UBym4973wGTObXkNSUXKAAM
HUFesQovN+rNXLr36Ym0F5gfCjQfnoVfh5sPTzsP8ulY2uo7fRajVOz47ZuL4Odn
5CL5gJhgQFjQHbWKdoNc2nM+e0GnS52NqsLj2+6mALSq4Fwgy7T5bG3cihDrd8vW
0WqlikKzYtfd7q4pQDA+J//eEk8yjrXE63B41perAom8fZvw+NOdELKY9UMN5XqB
RcDAwhkPLvHqeOe1hAg/uuCXxPxZRnhQpEwVY3CvqsTj5RppQZIrRnf8WnbjAgMB
AAGjggIkMIICIDAdBgNVHQ4EFgQUBFHiT7N6o3pU5DLn+OMxkFkJqYEwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk5ODI5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAUi9q
MBgEAgACMBIDBwAqE5UAAN4DBwAqE5UAASkwDQYJKoZIhvcNAQELBQADggEBAFBP
+PV1JUr2McvBz2gIrPK35xq1JjspGlF/kTH8ezijM328A9LuZu/Y424N3xBpvRD5
KFnERXct+CarwNuiEwDac9klDJvCvBZytWiC8+nivkzmIXeBnh5y4sz9okMMKhhF
kAxkuB4THByuFKjrwRYJZGZIDo2HCug6JhSk2rVlizrsJk4KbsA3X5AKmfHy0L2v
Llg8MYC0RF9uoCBXQPG1C38vOOHhhvRPDILEsuO2qV4Tmv6f/F7w06Q2PMXv6Ylw
i1gX1l8D1A+zfkP9ywr+yQoRRVMhDzYrb1EI34forecd1q2Ws9XkXcV/Mz8oi22I
CRmux3LLFhKH8YudmPQ=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:18:28 2026 by rpki-client