Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: orPhk044bGTuYf51yLId/D7UcFZ9DaGpOEaBZEwpHGg=
Subject key identifier: E1:B0:26:AA:F1:88:84:37:03:05:A8:D0:F9:20:50:23:9E:EB:8B:D8
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1758CBC761BBC2917E872B424A91A7B22ED5A145
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Sat 30 May 2026 16:49:22 +0000
ROA not before: Sat 30 May 2026 16:44:22 +0000
ROA not after: Sat 29 May 2027 16:49:22 +0000
asID: 203054
IP address blocks: 82.22.161.0/24 maxlen: 24
82.25.5.0/24 maxlen: 24
82.47.187.0/24 maxlen: 24
84.75.156.0/24 maxlen: 24
84.75.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:58:cb:c7:61:bb:c2:91:7e:87:2b:42:4a:91:a7:b2:2e:d5:a1:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 30 16:44:22 2026 GMT
Not After : May 29 16:49:22 2027 GMT
Subject: CN=E1B026AAF18884370305A8D0F92050239EEB8BD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b0:11:70:2d:67:61:81:1a:09:d4:ce:13:22:
6a:de:96:b5:b7:28:56:13:81:44:9e:5d:23:7d:1b:
2a:1b:cd:60:12:f1:c0:9a:38:58:51:ff:5b:ca:5f:
59:11:85:e0:3d:8d:9b:cd:aa:e7:94:bb:56:31:6d:
d5:36:68:23:2a:c1:ab:f2:e3:68:26:2b:af:3d:d4:
b3:c1:86:ff:86:8f:ca:ba:9a:0c:a4:4c:65:a4:09:
03:f1:e1:fc:bb:2e:8b:bd:f2:98:3a:7c:07:75:db:
43:d0:b5:c1:54:ae:86:d4:c0:b1:ad:34:bd:cb:e7:
e9:4f:b1:25:18:31:58:95:f7:70:65:41:75:c5:6b:
85:af:2e:1e:a4:87:4d:11:36:df:d3:b3:b4:a7:f1:
a9:0e:06:c1:fb:16:1a:ef:40:62:e1:32:c3:8a:95:
37:95:5a:1c:5e:e7:72:9c:e1:62:a1:d3:5f:0c:35:
9e:6c:a8:9d:c6:a9:c9:04:74:bc:e9:1a:16:f5:a0:
11:2d:c1:0c:a3:11:be:1a:ca:9a:f5:c0:76:65:da:
73:59:e9:7e:7a:9f:b4:79:ef:a0:6d:ec:86:45:ec:
78:b5:1b:8c:72:15:5e:60:3d:8b:0a:bd:a2:57:0e:
41:fa:98:40:96:61:30:bc:88:c1:3f:0f:d3:9a:8c:
8c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:B0:26:AA:F1:88:84:37:03:05:A8:D0:F9:20:50:23:9E:EB:8B:D8
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.161.0/24
82.25.5.0/24
82.47.187.0/24
84.75.156.0/24
84.75.242.0/24
Signature Algorithm: sha256WithRSAEncryption
82:83:5c:83:95:8b:a2:af:7b:be:29:2f:a6:ed:ad:3d:bc:63:
5d:62:12:02:08:a6:bc:c3:78:1a:e9:5b:f7:b6:93:f4:05:f0:
62:9b:06:21:10:60:e9:3f:d7:af:14:81:13:51:d2:d9:3b:58:
2e:2a:33:c5:88:ae:4f:59:2b:2b:a1:4a:b8:cf:06:ff:1c:6a:
97:52:49:f0:c4:a5:05:12:18:68:af:48:09:de:4d:b9:93:5e:
43:18:a6:16:10:68:8c:c6:10:90:f3:95:f2:c2:f0:50:11:19:
d2:38:d9:fb:72:68:bb:e8:9f:15:47:33:85:25:7f:95:0b:83:
7d:02:3d:f0:69:42:e5:28:ef:e0:a4:3f:8d:26:c1:c9:7b:7d:
f3:58:c9:20:b6:07:97:16:60:79:a4:85:e1:fb:6f:30:57:14:
b4:d6:68:2a:2c:7f:78:4e:10:10:d3:4f:e1:ea:da:ca:48:83:
c8:61:58:b5:85:6a:6e:54:8a:0a:03:00:8e:2c:cb:4a:a4:c9:
de:ef:61:88:14:ad:a4:8c:59:88:c7:1b:c4:21:dc:97:dc:31:
57:f1:b7:3a:fe:de:ec:7c:54:8b:f3:65:98:78:91:ef:25:3a:
a3:73:85:c1:8d:e1:93:a8:b6:5c:a1:5b:a5:b4:ba:0c:14:07:
33:bd:e8:dd
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUF1jLx2G7wpF+hytCSpGnsi7VoUUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MzAxNjQ0MjJaFw0yNzA1MjkxNjQ5MjJaMDMxMTAvBgNV
BAMTKEUxQjAyNkFBRjE4ODg0MzcwMzA1QThEMEY5MjA1MDIzOUVFQjhCRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVsBFwLWdhgRoJ1M4TImrelrW3
KFYTgUSeXSN9GyobzWAS8cCaOFhR/1vKX1kRheA9jZvNqueUu1YxbdU2aCMqwavy
42gmK6891LPBhv+Gj8q6mgykTGWkCQPx4fy7Lou98pg6fAd120PQtcFUrobUwLGt
NL3L5+lPsSUYMViV93BlQXXFa4WvLh6kh00RNt/Ts7Sn8akOBsH7FhrvQGLhMsOK
lTeVWhxe53Kc4WKh018MNZ5sqJ3GqckEdLzpGhb1oBEtwQyjEb4aypr1wHZl2nNZ
6X56n7R576Bt7IZF7Hi1G4xyFV5gPYsKvaJXDkH6mECWYTC8iME/D9OajIx5AgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQU4bAmqvGIhDcDBajQ+SBQI57ri9gwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzMDU0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUhah
AwQAUhkFAwQAUi+7AwQAVEucAwQAVEvyMA0GCSqGSIb3DQEBCwUAA4IBAQCCg1yD
lYuir3u+KS+m7a09vGNdYhICCKa8w3ga6Vv3tpP0BfBimwYhEGDpP9evFIETUdLZ
O1guKjPFiK5PWSsroUq4zwb/HGqXUknwxKUFEhhor0gJ3k25k15DGKYWEGiMxhCQ
85XywvBQERnSONn7cmi76J8VRzOFJX+VC4N9Aj3waULlKO/gpD+NJsHJe33zWMkg
tgeXFmB5pIXh+28wVxS01mgqLH94ThAQ00/h6trKSIPIYVi1hWpuVIoKAwCOLMtK
pMne72GIFK2kjFmIxxvEIdyX3DFX8bc6/t7sfFSL82WYeJHvJTqjc4XBjeGTqLZc
oVultLoMFAczvejd
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:11:33 2026 by rpki-client