Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: Muv8oyKmHJea+r3R/EUr83CUlHloJBz0b51BZW4IXoA=
Subject key identifier: C4:E8:25:42:0A:32:5C:18:A2:AF:CA:92:BF:24:07:4B:FC:50:92:0B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4CA941304984988F24A24665062B4699B543936A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
Signing time: Tue 19 May 2026 14:40:16 +0000
ROA not before: Tue 19 May 2026 14:35:16 +0000
ROA not after: Tue 18 May 2027 14:40:16 +0000
asID: 36530
IP address blocks: 82.25.46.0/23 maxlen: 24
82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.39.210.0/24 maxlen: 24
82.47.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:a9:41:30:49:84:98:8f:24:a2:46:65:06:2b:46:99:b5:43:93:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 19 14:35:16 2026 GMT
Not After : May 18 14:40:16 2027 GMT
Subject: CN=C4E825420A325C18A2AFCA92BF24074BFC50920B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:19:29:d1:06:1f:08:4e:ce:b3:f9:b4:8b:66:
f6:49:7b:94:51:b9:48:9c:9b:ca:aa:45:7e:e0:b8:
e6:24:f7:68:73:8e:05:51:6c:ee:97:6d:8e:a5:cb:
74:fe:c5:1e:2c:2e:76:08:70:f5:7c:06:7e:cb:ac:
b0:9f:b4:99:fd:0d:ce:bf:0c:1c:ff:c8:2f:63:98:
63:8c:b7:8a:09:43:64:14:ef:0d:0f:cb:40:93:a2:
e2:a0:2b:08:bb:26:12:b3:08:48:c1:f2:b7:41:51:
df:e9:b5:78:d0:d2:07:49:f7:ea:ef:09:91:a8:51:
f9:6d:c5:52:ba:84:76:db:02:3e:c0:68:27:fe:ae:
b0:13:0b:56:9a:ff:4c:4d:9f:ec:93:88:1a:8e:89:
88:37:05:c1:68:c0:c1:76:6c:e3:53:b0:bb:71:8b:
87:08:93:2e:06:29:60:97:06:df:1f:87:32:b9:28:
1f:d8:c0:46:81:b4:5c:d3:58:9a:01:5d:1b:5d:09:
29:8d:f2:fd:b3:aa:5d:7a:3e:de:74:01:4d:c0:42:
cd:fa:59:9f:01:33:c9:55:31:9c:f5:e9:39:ab:53:
01:40:0e:53:7f:82:15:7e:0e:d8:b5:24:fd:4b:7e:
a1:f6:20:cd:8a:8b:e7:d7:f4:3a:7e:5e:0b:85:63:
1d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E8:25:42:0A:32:5C:18:A2:AF:CA:92:BF:24:07:4B:FC:50:92:0B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.46.0/23
82.26.72.0/23
82.26.78.0/23
82.39.210.0/24
82.47.60.0/23
Signature Algorithm: sha256WithRSAEncryption
56:32:e2:68:39:72:7b:df:56:a8:2b:7a:3b:6e:c5:f8:aa:b3:
6d:d5:27:f7:c2:18:fe:f6:ce:e8:61:e0:39:d2:b5:1f:40:f9:
e7:74:e6:44:73:92:2c:e0:38:84:e5:8b:cb:8b:68:21:d1:fa:
32:e0:cf:90:d7:fd:44:c5:31:97:42:cf:7f:f5:3b:bd:ba:64:
fb:ce:c7:d6:4a:ee:b8:8c:bd:20:78:4c:f2:b6:b0:42:a1:09:
8b:89:04:91:06:83:d8:a5:d6:22:b1:26:8b:96:82:2e:7c:db:
e3:93:0c:6a:c2:89:96:0a:04:20:4a:86:1d:65:24:75:8e:8b:
2d:4b:d5:66:84:a7:5c:78:02:5c:26:93:aa:e2:c3:0e:89:e9:
41:c4:b8:bf:cd:76:21:43:21:e7:40:41:a0:ab:f2:86:b7:fd:
89:41:5c:23:07:9f:23:3a:45:01:25:f9:4b:3a:f8:ec:c1:ed:
a0:99:e1:a2:8f:67:ff:ef:34:44:bd:ff:08:58:26:4d:0c:b3:
a3:c4:fa:87:28:62:9a:6b:72:48:6b:84:bb:d7:de:7e:4f:ad:
5e:e2:ce:bc:43:1c:ed:db:2a:02:8b:cc:e4:36:d2:69:5c:38:
da:bb:0c:ae:56:d7:af:02:d8:a1:2b:be:fd:27:01:75:f0:ce:
e2:52:3d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 06:50:27 2026 by rpki-client