
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: 1qUzfcQShfcg4yVCZtY4corNqsWYUeo7Xezs0XGq/ko=
Subject key identifier: F6:2B:A0:14:67:8B:D5:AE:F4:A9:96:DC:C6:3C:B2:E7:CA:35:78:14
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 489E3B1CB0CC9B7024788813E37C3F136B9EC019
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
Signing time: Fri 19 Jun 2026 11:54:04 +0000
ROA not before: Fri 19 Jun 2026 11:49:04 +0000
ROA not after: Fri 18 Jun 2027 11:54:04 +0000
asID: 2914
IP address blocks: 82.21.98.0/24 maxlen: 24
82.21.99.0/24 maxlen: 24
82.22.12.0/24 maxlen: 24
82.26.139.0/24 maxlen: 24
82.26.142.0/24 maxlen: 24
82.26.143.0/24 maxlen: 24
82.26.144.0/24 maxlen: 24
82.29.48.0/24 maxlen: 24
82.38.12.0/24 maxlen: 24
82.38.62.0/24 maxlen: 24
82.38.93.0/24 maxlen: 24
82.38.94.0/24 maxlen: 24
82.38.95.0/24 maxlen: 24
82.38.98.0/24 maxlen: 24
82.38.113.0/24 maxlen: 24
82.38.120.0/24 maxlen: 24
82.38.131.0/24 maxlen: 24
82.38.144.0/24 maxlen: 24
82.38.145.0/24 maxlen: 24
82.38.146.0/24 maxlen: 24
82.38.151.0/24 maxlen: 24
82.38.169.0/24 maxlen: 24
82.38.172.0/24 maxlen: 24
82.38.175.0/24 maxlen: 24
82.38.181.0/24 maxlen: 24
82.39.164.0/24 maxlen: 24
82.47.30.0/24 maxlen: 24
82.47.40.0/24 maxlen: 24
82.47.43.0/24 maxlen: 24
82.47.44.0/24 maxlen: 24
82.47.53.0/24 maxlen: 24
82.47.107.0/24 maxlen: 24
82.47.110.0/24 maxlen: 24
82.47.111.0/24 maxlen: 24
82.47.113.0/24 maxlen: 24
82.47.116.0/24 maxlen: 24
82.47.118.0/24 maxlen: 24
82.47.119.0/24 maxlen: 24
82.47.122.0/24 maxlen: 24
82.47.135.0/24 maxlen: 24
82.47.151.0/24 maxlen: 24
82.47.156.0/24 maxlen: 24
82.47.163.0/24 maxlen: 24
82.47.173.0/24 maxlen: 24
82.47.178.0/24 maxlen: 24
82.47.183.0/24 maxlen: 24
82.47.209.0/24 maxlen: 24
82.47.210.0/24 maxlen: 24
82.47.213.0/24 maxlen: 24
82.47.215.0/24 maxlen: 24
82.47.223.0/24 maxlen: 24
82.47.248.0/24 maxlen: 24
84.75.128.0/24 maxlen: 24
84.75.131.0/24 maxlen: 24
84.75.136.0/24 maxlen: 24
84.75.137.0/24 maxlen: 24
84.75.147.0/24 maxlen: 24
84.75.163.0/24 maxlen: 24
84.75.167.0/24 maxlen: 24
84.75.168.0/24 maxlen: 24
84.75.173.0/24 maxlen: 24
84.75.208.0/24 maxlen: 24
84.75.244.0/24 maxlen: 24
84.75.245.0/24 maxlen: 24
178.83.116.0/24 maxlen: 24
178.83.119.0/24 maxlen: 24
178.83.155.0/24 maxlen: 24
178.83.160.0/24 maxlen: 24
178.83.162.0/24 maxlen: 24
178.83.170.0/24 maxlen: 24
178.83.177.0/24 maxlen: 24
178.83.179.0/24 maxlen: 24
178.83.184.0/24 maxlen: 24
178.83.189.0/24 maxlen: 24
178.83.193.0/24 maxlen: 24
178.83.194.0/24 maxlen: 24
178.83.202.0/24 maxlen: 24
178.83.204.0/24 maxlen: 24
178.83.212.0/24 maxlen: 24
178.83.213.0/24 maxlen: 24
178.83.214.0/24 maxlen: 24
178.83.223.0/24 maxlen: 24
178.83.227.0/24 maxlen: 24
178.83.241.0/24 maxlen: 24
178.83.246.0/24 maxlen: 24
178.83.247.0/24 maxlen: 24
178.83.253.0/24 maxlen: 24
178.83.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:9e:3b:1c:b0:cc:9b:70:24:78:88:13:e3:7c:3f:13:6b:9e:c0:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 19 11:49:04 2026 GMT
Not After : Jun 18 11:54:04 2027 GMT
Subject: CN=F62BA014678BD5AEF4A996DCC63CB2E7CA357814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e3:04:c0:4e:a4:1f:88:c2:fa:bb:2a:f2:83:
39:58:db:86:29:5d:6e:f2:b9:dd:a4:e3:71:fb:25:
88:3f:0e:96:3e:03:9c:84:da:36:27:86:f0:32:8e:
77:72:4c:3f:38:c2:a2:c7:a9:81:7c:b0:27:7d:64:
22:8f:85:2c:32:aa:a7:3b:8b:14:76:5c:a6:cf:18:
36:97:94:2e:33:80:10:a9:b9:e7:77:50:bf:bf:40:
c1:d7:7a:d4:e8:f3:30:dd:ba:e7:b5:1f:ed:2f:61:
9c:54:75:9b:72:a7:f1:4a:7c:4d:a9:98:75:b8:bb:
85:38:2e:8c:10:d6:3c:09:16:e4:e8:4c:b8:80:10:
2f:3f:6d:76:ef:ea:8d:27:dd:ec:69:4f:ea:f3:88:
23:38:27:40:7e:8e:20:c5:57:76:56:a0:94:1c:eb:
12:70:99:39:44:8f:3a:0c:05:23:48:3c:6e:3f:a3:
49:db:8d:23:18:2c:4a:cd:1d:14:81:27:bf:ea:c7:
4c:a8:19:f2:d8:e8:01:44:73:37:63:bc:10:2c:a3:
2e:b1:23:ce:06:22:75:7e:35:00:2c:69:6c:13:3b:
a8:ff:96:fd:73:e1:86:e9:1d:5c:a6:f0:5f:9b:bb:
ff:85:22:42:6f:c8:64:cb:20:9f:3f:a3:bd:7c:28:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2B:A0:14:67:8B:D5:AE:F4:A9:96:DC:C6:3C:B2:E7:CA:35:78:14
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.98.0/23
82.22.12.0/24
82.26.139.0/24
82.26.142.0-82.26.144.255
82.29.48.0/24
82.38.12.0/24
82.38.62.0/24
82.38.93.0-82.38.95.255
82.38.98.0/24
82.38.113.0/24
82.38.120.0/24
82.38.131.0/24
82.38.144.0-82.38.146.255
82.38.151.0/24
82.38.169.0/24
82.38.172.0/24
82.38.175.0/24
82.38.181.0/24
82.39.164.0/24
82.47.30.0/24
82.47.40.0/24
82.47.43.0-82.47.44.255
82.47.53.0/24
82.47.107.0/24
82.47.110.0/23
82.47.113.0/24
82.47.116.0/24
82.47.118.0/23
82.47.122.0/24
82.47.135.0/24
82.47.151.0/24
82.47.156.0/24
82.47.163.0/24
82.47.173.0/24
82.47.178.0/24
82.47.183.0/24
82.47.209.0-82.47.210.255
82.47.213.0/24
82.47.215.0/24
82.47.223.0/24
82.47.248.0/24
84.75.128.0/24
84.75.131.0/24
84.75.136.0/23
84.75.147.0/24
84.75.163.0/24
84.75.167.0-84.75.168.255
84.75.173.0/24
84.75.208.0/24
84.75.244.0/23
178.83.116.0/24
178.83.119.0/24
178.83.155.0/24
178.83.160.0/24
178.83.162.0/24
178.83.170.0/24
178.83.177.0/24
178.83.179.0/24
178.83.184.0/24
178.83.189.0/24
178.83.193.0-178.83.194.255
178.83.202.0/24
178.83.204.0/24
178.83.212.0-178.83.214.255
178.83.223.0/24
178.83.227.0/24
178.83.241.0/24
178.83.246.0/23
178.83.253.0-178.83.254.255
Signature Algorithm: sha256WithRSAEncryption
9c:a6:5a:71:40:22:7a:ac:aa:9b:6f:59:b5:b1:e8:65:a2:ba:
38:85:0a:8c:95:8f:52:f5:25:e8:e9:53:16:8b:b1:ed:3d:49:
6f:14:57:55:b6:89:eb:b9:1c:95:5a:7b:1e:0f:02:5c:3b:fa:
20:e7:1f:3c:f9:ec:8d:83:53:ff:db:eb:15:95:2b:8e:0c:ad:
7b:22:52:7d:ba:fb:a7:cf:3f:71:60:59:c6:b6:73:2c:3e:d6:
ca:4f:e7:30:98:72:3f:9b:59:bd:08:1a:4b:27:7b:ff:3b:b8:
6e:8d:1a:ce:39:65:fa:d0:e7:e1:20:f6:f8:af:cc:fb:48:98:
bc:4b:9a:57:49:72:ee:12:50:5c:ba:a1:aa:ee:aa:9b:6e:40:
28:6f:33:11:69:19:a7:40:fd:35:da:ee:e0:b0:f3:82:1e:5a:
c7:fb:d7:16:26:38:77:b4:a0:2e:93:f2:41:13:8d:d1:fd:3d:
d8:b4:b0:e5:5a:f0:26:15:57:a7:75:de:0d:67:7e:a3:2e:e7:
78:8e:20:4b:7c:54:a9:e7:27:01:ca:38:82:9a:f6:0a:2b:cb:
61:47:26:f6:b9:f6:dd:98:82:6b:58:8c:30:cd:09:cc:f9:74:
03:a2:3b:04:ac:f3:25:bb:b3:71:17:0b:29:13:79:e6:80:09:
0a:4d:6e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:05:42 2026 by rpki-client