
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
File: AS211057.roa (raw, json)
Hash identifier: cBI2NL+s004zcABVqo84X/NLVeB3JOUyKQxtQhdJpfw=
Subject key identifier: 63:8E:3F:80:9D:0E:48:4A:CC:23:88:D3:F0:6F:53:17:6E:91:FD:F7
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 3DB0388BD4499A35E26D94B2A795C4661A1818BF
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
Signing time: Tue 23 Jun 2026 14:29:23 +0000
ROA not before: Tue 23 Jun 2026 14:24:23 +0000
ROA not after: Tue 22 Jun 2027 14:29:23 +0000
asID: 211057
IP address blocks: 82.38.112.0/24 maxlen: 24
82.38.114.0/24 maxlen: 24
82.38.115.0/24 maxlen: 24
82.41.159.0/24 maxlen: 24
82.41.211.0/24 maxlen: 24
82.41.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:b0:38:8b:d4:49:9a:35:e2:6d:94:b2:a7:95:c4:66:1a:18:18:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 23 14:24:23 2026 GMT
Not After : Jun 22 14:29:23 2027 GMT
Subject: CN=638E3F809D0E484ACC2388D3F06F53176E91FDF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c4:08:c8:bf:48:05:32:c1:a6:b3:88:2c:99:
d3:f8:c5:b5:68:98:b1:a1:38:3b:23:89:b5:b5:c8:
e6:a8:37:2b:ae:09:97:90:ae:a8:62:35:bc:f6:09:
51:71:a6:cf:09:09:17:08:96:4c:47:21:a6:bd:5a:
dd:61:2e:09:97:57:99:b7:1e:71:8f:7e:ab:e2:2c:
7e:a7:6a:6e:11:12:71:ff:e8:6e:6e:fb:78:e0:76:
70:10:17:3d:7c:0b:68:a1:ed:25:e5:b9:6e:fc:ca:
8e:62:fd:1e:54:05:4a:56:c4:fe:ea:be:ec:de:6f:
05:c7:6c:ec:9d:24:0e:71:2d:72:ed:70:03:71:92:
11:4b:31:60:ee:0a:75:38:5e:35:2f:c4:fe:8a:50:
74:c5:b2:53:fc:99:e3:0c:44:52:2d:0d:b0:fe:1b:
d3:33:20:5b:e1:a2:01:13:ee:ae:92:fc:05:0b:f3:
30:da:11:37:3d:71:a5:61:3c:00:63:b0:16:8c:8f:
9d:df:2c:cf:80:d7:04:e8:0a:bf:ea:5d:bb:27:97:
f3:ac:2f:9f:95:84:cc:d6:b0:21:56:12:93:52:0f:
97:1d:ab:0e:99:f6:63:bd:3e:ef:47:f3:55:e2:22:
14:e6:ae:3c:41:6d:33:de:c3:99:49:1d:81:a6:f6:
92:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:8E:3F:80:9D:0E:48:4A:CC:23:88:D3:F0:6F:53:17:6E:91:FD:F7
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.38.112.0/24
82.38.114.0/23
82.41.159.0/24
82.41.211.0/24
82.41.221.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:ff:61:53:d5:dd:41:b0:1c:9f:80:4c:0b:fa:80:ab:98:18:
13:5a:b2:c7:05:58:2f:f3:46:39:5d:fe:2e:00:b6:5e:6e:1f:
6b:46:9c:7d:dc:ae:bd:95:df:49:bd:61:bf:53:41:3e:97:6f:
ab:4b:cc:13:9f:0a:1e:51:ee:01:a3:81:ed:da:8f:af:75:a3:
3a:a7:c2:8f:31:3d:cc:25:54:0b:cf:05:10:22:46:a0:be:58:
04:26:fe:04:39:67:d5:5b:34:f7:11:34:b9:39:4b:d9:32:07:
a5:48:5d:d8:ca:46:3a:88:d2:94:d3:55:cd:22:50:95:68:f8:
d1:16:6e:8f:0c:f4:f6:c5:fb:84:5e:a7:b2:ae:e6:f8:4a:64:
06:55:74:37:6f:95:62:fb:b6:37:69:00:6b:38:6c:90:a9:ed:
83:93:a4:35:1f:3e:a4:6f:9e:bc:5a:bf:73:ed:69:de:71:f7:
ec:54:b4:24:d7:60:f3:6b:dd:ec:d9:df:0d:a0:17:b3:1e:dd:
e8:8b:10:bd:5e:d4:55:04:d2:c6:d3:b1:85:37:d9:ff:1d:90:
8f:a5:5d:1e:ae:9e:76:17:8f:ab:d9:d3:80:b9:4e:2c:8b:81:
d4:43:7b:0f:a7:3e:8b:b6:11:08:88:5c:88:62:7d:a3:0d:86:
ce:7e:74:67
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUPbA4i9RJmjXibZSyp5XEZhoYGL8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA2MjMxNDI0MjNaFw0yNzA2MjIxNDI5MjNaMDMxMTAvBgNV
BAMTKDYzOEUzRjgwOUQwRTQ4NEFDQzIzODhEM0YwNkY1MzE3NkU5MUZERjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVxAjIv0gFMsGms4gsmdP4xbVo
mLGhODsjibW1yOaoNyuuCZeQrqhiNbz2CVFxps8JCRcIlkxHIaa9Wt1hLgmXV5m3
HnGPfqviLH6nam4REnH/6G5u+3jgdnAQFz18C2ih7SXluW78yo5i/R5UBUpWxP7q
vuzebwXHbOydJA5xLXLtcANxkhFLMWDuCnU4XjUvxP6KUHTFslP8meMMRFItDbD+
G9MzIFvhogET7q6S/AUL8zDaETc9caVhPABjsBaMj53fLM+A1wToCr/qXbsnl/Os
L5+VhMzWsCFWEpNSD5cdqw6Z9mO9Pu9H81XiIhTmrjxBbTPew5lJHYGm9pL9AgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUY44/gJ0OSErMI4jT8G9TF26R/fcwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjExMDU3LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUiZw
AwQBUiZyAwQAUimfAwQAUinTAwQAUindMA0GCSqGSIb3DQEBCwUAA4IBAQCk/2FT
1d1BsByfgEwL+oCrmBgTWrLHBVgv80Y5Xf4uALZebh9rRpx93K69ld9JvWG/U0E+
l2+rS8wTnwoeUe4Bo4Ht2o+vdaM6p8KPMT3MJVQLzwUQIkagvlgEJv4EOWfVWzT3
ETS5OUvZMgelSF3YykY6iNKU01XNIlCVaPjRFm6PDPT2xfuEXqeyrub4SmQGVXQ3
b5Vi+7Y3aQBrOGyQqe2Dk6Q1Hz6kb568Wr9z7WnecffsVLQk12Dza93s2d8NoBez
Ht3oixC9XtRVBNLG07GFN9n/HZCPpV0erp52F4+r2dOAuU4si4HUQ3sPpz6LthEI
iFyIYn2jDYbOfnRn
-----END CERTIFICATE-----
Generated at Fri Jul 17 23:09:38 2026 by rpki-client