
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: ZMZmnKGbJrsrHUgFfZJzsLstaKiHqHZltQg/4pfxtJI=
Subject key identifier: 7C:D0:D2:E1:40:D4:33:99:0E:75:38:E2:81:A8:64:5E:8D:65:4E:AF
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 61A020C9D98F14791F746AFCD41FEF87E90AA375
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa
Signing time: Thu 09 Jul 2026 07:21:58 +0000
ROA not before: Thu 09 Jul 2026 07:16:58 +0000
ROA not after: Thu 08 Jul 2027 07:21:58 +0000
asID: 212238
IP address blocks: 82.21.2.0/24 maxlen: 24
82.21.56.0/24 maxlen: 24
82.21.59.0/24 maxlen: 24
82.21.68.0/24 maxlen: 24
82.21.70.0/24 maxlen: 24
82.21.87.0/24 maxlen: 24
82.21.108.0/24 maxlen: 24
82.21.133.0/24 maxlen: 24
82.21.141.0/24 maxlen: 24
82.21.142.0/24 maxlen: 24
82.21.151.0/24 maxlen: 24
82.21.158.0/24 maxlen: 24
82.21.159.0/24 maxlen: 24
82.21.168.0/24 maxlen: 24
82.21.175.0/24 maxlen: 24
82.21.189.0/24 maxlen: 24
82.21.191.0/24 maxlen: 24
82.21.193.0/24 maxlen: 24
82.21.208.0/24 maxlen: 24
82.21.211.0/24 maxlen: 24
82.21.237.0/24 maxlen: 24
82.21.243.0/24 maxlen: 24
82.22.27.0/24 maxlen: 24
82.22.34.0/24 maxlen: 24
82.22.46.0/24 maxlen: 24
82.22.65.0/24 maxlen: 24
82.22.79.0/24 maxlen: 24
82.22.85.0/24 maxlen: 24
82.22.87.0/24 maxlen: 24
82.22.99.0/24 maxlen: 24
82.22.147.0/24 maxlen: 24
82.22.212.0/24 maxlen: 24
82.22.222.0/24 maxlen: 24
82.22.243.0/24 maxlen: 24
82.22.253.0/24 maxlen: 24
82.23.17.0/24 maxlen: 24
82.23.18.0/24 maxlen: 24
82.23.21.0/24 maxlen: 24
82.23.22.0/24 maxlen: 24
82.23.37.0/24 maxlen: 24
82.23.38.0/24 maxlen: 24
82.23.119.0/24 maxlen: 24
82.23.120.0/24 maxlen: 24
82.23.121.0/24 maxlen: 24
82.23.122.0/24 maxlen: 24
82.23.126.0/24 maxlen: 24
82.23.145.0/24 maxlen: 24
82.23.146.0/24 maxlen: 24
82.23.165.0/24 maxlen: 24
82.23.212.0/24 maxlen: 24
82.23.214.0/24 maxlen: 24
82.23.217.0/24 maxlen: 24
82.23.224.0/24 maxlen: 24
82.23.229.0/24 maxlen: 24
82.23.233.0/24 maxlen: 24
82.23.243.0/24 maxlen: 24
82.23.253.0/24 maxlen: 24
82.23.254.0/24 maxlen: 24
82.23.255.0/24 maxlen: 24
82.24.34.0/24 maxlen: 24
82.24.46.0/24 maxlen: 24
82.24.112.0/24 maxlen: 24
82.24.175.0/24 maxlen: 24
82.24.182.0/24 maxlen: 24
82.24.214.0/24 maxlen: 24
82.24.215.0/24 maxlen: 24
82.24.239.0/24 maxlen: 24
82.24.243.0/24 maxlen: 24
82.24.253.0/24 maxlen: 24
82.25.34.0/24 maxlen: 24
82.25.200.0/24 maxlen: 24
82.25.212.0/24 maxlen: 24
82.25.219.0/24 maxlen: 24
82.25.230.0/24 maxlen: 24
82.25.234.0/24 maxlen: 24
82.25.243.0/24 maxlen: 24
82.25.253.0/24 maxlen: 24
82.26.220.0/24 maxlen: 24
82.26.230.0/24 maxlen: 24
82.26.233.0/24 maxlen: 24
82.26.235.0/24 maxlen: 24
82.26.237.0/24 maxlen: 24
82.26.240.0/24 maxlen: 24
82.26.253.0/24 maxlen: 24
82.27.130.0/24 maxlen: 24
82.27.132.0/24 maxlen: 24
82.27.213.0/24 maxlen: 24
82.27.218.0/24 maxlen: 24
82.27.222.0/24 maxlen: 24
82.27.225.0/24 maxlen: 24
82.27.234.0/24 maxlen: 24
82.27.238.0/24 maxlen: 24
82.27.253.0/24 maxlen: 24
82.29.78.0/24 maxlen: 24
82.29.92.0/24 maxlen: 24
82.29.94.0/24 maxlen: 24
82.29.96.0/24 maxlen: 24
82.29.97.0/24 maxlen: 24
82.29.100.0/24 maxlen: 24
82.29.101.0/24 maxlen: 24
82.29.125.0/24 maxlen: 24
82.29.202.0/24 maxlen: 24
82.29.211.0/24 maxlen: 24
82.29.215.0/24 maxlen: 24
82.29.217.0/24 maxlen: 24
82.29.220.0/24 maxlen: 24
82.29.228.0/24 maxlen: 24
82.29.233.0/24 maxlen: 24
82.29.242.0/24 maxlen: 24
82.29.243.0/24 maxlen: 24
82.38.129.0/24 maxlen: 24
82.40.51.0/24 maxlen: 24
82.41.195.0/24 maxlen: 24
82.47.13.0/24 maxlen: 24
82.47.120.0/23 maxlen: 24
82.47.142.0/24 maxlen: 24
82.47.179.0/24 maxlen: 24
82.47.202.0/24 maxlen: 24
82.47.203.0/24 maxlen: 24
82.47.204.0/24 maxlen: 24
82.47.207.0/24 maxlen: 24
178.83.96.0/24 maxlen: 24
178.83.114.0/24 maxlen: 24
178.83.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:a0:20:c9:d9:8f:14:79:1f:74:6a:fc:d4:1f:ef:87:e9:0a:a3:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 9 07:16:58 2026 GMT
Not After : Jul 8 07:21:58 2027 GMT
Subject: CN=7CD0D2E140D433990E7538E281A8645E8D654EAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9b:92:2b:c1:3c:3d:be:d2:ab:4b:98:61:61:
d2:2f:60:d0:de:f2:82:51:e0:3e:57:8d:ec:44:18:
a7:e3:37:f8:9d:49:16:1f:f4:f7:49:e7:af:ba:fa:
4f:02:6b:20:25:81:c6:ff:f2:c1:ff:e1:3e:c3:51:
3c:ac:bc:bd:4e:2e:73:b2:4e:c4:4f:52:80:07:fe:
f3:78:44:18:ed:e1:0b:13:ca:66:d8:eb:1f:70:36:
57:62:2c:7c:6f:bf:b3:1e:8d:57:ae:f9:5d:18:d2:
a2:4b:fe:43:3a:c2:9c:e6:d3:2b:ae:f3:5d:42:3a:
10:35:5d:dc:17:47:d2:ba:e8:fb:c3:68:7c:8a:ff:
37:0c:41:b8:c3:f0:dc:e2:36:9f:01:94:9b:ab:06:
7d:57:8e:98:3a:8a:16:b3:f5:81:a5:7c:62:8e:1b:
a8:31:bd:2f:78:f7:09:42:d7:ff:7a:6e:0b:d1:20:
ea:aa:d5:41:6f:8e:dd:c3:a5:4a:cc:92:82:72:29:
15:14:e7:f6:79:d3:5c:41:ac:48:cb:7a:4e:c0:d3:
8f:c3:3f:71:36:28:05:e9:41:6d:2a:30:fb:18:52:
26:93:ab:2c:c2:6e:62:53:ca:a9:71:89:5e:d7:83:
72:fb:93:c5:d7:f6:ed:67:14:6a:b0:87:68:0a:0b:
46:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D0:D2:E1:40:D4:33:99:0E:75:38:E2:81:A8:64:5E:8D:65:4E:AF
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.2.0/24
82.21.56.0/24
82.21.59.0/24
82.21.68.0/24
82.21.70.0/24
82.21.87.0/24
82.21.108.0/24
82.21.133.0/24
82.21.141.0-82.21.142.255
82.21.151.0/24
82.21.158.0/23
82.21.168.0/24
82.21.175.0/24
82.21.189.0/24
82.21.191.0/24
82.21.193.0/24
82.21.208.0/24
82.21.211.0/24
82.21.237.0/24
82.21.243.0/24
82.22.27.0/24
82.22.34.0/24
82.22.46.0/24
82.22.65.0/24
82.22.79.0/24
82.22.85.0/24
82.22.87.0/24
82.22.99.0/24
82.22.147.0/24
82.22.212.0/24
82.22.222.0/24
82.22.243.0/24
82.22.253.0/24
82.23.17.0-82.23.18.255
82.23.21.0-82.23.22.255
82.23.37.0-82.23.38.255
82.23.119.0-82.23.122.255
82.23.126.0/24
82.23.145.0-82.23.146.255
82.23.165.0/24
82.23.212.0/24
82.23.214.0/24
82.23.217.0/24
82.23.224.0/24
82.23.229.0/24
82.23.233.0/24
82.23.243.0/24
82.23.253.0-82.23.255.255
82.24.34.0/24
82.24.46.0/24
82.24.112.0/24
82.24.175.0/24
82.24.182.0/24
82.24.214.0/23
82.24.239.0/24
82.24.243.0/24
82.24.253.0/24
82.25.34.0/24
82.25.200.0/24
82.25.212.0/24
82.25.219.0/24
82.25.230.0/24
82.25.234.0/24
82.25.243.0/24
82.25.253.0/24
82.26.220.0/24
82.26.230.0/24
82.26.233.0/24
82.26.235.0/24
82.26.237.0/24
82.26.240.0/24
82.26.253.0/24
82.27.130.0/24
82.27.132.0/24
82.27.213.0/24
82.27.218.0/24
82.27.222.0/24
82.27.225.0/24
82.27.234.0/24
82.27.238.0/24
82.27.253.0/24
82.29.78.0/24
82.29.92.0/24
82.29.94.0/24
82.29.96.0/23
82.29.100.0/23
82.29.125.0/24
82.29.202.0/24
82.29.211.0/24
82.29.215.0/24
82.29.217.0/24
82.29.220.0/24
82.29.228.0/24
82.29.233.0/24
82.29.242.0/23
82.38.129.0/24
82.40.51.0/24
82.41.195.0/24
82.47.13.0/24
82.47.120.0/23
82.47.142.0/24
82.47.179.0/24
82.47.202.0-82.47.204.255
82.47.207.0/24
178.83.96.0/24
178.83.114.0/24
178.83.150.0/24
Signature Algorithm: sha256WithRSAEncryption
72:10:57:8d:1f:2e:0b:ec:88:3b:10:46:f2:a9:00:89:33:d6:
de:49:bd:d0:ff:95:f0:f2:71:83:08:d6:5b:cf:2a:a4:97:c8:
6e:9b:33:90:35:1b:f5:27:60:10:78:36:09:bf:0d:33:eb:44:
a4:d8:b7:b5:22:b2:07:e0:93:b1:a4:12:13:6f:d0:16:d0:84:
63:36:fa:d3:f9:72:b3:4a:32:06:7b:9c:61:d8:84:d0:4a:38:
0b:51:97:59:bb:2f:79:4e:e0:d7:85:b5:d7:3a:b2:88:b3:8f:
4a:d7:77:f2:86:c5:52:9a:86:92:1f:fa:98:2e:49:07:42:50:
18:7a:d3:9e:f3:95:0a:2c:13:c7:6f:0e:0e:3f:1f:d9:c7:04:
e7:57:81:e2:d2:ae:56:8a:b8:33:82:f3:06:dd:97:66:35:89:
16:38:58:b8:5a:19:9f:a1:b8:cd:b6:e6:f5:18:d9:a0:bd:a4:
81:bc:72:ca:cc:11:87:51:4f:ac:6e:85:15:bf:b8:fd:bc:f8:
3c:d3:d2:ff:ad:74:96:7f:fc:53:12:66:aa:fb:9a:97:90:af:
bc:ca:78:16:3e:da:43:8c:09:00:e5:25:e7:a2:52:7d:2a:ab:
32:c8:53:33:4b:75:9f:e2:80:93:8a:58:c3:85:4d:0c:a2:00:
ef:36:72:59
-----BEGIN CERTIFICATE-----
MIIHxTCCBq2gAwIBAgIUYaAgydmPFHkfdGr81B/vh+kKo3UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA3MDkwNzE2NThaFw0yNzA3MDgwNzIxNThaMDMxMTAvBgNV
BAMTKDdDRDBEMkUxNDBENDMzOTkwRTc1MzhFMjgxQTg2NDVFOEQ2NTRFQUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsm5IrwTw9vtKrS5hhYdIvYNDe
8oJR4D5XjexEGKfjN/idSRYf9PdJ56+6+k8CayAlgcb/8sH/4T7DUTysvL1OLnOy
TsRPUoAH/vN4RBjt4QsTymbY6x9wNldiLHxvv7MejVeu+V0Y0qJL/kM6wpzm0yuu
811COhA1XdwXR9K66PvDaHyK/zcMQbjD8NziNp8BlJurBn1Xjpg6ihaz9YGlfGKO
G6gxvS949wlC1/96bgvRIOqq1UFvjt3DpUrMkoJyKRUU5/Z501xBrEjLek7A04/D
P3E2KAXpQW0qMPsYUiaTqyzCbmJTyqlxiV7Xg3L7k8XX9u1nFGqwh2gKC0YNAgMB
AAGjggTPMIIEyzAdBgNVHQ4EFgQUfNDS4UDUM5kOdTjigahkXo1lTq8wHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjEyMjM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMIIC4gYIKwYBBQUHAQcBAf8EggLRMIICzTCCAskEAgAB
MIICwQMEAFIVAgMEAFIVOAMEAFIVOwMEAFIVRAMEAFIVRgMEAFIVVwMEAFIVbAME
AFIVhTAMAwQAUhWNAwQAUhWOAwQAUhWXAwQBUhWeAwQAUhWoAwQAUhWvAwQAUhW9
AwQAUhW/AwQAUhXBAwQAUhXQAwQAUhXTAwQAUhXtAwQAUhXzAwQAUhYbAwQAUhYi
AwQAUhYuAwQAUhZBAwQAUhZPAwQAUhZVAwQAUhZXAwQAUhZjAwQAUhaTAwQAUhbU
AwQAUhbeAwQAUhbzAwQAUhb9MAwDBABSFxEDBABSFxIwDAMEAFIXFQMEAFIXFjAM
AwQAUhclAwQAUhcmMAwDBABSF3cDBABSF3oDBABSF34wDAMEAFIXkQMEAFIXkgME
AFIXpQMEAFIX1AMEAFIX1gMEAFIX2QMEAFIX4AMEAFIX5QMEAFIX6QMEAFIX8zAL
AwQAUhf9AwMDUhADBABSGCIDBABSGC4DBABSGHADBABSGK8DBABSGLYDBAFSGNYD
BABSGO8DBABSGPMDBABSGP0DBABSGSIDBABSGcgDBABSGdQDBABSGdsDBABSGeYD
BABSGeoDBABSGfMDBABSGf0DBABSGtwDBABSGuYDBABSGukDBABSGusDBABSGu0D
BABSGvADBABSGv0DBABSG4IDBABSG4QDBABSG9UDBABSG9oDBABSG94DBABSG+ED
BABSG+oDBABSG+4DBABSG/0DBABSHU4DBABSHVwDBABSHV4DBAFSHWADBAFSHWQD
BABSHX0DBABSHcoDBABSHdMDBABSHdcDBABSHdkDBABSHdwDBABSHeQDBABSHekD
BAFSHfIDBABSJoEDBABSKDMDBABSKcMDBABSLw0DBAFSL3gDBABSL44DBABSL7Mw
DAMEAVIvygMEAFIvzAMEAFIvzwMEALJTYAMEALJTcgMEALJTljANBgkqhkiG9w0B
AQsFAAOCAQEAchBXjR8uC+yIOxBG8qkAiTPW3km90P+V8PJxgwjWW88qpJfIbpsz
kDUb9SdgEHg2Cb8NM+tEpNi3tSKyB+CTsaQSE2/QFtCEYzb60/lys0oyBnucYdiE
0Eo4C1GXWbsveU7g14W11zqyiLOPStd38obFUpqGkh/6mC5JB0JQGHrTnvOVCiwT
x28ODj8f2ccE51eB4tKuVoq4M4LzBt2XZjWJFjhYuFoZn6G4zbbm9RjZoL2kgbxy
yswRh1FPrG6FFb+4/bz4PNPS/610ln/8UxJmqvual5CvvMp4Fj7aQ4wJAOUl56JS
fSqrMshTM0t1n+KAk4pYw4VNDKIA7zZyWQ==
-----END CERTIFICATE-----
Generated at Fri Jul 17 23:09:13 2026 by rpki-client