Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: vefH6S4e3FFPxdAqB/Gwm5tGW2A7o94hdYDpyQ5lx14=
Subject key identifier: 4C:8C:13:0D:2A:B3:32:44:AD:46:4F:90:C3:E7:4C:46:F0:6B:5F:18
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0E39595DD87F44582D9D317662A8978270FADFA4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
Signing time: Sat 21 Feb 2026 09:50:23 +0000
ROA not before: Sat 21 Feb 2026 09:45:23 +0000
ROA not after: Sat 20 Feb 2027 09:50:23 +0000
asID: 2914
IP address blocks: 82.26.139.0/24 maxlen: 24
82.26.142.0/24 maxlen: 24
82.26.143.0/24 maxlen: 24
82.26.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Feb 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:39:59:5d:d8:7f:44:58:2d:9d:31:76:62:a8:97:82:70:fa:df:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Feb 21 09:45:23 2026 GMT
Not After : Feb 20 09:50:23 2027 GMT
Subject: CN=4C8C130D2AB33244AD464F90C3E74C46F06B5F18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7d:ca:af:ea:89:b5:a9:09:2e:0c:c7:3b:a7:
5a:60:42:02:2e:cc:cf:8b:09:5e:61:0a:01:91:3e:
17:f6:d1:67:0c:6d:13:0e:8e:dd:46:49:de:94:d6:
aa:96:e8:30:06:4a:9f:11:3b:37:4d:e2:3b:74:df:
69:9b:36:53:49:5c:bf:8f:83:7d:f1:56:4c:52:fa:
d8:ad:e5:e9:0f:f2:d5:c5:68:83:69:df:20:f4:a7:
c0:a2:2d:72:a3:5d:d0:3d:0e:fa:77:59:61:6b:76:
55:cb:e5:51:86:c5:19:7f:a6:68:76:53:dd:0e:94:
af:01:f4:cc:1e:34:94:2a:39:f4:84:75:ea:4d:9b:
af:14:b1:b4:f5:9d:c6:e8:f0:ec:03:79:85:6a:9d:
f4:de:6d:22:82:55:c1:67:85:23:9b:18:f3:81:29:
f6:28:d8:85:ee:57:9d:ad:58:40:0b:24:7d:e2:c0:
7d:f9:ca:97:6a:c5:bc:9c:2a:2d:21:65:6f:ff:43:
b2:77:2f:96:56:ac:63:1c:e9:9f:ee:4b:d4:47:8e:
96:ea:3b:b3:44:c9:26:a8:79:de:8a:cf:a9:a4:8b:
72:68:49:7a:8b:97:6f:3b:5c:27:08:28:29:16:10:
ff:c0:84:47:b2:9f:9c:3d:19:be:c2:51:b6:68:45:
8c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8C:13:0D:2A:B3:32:44:AD:46:4F:90:C3:E7:4C:46:F0:6B:5F:18
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.26.139.0/24
82.26.142.0-82.26.144.255
Signature Algorithm: sha256WithRSAEncryption
9b:8a:69:19:78:b1:28:55:f7:40:7d:78:e0:ba:1d:d4:61:44:
ad:16:a5:cd:e9:09:b3:ef:40:1a:97:a3:c4:e0:1d:9c:28:3a:
c4:d5:bb:f0:41:cf:fe:a8:20:44:53:c8:9c:43:23:5b:26:25:
d2:aa:87:c6:77:ed:f7:84:d6:33:d6:13:14:9e:44:3a:ce:ae:
87:38:e3:e9:98:38:01:7b:f8:20:82:61:43:6e:47:d0:6e:34:
4c:74:86:ef:52:ba:43:09:14:4e:74:c8:7d:46:6d:25:f2:6d:
82:e2:24:66:80:19:f3:b8:63:be:9f:f1:fd:6b:56:62:6e:25:
d8:23:a6:18:3f:44:ad:54:1f:1c:47:37:0d:89:7f:ce:fe:35:
fc:a0:31:ae:7f:34:a2:7c:e5:80:46:0a:cd:fd:31:93:c5:52:
dd:91:5d:62:2c:8e:ae:8f:22:f3:1f:18:9e:a4:ad:6a:96:59:
37:b3:10:26:2c:d8:11:35:f8:c7:e6:e6:f8:b0:6d:1d:0f:d5:
c0:a2:c4:b9:9c:74:a7:66:b6:98:f0:67:50:d6:07:5c:b0:c6:
e9:7d:5f:73:35:23:f3:9e:19:10:67:e8:cf:1f:8d:3d:fc:04:
d5:c0:ed:e0:60:3e:c0:16:02:fd:6f:ae:70:da:7e:8c:91:12:
d4:00:73:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 22 14:09:20 2026 by rpki-client