
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa
File: AS20473.roa (raw, json)
Hash identifier: Qc8BVlW7MUXn25ZK97j56NR0uFB3j+YdvMZ+PBD/p38=
Subject key identifier: 90:07:5B:D7:AC:2F:F9:50:A1:AD:CC:6D:11:39:B4:8D:ED:E5:BF:90
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 50BDEDCD01242D4E600DE39900FFB5C1105A72B4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa
Signing time: Wed 15 Jul 2026 10:08:44 +0000
ROA not before: Wed 15 Jul 2026 10:03:44 +0000
ROA not after: Wed 14 Jul 2027 10:08:44 +0000
asID: 20473
IP address blocks: 82.22.45.0/24 maxlen: 24
82.29.44.0/24 maxlen: 24
82.38.41.0/24 maxlen: 24
82.41.117.0/24 maxlen: 24
178.83.88.0/24 maxlen: 24
178.83.90.0/24 maxlen: 24
178.83.92.0/24 maxlen: 24
178.83.94.0/24 maxlen: 24
178.83.95.0/24 maxlen: 24
178.83.97.0/24 maxlen: 24
178.83.98.0/24 maxlen: 24
178.83.104.0/24 maxlen: 24
178.83.105.0/24 maxlen: 24
178.83.106.0/24 maxlen: 24
178.83.107.0/24 maxlen: 24
178.83.142.0/24 maxlen: 24
178.83.148.0/24 maxlen: 24
178.83.156.0/24 maxlen: 24
2a13:9500:61::/48 maxlen: 48
2a13:9500:ae::/48 maxlen: 48
2a13:9500:cf::/48 maxlen: 48
2a13:9500:dd::/48 maxlen: 48
2a13:9500:10c::/48 maxlen: 48
2a13:9500:120::/48 maxlen: 48
2a13:9500:149::/48 maxlen: 48
2a13:9500:14d::/48 maxlen: 48
2a13:9500:15e::/48 maxlen: 48
2a13:9500:170::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:bd:ed:cd:01:24:2d:4e:60:0d:e3:99:00:ff:b5:c1:10:5a:72:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 15 10:03:44 2026 GMT
Not After : Jul 14 10:08:44 2027 GMT
Subject: CN=90075BD7AC2FF950A1ADCC6D1139B48DEDE5BF90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cd:ab:7f:37:b8:a0:47:76:e2:b4:af:36:1a:
81:32:51:91:89:89:8f:e7:d9:28:bb:87:39:b2:ac:
ca:85:cc:0c:ed:63:39:1a:9d:3c:74:f2:3a:f4:4d:
1e:b4:8b:a2:4e:24:34:ff:11:fb:9b:96:90:88:49:
2a:d5:0c:74:ae:29:d3:22:c8:87:18:c8:1f:0a:e3:
13:b2:77:7b:3c:50:52:09:7a:4c:d6:d6:04:5f:f7:
82:63:0d:b7:f4:e7:d0:47:65:a0:43:19:70:f5:4f:
5d:b4:a4:d8:fc:dc:7f:f5:1c:b6:24:6b:5a:06:f2:
c7:b1:98:76:b0:16:61:5c:01:41:14:7e:86:1e:58:
10:57:8c:a1:dd:27:a2:60:9b:fa:bf:2e:dd:ab:40:
71:c7:75:35:f4:9f:88:8a:bd:0e:d6:17:22:be:b3:
c2:b9:ee:d6:c8:1e:a1:1a:c6:f2:90:b8:71:b6:7d:
ac:91:b6:ea:5a:e9:90:88:f6:68:7f:6e:da:9a:a6:
e2:17:9d:23:5f:52:77:fb:c6:2a:1b:4a:76:a2:1c:
a0:7e:3e:05:05:2b:b9:be:d8:82:ca:07:59:b5:14:
27:57:33:54:98:f3:d8:41:44:8d:68:3e:eb:64:71:
9c:d5:2b:a1:b6:d1:e2:52:b4:65:b1:d2:67:17:76:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:07:5B:D7:AC:2F:F9:50:A1:AD:CC:6D:11:39:B4:8D:ED:E5:BF:90
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS20473.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.45.0/24
82.29.44.0/24
82.38.41.0/24
82.41.117.0/24
178.83.88.0/24
178.83.90.0/24
178.83.92.0/24
178.83.94.0/23
178.83.97.0-178.83.98.255
178.83.104.0/22
178.83.142.0/24
178.83.148.0/24
178.83.156.0/24
IPv6:
2a13:9500:61::/48
2a13:9500:ae::/48
2a13:9500:cf::/48
2a13:9500:dd::/48
2a13:9500:10c::/48
2a13:9500:120::/48
2a13:9500:149::/48
2a13:9500:14d::/48
2a13:9500:15e::/48
2a13:9500:170::/48
Signature Algorithm: sha256WithRSAEncryption
09:b0:19:2f:bf:2b:72:12:0b:82:65:cb:a9:56:17:56:5d:80:
56:a5:16:91:e4:17:2a:60:ff:e8:eb:cd:88:0c:9a:97:38:5a:
7b:04:f6:e8:08:c0:94:4a:8b:31:9f:ae:0d:87:92:33:80:a0:
73:00:75:56:d8:ad:b6:9b:19:42:ca:2e:51:11:04:8d:5d:8d:
a2:96:b4:26:0f:53:74:45:fc:70:1e:68:33:34:69:fe:37:26:
51:30:72:c1:d7:d7:4f:ae:71:b8:4f:d8:24:2f:12:af:a9:bd:
9f:c8:54:58:8e:67:6e:44:10:f5:76:c6:35:cc:1a:3f:ef:b1:
50:dc:d5:1b:8b:ce:70:01:12:87:4e:c4:b9:45:df:30:21:3b:
1d:74:22:f9:f6:0c:a7:ae:fe:92:36:a7:2e:8e:b4:e9:0c:77:
ed:20:c9:19:61:5d:df:51:8c:b6:98:8e:b2:1d:0b:2d:a2:ff:
b3:5b:17:27:67:1b:bc:10:40:c4:fb:1b:ed:b7:80:0c:88:14:
7f:ca:d2:de:19:cb:95:ef:4f:64:0e:16:9b:1a:48:62:3f:6d:
3c:06:5a:df:d2:54:61:cd:b0:c0:b1:1c:82:57:71:3b:f7:46:
30:c5:ea:79:97:f5:c5:ec:57:68:93:26:94:a9:9a:28:a5:e4:
d9:de:c7:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:08:01 2026 by rpki-client