Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402281.roa
File: AS402281.roa (raw, json)
Hash identifier: v0P3SIiWbbvUAW6VIeQszPv4UDhqocL9+PMVTBdbILo=
Subject key identifier: 21:82:26:0B:D4:0F:69:13:08:91:A5:2A:5E:79:D5:FD:02:0B:19:30
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7DF49B32D9C85573E6665F0573FF75B4C4AA9ECA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402281.roa
Signing time: Wed 27 May 2026 07:01:31 +0000
ROA not before: Wed 27 May 2026 06:56:31 +0000
ROA not after: Wed 26 May 2027 07:01:31 +0000
asID: 402281
IP address blocks: 84.75.134.0/24 maxlen: 24
178.83.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:f4:9b:32:d9:c8:55:73:e6:66:5f:05:73:ff:75:b4:c4:aa:9e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 27 06:56:31 2026 GMT
Not After : May 26 07:01:31 2027 GMT
Subject: CN=2182260BD40F69130891A52A5E79D5FD020B1930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:d9:3a:c7:0b:35:05:13:d2:49:27:53:ee:
6b:a6:87:da:60:0f:01:a8:0a:62:a4:3a:56:09:dd:
06:fc:6b:b5:cc:11:f2:ef:ae:fb:27:03:6f:60:ab:
65:ac:e5:bf:5b:9d:e2:a2:30:6c:1a:07:59:a0:27:
27:e7:ae:8f:e6:f2:95:bb:3e:fd:c0:c2:10:5c:c5:
4d:77:53:e1:1e:fd:7e:a5:ca:4b:fe:ce:37:a2:fa:
40:76:dc:a6:1b:9f:51:b4:01:3b:dd:c0:a1:19:3a:
69:94:62:a5:d0:cb:b9:f2:c6:1f:c6:7a:92:33:f6:
31:14:fd:37:1a:a5:5a:42:a9:94:5b:22:bd:18:b2:
00:f8:d3:03:3f:55:24:0b:de:6f:98:de:f5:70:8a:
1e:19:f9:2d:82:58:16:a4:8e:62:e6:2a:97:e6:a3:
1c:35:02:03:f4:43:a4:f9:1c:84:08:5f:3a:7a:6b:
a6:51:d2:cf:26:81:3b:50:a9:48:34:6b:58:bf:3c:
e2:71:e3:d0:b4:59:1c:36:49:20:d2:fa:c4:40:d1:
af:6e:c0:b8:fe:ac:f6:25:54:0d:3f:e0:dc:6d:8b:
de:53:31:3c:1a:69:07:1f:e6:80:00:81:59:dd:82:
dc:29:7d:ca:4e:6b:4d:55:f9:7b:df:ae:36:af:c4:
e8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:82:26:0B:D4:0F:69:13:08:91:A5:2A:5E:79:D5:FD:02:0B:19:30
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402281.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.134.0/24
178.83.6.0/24
Signature Algorithm: sha256WithRSAEncryption
62:32:c9:d6:9d:50:b9:fb:8f:3e:d3:c2:e6:56:f9:04:19:5b:
c8:9b:1a:63:b0:ee:08:a7:51:75:c8:10:9a:70:0e:b3:7a:ae:
c9:f0:c3:ed:1a:57:dc:e8:65:62:d9:65:a8:c2:b5:9a:33:f2:
de:16:04:b3:bf:70:80:2a:0b:62:91:46:75:60:b2:7a:16:5b:
4c:d5:24:49:5d:d9:8a:d6:59:3b:a7:53:f7:da:4e:bf:6e:2d:
cb:96:dd:26:b7:55:c1:7d:a1:73:08:e5:76:9f:ac:bf:51:78:
dc:a6:f9:81:22:c0:b8:e1:ad:dc:bf:fd:c7:e4:81:7f:bb:63:
42:dc:20:69:81:59:b2:ef:92:ea:b1:a1:d4:8d:b6:c3:85:86:
5c:dd:b4:4b:8d:fd:40:24:ac:20:78:90:34:cd:45:4c:6c:51:
88:bc:8c:e6:e4:90:03:80:6a:5c:f8:d4:8a:7f:8d:74:61:78:
30:5f:22:61:52:d7:f9:29:ae:c2:9e:06:4c:50:e9:e8:9e:31:
d4:82:a7:8b:92:c7:db:2d:99:a4:f8:e3:4e:be:71:8f:9f:10:
66:76:84:72:27:f1:4b:d5:3f:a9:33:ca:4c:6f:72:6b:02:01:
7d:57:43:33:fe:e9:03:ae:fa:85:f3:e9:67:43:82:e8:48:c5:
57:7c:97:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:11:15 2026 by rpki-client