Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
File: AS211057.roa (raw, json)
Hash identifier: wZ5LgiGxQlobgoFboqFQFImSUw/04aD94gf6cwKUJO8=
Subject key identifier: 3C:77:C3:BF:98:3B:C7:BA:73:8C:5E:2C:CE:CA:C9:49:8B:65:64:56
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 74D3DBD2970F9A5F614E3C36E720DD5F7CA0ABF5
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
Signing time: Mon 18 May 2026 10:06:32 +0000
ROA not before: Mon 18 May 2026 10:01:32 +0000
ROA not after: Mon 17 May 2027 10:06:32 +0000
asID: 211057
IP address blocks: 82.41.159.0/24 maxlen: 24
82.41.211.0/24 maxlen: 24
82.41.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:d3:db:d2:97:0f:9a:5f:61:4e:3c:36:e7:20:dd:5f:7c:a0:ab:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 18 10:01:32 2026 GMT
Not After : May 17 10:06:32 2027 GMT
Subject: CN=3C77C3BF983BC7BA738C5E2CCECAC9498B656456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:6e:05:39:87:ad:9d:49:55:a1:7d:02:9f:fc:
45:ea:80:d5:f1:88:d8:cf:44:b8:59:2e:85:09:d3:
ba:cb:e2:bd:bb:24:7a:9a:ca:74:d6:8c:9b:20:26:
4b:71:d5:b1:07:24:ff:5e:e8:28:8c:46:87:57:ff:
2b:39:69:88:9a:5a:40:1b:13:ac:f6:45:84:f2:f8:
30:d7:26:95:92:ca:1d:01:b5:61:45:96:c8:de:12:
13:f3:01:dd:d9:05:44:45:33:ae:23:a3:78:e4:24:
d7:35:b9:a1:74:b3:06:76:e2:dd:cc:44:f0:ee:08:
8d:d6:6a:8b:58:63:3c:ca:aa:0b:62:e5:16:b7:4b:
47:d9:16:99:1a:b4:fb:20:e9:c1:25:d1:61:3f:c9:
79:54:a6:63:eb:a2:cf:03:74:0c:3f:cd:ea:99:9b:
53:32:67:df:20:26:6a:29:f0:1a:73:78:7b:68:8e:
93:8b:1e:74:d5:eb:21:c9:c4:07:47:15:2e:4b:9a:
7d:c8:00:7a:36:ac:32:44:81:09:51:e5:7b:97:2c:
43:0b:35:e9:58:33:3a:d8:64:16:62:99:18:7a:a5:
7e:b1:c9:0e:37:02:56:ed:4b:c0:b4:91:ff:12:b0:
4b:90:53:aa:dd:fc:d4:8c:db:93:a8:f4:7c:c2:0b:
72:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:77:C3:BF:98:3B:C7:BA:73:8C:5E:2C:CE:CA:C9:49:8B:65:64:56
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS211057.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.159.0/24
82.41.211.0/24
82.41.221.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ac:82:03:81:80:a2:d1:46:d0:19:ac:b7:e5:eb:a4:88:e9:
45:55:24:22:10:f9:79:6c:6f:1e:19:b9:9b:62:ed:a9:4b:67:
ab:ff:ff:29:a8:4d:bf:c7:61:9c:ab:61:35:3d:d8:b9:97:6c:
f6:0d:8b:33:56:07:66:88:61:39:e9:b0:c4:01:19:c3:63:2e:
80:ee:1c:99:81:0b:28:ac:27:d5:3c:01:70:5f:89:3b:0a:c3:
2d:18:51:0d:9a:56:7b:91:5d:7d:66:67:40:b9:cd:78:78:61:
a1:b0:46:c4:1f:71:9d:0d:04:39:af:e7:be:87:59:19:0b:49:
78:72:eb:76:10:7e:23:fc:e9:29:00:9c:62:3c:12:6a:7b:4a:
e8:24:57:46:1e:55:d7:f0:34:1b:4b:89:30:10:78:7e:34:a8:
0e:c2:a2:0e:23:31:53:90:bd:d8:5f:3b:32:a7:b7:4b:42:84:
4e:7f:12:b6:2f:9a:c6:ac:50:d0:e5:30:31:37:d9:da:52:d8:
f0:b4:78:5f:87:b8:02:1b:1f:8c:fc:22:31:de:e1:12:db:0a:
28:cf:dd:98:44:d4:40:8f:68:0c:66:c3:79:7f:e9:84:8b:fc:
b9:0d:d9:70:d8:f4:fe:61:c4:40:e2:fc:fc:25:4c:fc:c9:72:
3a:6c:34:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:29 2026 by rpki-client