Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: mXYqdnZwK/KIpciLzh3tJIQDsExadZMPw9wk7jWWi8g=
Subject key identifier: BF:34:89:CA:6E:08:5E:53:5A:65:B7:FD:FD:F2:76:3C:97:0E:A3:3E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6851B401293BC0344FDA5C96784116240F1E3A45
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Fri 17 Apr 2026 21:14:50 +0000
ROA not before: Fri 17 Apr 2026 21:09:50 +0000
ROA not after: Fri 16 Apr 2027 21:14:50 +0000
asID: 203054
IP address blocks: 82.47.52.0/24 maxlen: 24
82.47.223.0/24 maxlen: 24
84.75.148.0/24 maxlen: 24
84.75.162.0/24 maxlen: 24
84.75.163.0/24 maxlen: 24
178.83.198.0/24 maxlen: 24
178.83.202.0/24 maxlen: 24
178.83.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 09:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:51:b4:01:29:3b:c0:34:4f:da:5c:96:78:41:16:24:0f:1e:3a:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 17 21:09:50 2026 GMT
Not After : Apr 16 21:14:50 2027 GMT
Subject: CN=BF3489CA6E085E535A65B7FDFDF2763C970EA33E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:37:c7:f4:c9:44:3c:75:35:d7:2e:07:32:b3:
2f:d0:7d:65:c3:cf:94:49:d6:80:19:82:f8:52:94:
a6:34:be:4c:00:27:52:ef:25:6c:df:aa:60:64:a7:
80:f3:86:81:bf:23:b1:ab:45:22:44:fc:cc:74:74:
d0:4c:2a:6f:e1:88:53:c3:dd:a9:a4:87:73:10:ba:
31:e2:0f:94:54:ff:5a:fe:39:68:d6:5f:43:90:6d:
82:c5:69:4f:d5:a0:3d:5a:df:b1:0b:17:40:7e:43:
2b:a6:74:b8:0d:39:c1:ca:46:96:e6:47:f0:22:d2:
e5:dc:13:e6:1f:d1:0e:b5:93:e3:8e:17:61:fb:0d:
9b:e3:5a:31:c0:6d:f4:33:be:5d:3a:4a:8c:0f:29:
73:d9:f8:62:38:43:95:7d:09:63:b1:37:d2:57:7f:
c4:21:a9:29:09:55:24:3c:56:ae:05:da:0c:fc:53:
3c:ab:88:5b:ad:c8:d3:9f:94:38:f0:b1:2e:af:72:
27:f5:36:28:71:b6:f0:f9:5a:c8:78:ea:60:49:50:
db:d3:9f:40:62:5d:8f:14:19:b6:9f:03:3d:8f:0b:
ea:68:a5:b3:d5:2f:85:2f:40:05:0a:44:dc:02:64:
d7:54:31:cf:bb:e8:d7:b4:05:99:1f:89:e1:35:10:
0c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:34:89:CA:6E:08:5E:53:5A:65:B7:FD:FD:F2:76:3C:97:0E:A3:3E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.52.0/24
82.47.223.0/24
84.75.148.0/24
84.75.162.0/23
178.83.198.0/24
178.83.202.0/24
178.83.214.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ba:06:39:82:a7:cf:97:72:6c:8c:a6:c9:8f:30:a7:6f:98:
2e:69:07:4e:15:0f:a4:c0:c4:9f:d9:a9:00:c8:3c:b7:06:e7:
9b:7e:05:81:05:fd:54:0c:f3:1e:fe:40:05:10:03:9b:37:e9:
9f:6c:82:50:e1:70:ca:49:53:37:1b:aa:39:f3:d6:ec:43:59:
c5:3e:3e:82:3e:9b:fd:f6:37:78:f8:f7:17:48:d6:17:8b:32:
f2:cd:18:94:c6:f2:d1:54:6a:91:3f:a9:96:2d:aa:aa:f3:1a:
7b:24:30:d6:96:10:c3:d6:f5:9c:6e:7e:98:17:c0:60:ce:c7:
c3:03:21:d8:fb:a9:b3:83:ff:9d:ac:2e:b8:0b:06:e9:55:60:
b8:4a:8c:ed:1e:0d:3d:92:d5:a4:ba:aa:20:3a:28:a4:3d:93:
c2:8c:7a:d3:f9:3b:00:fd:99:e7:73:b4:07:4e:26:f5:fa:57:
4e:68:c9:e0:32:95:2e:a0:d9:5b:1d:9e:62:5c:05:ab:ea:a4:
64:8d:6e:20:52:ec:ae:bb:19:3d:bd:52:4d:9d:bc:0f:89:a7:
41:de:ca:11:66:b9:24:9f:16:20:53:1f:e0:f7:fa:1b:ee:92:
2a:51:7a:63:8c:75:45:2f:63:88:e9:38:04:f2:91:2d:43:b8:
15:df:01:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 19:35:11 2026 by rpki-client