Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402533.roa
File: AS402533.roa (raw, json)
Hash identifier: 6/yyv1yPxECoKSzmopzUlp77Pdmg8eUSYhZrbqWhBl8=
Subject key identifier: 48:0E:7A:C7:18:75:16:BD:1F:FE:9A:6C:1F:12:19:31:05:90:85:0E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7880857CC57C79027A5AE71EEB2C8A5A59086359
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402533.roa
Signing time: Sat 30 May 2026 06:38:42 +0000
ROA not before: Sat 30 May 2026 06:33:42 +0000
ROA not after: Sat 29 May 2027 06:38:42 +0000
asID: 402533
IP address blocks: 82.47.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:80:85:7c:c5:7c:79:02:7a:5a:e7:1e:eb:2c:8a:5a:59:08:63:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 30 06:33:42 2026 GMT
Not After : May 29 06:38:42 2027 GMT
Subject: CN=480E7AC7187516BD1FFE9A6C1F1219310590850E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fa:8a:69:7c:ba:c2:ca:7e:61:74:27:c8:b2:
a7:2a:a2:b9:a5:36:34:cb:1d:df:1d:11:ff:a3:79:
67:86:19:6c:63:0e:b3:fa:36:6a:61:5e:fc:ff:c0:
a6:f6:e7:25:4f:81:b6:f7:19:97:e2:17:4f:8b:8f:
7f:a2:53:18:26:ae:37:4f:86:cf:54:4c:0d:a9:ab:
9e:9f:da:88:92:aa:9b:1f:2e:6a:d3:a9:ee:24:94:
64:af:f4:d6:d2:ba:21:21:bb:3c:7f:75:00:70:6c:
87:92:f3:2b:3a:62:36:d3:07:1e:af:c4:e8:47:a8:
5b:00:5a:75:96:e8:c1:d2:29:d3:c7:3e:a4:08:a7:
6d:4f:06:28:a1:67:92:9c:d4:ec:97:1e:1a:c3:b0:
a4:c6:bc:b6:cc:a1:67:04:3b:0f:e2:8c:34:c7:7d:
1d:2e:97:b5:3c:6c:65:ef:81:1c:ef:03:c7:66:5a:
47:e1:df:63:1e:c7:a8:1f:cf:d7:5e:a3:f2:e7:b2:
5d:75:ec:b9:71:04:26:e7:5c:23:af:ba:51:d9:14:
fb:ce:e1:d7:c4:27:12:cf:4e:12:9d:dc:0c:44:79:
07:5f:46:6d:5b:a8:0a:59:44:33:f5:c6:47:b5:60:
1f:d9:bf:ac:b6:ce:fc:d3:69:ad:89:be:7f:d3:62:
4a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0E:7A:C7:18:75:16:BD:1F:FE:9A:6C:1F:12:19:31:05:90:85:0E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS402533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.114.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f3:84:7a:83:a2:b5:64:7a:f9:bb:6a:e0:0b:0f:bb:86:18:
ab:dd:4f:7e:bd:fa:fc:d0:bc:4d:ec:34:0e:0a:75:a2:54:8b:
6f:e0:c7:65:8c:32:3a:c9:02:ea:28:fa:e7:c7:cd:3e:08:68:
b2:6a:96:2c:81:ee:d5:6b:47:58:4b:0d:61:ce:10:07:15:23:
55:43:c9:c6:c5:80:7a:b4:ca:0f:7c:70:4b:88:de:cf:17:49:
5d:fd:3f:16:b4:29:01:90:1e:cf:d0:eb:84:21:90:d7:59:2a:
36:6d:2a:da:b7:e8:e5:07:b4:a2:06:65:14:a6:b2:ce:44:50:
6e:eb:72:f1:28:03:20:48:13:87:47:94:dc:22:47:86:0d:b6:
dc:b8:75:36:b5:dc:99:b1:1f:e4:12:a7:cf:63:2d:84:fc:5d:
7d:62:1c:04:75:46:86:98:b3:90:32:ad:1a:58:c0:ad:cb:96:
f5:39:bb:0b:06:c3:62:c5:98:89:a6:af:34:1d:fd:c1:48:48:
f5:0a:c2:e2:57:9f:3b:5b:9d:67:2a:60:0b:97:81:7c:02:1e:
9f:47:56:e6:91:48:36:8c:61:ca:9b:09:14:dc:a9:0e:25:84:
5f:8b:c7:86:ea:7c:c8:42:a0:22:3a:9c:e8:c9:1c:0b:0d:05:
76:00:87:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:31 2026 by rpki-client