Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214616.roa
File: AS214616.roa (raw, json)
Hash identifier: lGe9f/+oqXo2EGgcZVQTEK2oGG7qojTfv9qnkuN9zt4=
Subject key identifier: 7C:3C:C5:AC:A9:E4:77:63:65:C7:6E:73:0C:E1:08:46:37:E3:6C:7A
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4D7037C3AAB454E342E0260F3FF5C0DE992BAD16
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214616.roa
Signing time: Sun 31 May 2026 16:33:09 +0000
ROA not before: Sun 31 May 2026 16:28:09 +0000
ROA not after: Sun 30 May 2027 16:33:09 +0000
asID: 214616
IP address blocks: 82.41.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:70:37:c3:aa:b4:54:e3:42:e0:26:0f:3f:f5:c0:de:99:2b:ad:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 31 16:28:09 2026 GMT
Not After : May 30 16:33:09 2027 GMT
Subject: CN=7C3CC5ACA9E4776365C76E730CE1084637E36C7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e3:6b:1f:4c:79:fc:c0:47:d0:d7:86:a3:5e:
ee:41:41:8a:ea:69:4c:aa:aa:9c:92:a4:48:47:4f:
e9:c4:4c:68:de:eb:7e:be:8b:10:f1:e5:86:06:ad:
1e:ad:b3:e9:b0:ea:25:fa:ba:dc:79:11:d1:6b:4d:
f9:bb:01:39:a2:c0:12:15:5f:f4:13:0e:d5:bc:d2:
af:83:d8:58:13:69:74:b3:db:23:da:e7:2a:37:bd:
03:5c:66:d4:fd:b0:42:be:ed:06:05:88:bf:93:9b:
cc:9e:8e:14:b6:53:e7:c0:0e:46:d7:5c:cc:04:b1:
1a:5b:03:d0:5e:a0:88:6a:c4:0c:29:af:9e:9e:15:
d2:4c:5e:49:77:fd:2b:94:81:bf:80:0e:ce:e2:1f:
f1:57:ee:60:b6:78:6c:74:da:e2:a3:91:4b:c5:11:
e0:66:4a:7d:5f:ef:8c:95:58:2e:fb:a2:e4:93:28:
07:ad:d0:40:bc:97:ff:fe:af:3e:88:ca:15:4c:ff:
9c:30:26:46:b2:d7:0c:f5:dd:b3:5d:41:ed:c6:25:
86:57:0e:b4:c1:c8:d0:da:5e:96:b6:41:4a:54:d5:
66:55:55:2d:01:6f:28:92:c3:c9:c5:43:b5:93:04:
04:b8:ed:8a:8a:44:79:b2:d6:c5:a8:cc:9e:72:28:
28:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3C:C5:AC:A9:E4:77:63:65:C7:6E:73:0C:E1:08:46:37:E3:6C:7A
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214616.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.67.0/24
Signature Algorithm: sha256WithRSAEncryption
80:96:11:4a:f1:f4:18:a5:3b:26:38:50:52:12:8f:42:92:ff:
1a:ac:e5:2c:bc:2e:63:ed:3d:7e:f4:12:ba:92:f2:dd:6f:d2:
ae:8f:30:a3:5f:21:4f:96:d5:07:7e:56:f3:04:d5:cb:af:af:
c7:e2:7e:eb:0f:2e:36:f5:f9:a3:a8:e7:e4:e7:53:90:00:7c:
33:fa:3a:0c:32:8b:b4:08:11:ed:46:53:e9:7d:18:0e:17:b7:
2b:fa:8e:09:46:2f:c3:4d:5f:4e:d9:7a:2e:a7:62:ad:4e:65:
fa:e7:d2:83:3b:3e:cb:ff:83:ad:97:be:67:d6:0e:78:6f:ef:
7c:e4:60:4a:ae:4d:ca:34:c7:69:ca:e4:e8:0a:37:c3:0f:97:
7d:8a:ca:5b:79:5a:44:07:a9:92:4c:ec:df:13:4b:a5:1b:77:
99:f3:60:1a:07:51:bc:80:e0:49:05:9f:5d:d0:42:a0:de:27:
63:7c:8e:e6:2b:aa:6b:a5:ab:45:98:0d:6c:89:b9:a3:77:b8:
f2:99:5f:41:1d:a2:90:1d:04:47:79:22:66:06:55:34:34:84:
42:79:cf:c1:63:98:72:da:5f:7e:93:a6:49:1c:fc:ff:d7:17:
57:7b:40:e7:ee:da:64:06:d2:ac:3c:3e:da:65:f3:92:1e:99:
44:32:3e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:37 2026 by rpki-client