Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210699.roa
File: AS210699.roa (raw, json)
Hash identifier: mlOfwYTSgPnGbSxgHDMyI07JbFc0Y0IByw1fHwzS2e0=
Subject key identifier: 5F:15:2F:C7:85:74:8B:98:6E:3E:80:B6:CF:7E:56:9E:DE:4B:60:29
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 06D89BB3CA4CFC97A9916FF61FAE6BCCB898C7DF
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210699.roa
Signing time: Thu 21 May 2026 06:12:54 +0000
ROA not before: Thu 21 May 2026 06:07:54 +0000
ROA not after: Thu 20 May 2027 06:12:54 +0000
asID: 210699
IP address blocks: 82.26.80.0/24 maxlen: 24
2a13:9500:104::/48 maxlen: 48
2a13:9500:17d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:d8:9b:b3:ca:4c:fc:97:a9:91:6f:f6:1f:ae:6b:cc:b8:98:c7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 21 06:07:54 2026 GMT
Not After : May 20 06:12:54 2027 GMT
Subject: CN=5F152FC785748B986E3E80B6CF7E569EDE4B6029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a6:34:65:50:e9:29:5b:37:bf:d3:1c:5d:a2:
01:23:27:71:18:8e:c4:80:c7:42:ba:30:8c:8b:20:
70:30:6a:6f:4c:7c:6d:f5:c1:8c:ae:64:65:00:e3:
83:86:0d:0b:a6:4a:37:3d:58:fc:79:49:b7:b7:64:
f3:19:cf:81:5f:6b:d0:60:ee:4c:35:98:09:5d:d7:
d6:d1:5d:78:56:d4:f7:50:44:12:6b:6c:9a:2b:fb:
aa:44:f5:05:23:87:ee:78:0d:ee:82:d4:bb:1b:85:
42:1f:b0:af:43:ef:6c:80:7d:3f:48:d2:34:f2:16:
b2:d4:70:98:b9:ee:ac:a5:e4:62:c9:67:f9:6d:2e:
da:81:e1:63:15:1c:b0:26:37:a1:82:16:8e:6b:7d:
0c:2c:f8:53:ae:92:28:6e:4d:68:c1:27:f7:8e:be:
d2:f9:1e:87:c5:fa:cb:ae:8e:61:73:59:a2:be:29:
bb:44:21:54:f5:b5:df:f8:16:6e:9a:89:49:a0:7c:
c3:11:ac:99:65:44:92:0b:88:2b:5a:b8:47:de:42:
33:48:5b:91:c4:29:13:31:e1:44:11:55:75:b7:2d:
a9:d1:a5:54:aa:db:fd:f0:bf:10:68:99:9f:ee:de:
9f:e0:ff:f2:e0:06:64:d1:82:8f:c2:ad:ed:39:53:
6f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:15:2F:C7:85:74:8B:98:6E:3E:80:B6:CF:7E:56:9E:DE:4B:60:29
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210699.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.80.0/24
IPv6:
2a13:9500:104::/48
2a13:9500:17d::/48
Signature Algorithm: sha256WithRSAEncryption
89:40:06:6f:18:8a:f7:c2:97:37:05:4a:f4:45:f0:31:68:6d:
e0:52:3d:99:0d:3a:5f:27:98:3e:7a:14:b4:de:6f:3d:8e:bf:
09:0e:35:0e:9d:72:b3:d7:33:55:4a:2a:47:04:e2:2e:d3:73:
b1:d5:40:38:0e:65:69:aa:f7:f1:e0:34:3e:92:44:af:e3:d0:
94:b8:d2:92:09:4f:23:7a:5d:16:72:42:6f:84:b0:ee:cb:3d:
ba:42:c3:60:12:61:5e:a2:8e:e4:68:59:46:19:ef:f1:dd:74:
ec:8a:8a:3d:38:0d:c5:a0:b0:e4:2d:b3:6a:41:f0:b4:5b:20:
fa:3d:5a:8f:7a:12:fb:9b:25:d6:e7:6f:17:6c:1f:65:91:6f:
be:7b:ee:aa:92:b3:3d:30:e6:fc:ff:a9:00:44:14:8c:cc:7d:
5c:5e:98:72:7f:c5:21:51:d6:f9:dc:8d:b2:8b:a1:02:8b:76:
70:cc:fe:a4:38:15:4b:79:14:56:44:9a:f9:99:d5:ed:60:2a:
79:ff:40:81:3c:e0:b1:03:36:34:71:69:0d:2a:a1:0e:3c:30:
11:4d:5a:70:6b:c1:76:bf:84:19:08:0d:f0:20:ea:63:12:25:
ff:e0:0a:2c:86:b2:e1:45:3b:f4:0a:b0:05:20:c2:7e:23:05:
d5:ea:21:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:18:27 2026 by rpki-client