Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199915.roa
File: AS199915.roa (raw, json)
Hash identifier: C/8559kf9OFkblETyIms66lg9CkR8yqwfyzynYUJNuw=
Subject key identifier: 56:9A:ED:65:DC:E3:0A:2E:B6:FD:50:A4:E5:83:00:E7:8C:67:BD:CB
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 20377198EB5ADC7F9552EA4832D17208B81A4D95
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199915.roa
Signing time: Fri 27 Mar 2026 17:28:23 +0000
ROA not before: Fri 27 Mar 2026 17:23:23 +0000
ROA not after: Fri 26 Mar 2027 17:28:23 +0000
asID: 199915
IP address blocks: 82.29.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:37:71:98:eb:5a:dc:7f:95:52:ea:48:32:d1:72:08:b8:1a:4d:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 27 17:23:23 2026 GMT
Not After : Mar 26 17:28:23 2027 GMT
Subject: CN=569AED65DCE30A2EB6FD50A4E58300E78C67BDCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:92:6d:24:bf:2b:9d:23:7c:32:cb:00:a7:56:
64:d1:0b:46:5a:c6:71:e1:eb:43:6e:8a:b0:6f:e8:
42:f3:1d:1a:3f:4d:0b:40:8d:a3:86:ad:31:ed:52:
73:de:aa:af:ef:34:af:88:40:e5:c2:d9:09:1d:54:
2f:f4:aa:a9:c5:26:32:fe:f7:a3:9a:82:7b:4c:0a:
52:f7:85:6b:68:34:02:d6:59:a9:a4:ba:d1:ad:1f:
f8:db:5a:d5:16:03:4a:dd:5c:42:06:bc:df:64:65:
1f:88:08:1c:3e:7c:fa:9b:c3:86:1b:83:a8:79:c0:
6b:eb:37:67:be:20:9d:d2:74:74:5a:c6:96:09:61:
c4:98:ff:c3:c1:4a:f9:6f:e8:3c:ff:52:34:47:d6:
11:6f:bb:68:27:d1:fd:1b:8d:1e:de:4c:ec:c5:75:
40:ee:65:4c:7a:56:b1:be:8d:41:77:3c:5b:c6:b4:
94:59:a6:31:cf:12:51:a9:df:69:e6:0f:9b:de:94:
0f:d0:1e:db:4d:59:5e:12:28:f1:18:b1:c1:8b:c5:
3d:34:20:6a:b7:a5:08:74:e9:f1:b2:da:91:65:3c:
a2:e1:5d:81:af:46:14:96:ab:78:2c:21:d9:e2:ee:
59:c7:4e:30:ab:81:e2:8e:25:f1:51:a7:56:f9:4b:
1e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9A:ED:65:DC:E3:0A:2E:B6:FD:50:A4:E5:83:00:E7:8C:67:BD:CB
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199915.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.48.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:27:60:94:de:cb:2c:c0:5d:b9:aa:9a:a9:3a:5f:8b:d4:53:
fe:28:11:92:16:66:3f:08:df:2a:99:67:27:9e:a6:d4:91:83:
59:66:01:de:87:7c:5f:13:de:c8:4f:65:dc:a0:88:2e:b9:23:
aa:ef:c6:31:d7:72:58:de:60:87:f6:b3:3e:92:f4:51:0e:2f:
e1:5b:ce:f8:07:ff:08:fe:53:c3:a1:8e:6f:26:1f:e9:9b:1c:
9d:32:40:d0:d4:79:7c:63:da:0a:c9:61:a2:cc:ea:aa:aa:72:
66:16:8f:77:c9:60:4d:5c:93:88:7b:2b:7e:d2:3e:f8:b0:44:
e4:ed:dd:5f:51:95:a9:4e:ee:a0:ad:6f:09:b9:00:bd:57:42:
7a:40:2f:a4:59:61:84:64:1a:fd:60:11:93:25:90:5a:7f:02:
a9:3d:e4:73:cb:eb:24:ff:96:a7:5f:3d:75:69:70:28:f0:ac:
75:dd:e0:0d:c0:fd:80:96:8f:56:ef:ad:d4:a1:46:42:b5:59:
b1:76:fb:07:ae:9a:b6:f9:03:19:1a:d4:15:66:e8:76:b3:d7:
18:22:3b:1c:d7:80:3a:9c:f2:04:e2:af:ed:12:62:14:81:26:
24:53:79:a6:fe:7a:5f:ca:38:ee:bb:e4:a8:df:4c:e3:37:d1:
44:7e:56:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 03:22:03 2026 by rpki-client