
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30900.roa
File: AS30900.roa (raw, json)
Hash identifier: 7AchaQOwEvVyqiSRxc+Oi+59BZPoHLjuH21M8DxHtlo=
Subject key identifier: F2:9A:62:8D:76:26:F5:D9:42:1D:1B:E1:86:E6:72:04:BD:AC:1B:17
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 36541CB404F15A201C3508F1E381E9D8BCE98DE8
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30900.roa
Signing time: Fri 03 Jul 2026 00:48:52 +0000
ROA not before: Fri 03 Jul 2026 00:43:52 +0000
ROA not after: Fri 02 Jul 2027 00:48:52 +0000
asID: 30900
IP address blocks: 82.21.218.0/24 maxlen: 24
82.21.248.0/24 maxlen: 24
82.22.214.0/24 maxlen: 24
82.22.223.0/24 maxlen: 24
82.22.248.0/24 maxlen: 24
82.23.202.0/24 maxlen: 24
82.23.225.0/24 maxlen: 24
82.23.238.0/24 maxlen: 24
82.24.221.0/24 maxlen: 24
82.24.237.0/24 maxlen: 24
82.24.248.0/24 maxlen: 24
82.25.213.0/24 maxlen: 24
82.25.215.0/24 maxlen: 24
82.25.235.0/24 maxlen: 24
82.25.248.0/24 maxlen: 24
82.26.248.0/24 maxlen: 24
82.26.249.0/24 maxlen: 24
82.27.249.0/24 maxlen: 24
82.29.214.0/24 maxlen: 24
82.29.235.0/24 maxlen: 24
82.29.247.0/24 maxlen: 24
82.29.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:54:1c:b4:04:f1:5a:20:1c:35:08:f1:e3:81:e9:d8:bc:e9:8d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 3 00:43:52 2026 GMT
Not After : Jul 2 00:48:52 2027 GMT
Subject: CN=F29A628D7626F5D9421D1BE186E67204BDAC1B17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4d:44:68:29:14:f0:0d:f3:4f:6c:36:06:e6:
b0:67:49:30:7f:92:33:9a:cf:53:d5:ee:08:5f:02:
fb:1e:f3:3f:c6:5b:22:6b:b6:7e:54:f9:e2:54:ed:
16:95:aa:da:00:c4:06:71:8a:5f:df:77:9d:5b:83:
5f:cb:dd:1e:f9:ca:f3:ef:22:a7:49:23:02:13:90:
60:e4:27:a1:f4:7e:ef:a8:70:fb:9e:85:cd:f1:4c:
91:50:88:e6:54:58:43:6d:fb:86:6c:cd:b8:7c:ef:
b3:2d:42:15:ea:a5:b0:99:b4:41:68:ea:ad:5d:43:
77:08:e1:3e:d8:ad:de:56:14:66:e2:b1:64:ed:59:
44:5f:b2:c4:08:45:10:30:4a:7f:89:47:d8:2c:1b:
9a:43:4d:40:70:88:87:73:16:6c:fb:64:a6:51:c2:
05:b4:56:cd:7e:0f:ea:3e:c8:69:84:0c:d5:ab:93:
d6:95:cf:ec:aa:14:17:1f:8c:68:2d:3b:15:d8:df:
41:02:1f:60:3f:a3:5f:07:5c:e9:41:85:d8:3d:63:
41:57:0b:1b:3e:bd:ab:19:39:a4:62:04:31:ae:ed:
29:94:28:1b:5e:56:25:2a:22:19:2d:8a:1e:ee:e8:
a4:c7:06:1a:b4:98:53:05:f3:c0:97:e2:39:4b:7b:
03:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9A:62:8D:76:26:F5:D9:42:1D:1B:E1:86:E6:72:04:BD:AC:1B:17
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS30900.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.218.0/24
82.21.248.0/24
82.22.214.0/24
82.22.223.0/24
82.22.248.0/24
82.23.202.0/24
82.23.225.0/24
82.23.238.0/24
82.24.221.0/24
82.24.237.0/24
82.24.248.0/24
82.25.213.0/24
82.25.215.0/24
82.25.235.0/24
82.25.248.0/24
82.26.248.0/23
82.27.249.0/24
82.29.214.0/24
82.29.235.0/24
82.29.247.0-82.29.248.255
Signature Algorithm: sha256WithRSAEncryption
0d:09:a8:d4:09:43:81:1f:52:b6:99:97:e1:9b:fb:4b:59:ad:
43:e5:10:a3:4d:74:35:01:84:fe:d7:30:f4:b9:6d:30:26:45:
2d:6f:ea:95:d2:ba:48:b5:03:28:5c:53:f6:0e:53:be:98:9f:
00:24:74:e6:e8:0c:a6:23:62:10:90:22:cc:39:8c:e3:e2:c5:
8d:98:26:35:8c:d6:f3:2a:8d:5c:95:92:eb:e6:eb:08:06:b5:
3b:d6:76:b4:a7:04:9a:4b:6d:70:c3:b6:bf:92:c4:c9:45:e3:
95:2e:c6:eb:8c:d2:52:7b:17:dd:83:fb:02:6b:46:f0:cd:51:
89:1a:f6:c8:bf:89:fe:4f:a0:e8:cc:a3:6b:91:f5:58:7d:e2:
4e:75:6b:b8:61:46:af:07:90:90:27:73:3f:93:89:02:df:07:
ce:04:4a:01:9b:b0:98:b7:1d:a1:08:ae:35:89:93:2b:09:81:
d0:76:d3:18:63:5c:3f:1f:a3:28:ec:ae:be:b6:34:43:bf:d3:
a5:bf:fb:43:3c:0d:cd:25:ae:97:c5:31:43:b8:a6:11:bc:fb:
dd:ae:bc:0c:12:92:98:ee:c6:37:f5:0c:51:40:a3:e6:a6:77:
6e:5a:e5:e7:70:2a:0e:34:8d:a3:cf:17:a0:2a:da:9a:7f:25:
75:2d:1a:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:07:05 2026 by rpki-client