Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
File: AS4593.roa (raw, json)
Hash identifier: x+tZLgTen8y2yUtwoLHuPg59IxPSdaw0qWwHDqOksdA=
Subject key identifier: F1:FD:E5:9E:00:1E:8A:84:1B:BC:A8:0D:C4:05:3C:93:A3:DD:E7:55
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 6C4A29BCEC88E305039C0C85DD38CD3B7503FAA2
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
Signing time: Sat 16 May 2026 04:01:08 +0000
ROA not before: Sat 16 May 2026 03:56:08 +0000
ROA not after: Sat 15 May 2027 04:01:08 +0000
asID: 4593
IP address blocks: 84.75.139.0/24 maxlen: 24
178.83.144.0/24 maxlen: 24
178.83.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:4a:29:bc:ec:88:e3:05:03:9c:0c:85:dd:38:cd:3b:75:03:fa:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 16 03:56:08 2026 GMT
Not After : May 15 04:01:08 2027 GMT
Subject: CN=F1FDE59E001E8A841BBCA80DC4053C93A3DDE755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5a:24:3f:26:7f:74:86:3a:de:a1:c8:8a:5d:
50:3c:90:76:c9:9e:fd:6e:ad:80:40:ad:f9:b7:a6:
98:fc:d0:d5:22:11:37:d9:d2:da:50:23:0e:b6:8b:
bb:b9:cf:d5:19:eb:cd:6d:94:08:76:cd:2c:18:51:
47:6f:6d:b4:77:77:94:43:f6:5d:d9:d9:1c:03:bd:
31:07:78:29:a5:a4:4d:0a:e5:2f:4c:54:41:8a:08:
1e:39:7b:01:85:1a:08:d4:3b:51:90:04:e3:af:ec:
c2:e7:c9:71:2d:36:ba:5d:f3:cc:6e:f9:d2:67:06:
8d:53:cb:11:b9:7a:28:43:cc:9f:b7:6a:b1:52:98:
08:d6:f2:4f:07:99:bc:10:01:a0:e9:0f:20:54:a2:
58:ce:76:b9:2c:94:79:ce:91:18:0d:6d:6c:7e:d6:
b0:e1:a1:64:54:85:7b:04:7d:10:79:04:4a:5c:5b:
04:e3:e0:f2:2d:49:25:60:d6:b6:43:be:7d:7a:2e:
41:b8:91:e9:86:de:38:e4:35:a8:85:53:30:a0:ed:
f3:8b:82:a9:b1:c3:6d:f3:af:b2:e7:cb:4d:f7:d8:
d7:e9:7f:a4:cb:01:78:1c:d3:d0:ec:7f:27:e6:e9:
be:86:c7:f0:e3:01:aa:30:96:da:52:af:d3:25:0b:
aa:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:FD:E5:9E:00:1E:8A:84:1B:BC:A8:0D:C4:05:3C:93:A3:DD:E7:55
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4593.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.139.0/24
178.83.144.0/24
178.83.153.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:7c:0a:5e:46:6d:77:d3:22:70:fe:dc:67:fc:99:75:4d:fc:
44:05:ed:4c:ce:d9:5a:ad:0f:35:a6:22:a8:8f:cc:14:8c:ff:
12:c5:c7:ee:aa:97:6e:a5:55:15:77:e9:d3:f3:f9:92:ee:0f:
03:29:4d:da:d1:35:56:77:41:a6:69:a8:5d:52:6d:4d:7d:b1:
99:91:8e:40:f6:44:18:9a:f7:5e:7b:85:c3:d4:5e:67:f3:83:
0a:f1:26:32:4e:d5:78:8d:78:38:98:25:e3:d4:1c:6a:91:fb:
17:34:6b:1c:06:c0:e4:fa:1d:2c:03:8e:a0:03:c6:a9:a1:95:
a9:93:52:92:04:57:76:df:ad:91:e5:ba:28:be:1e:2e:74:ef:
da:2f:3b:3a:b5:e9:62:79:28:dc:aa:98:60:13:59:da:62:f6:
62:9a:98:d9:24:97:a5:25:d6:8b:1c:6f:dd:0a:88:28:06:71:
08:93:52:64:55:dd:16:1a:37:56:f1:f0:6b:a8:d7:fd:94:84:
04:f8:4d:f4:75:1b:b1:86:a6:94:19:5f:ba:18:ea:6f:26:dd:
c4:29:fd:7c:17:03:a9:5d:60:c6:4c:38:dc:d7:bf:2a:1b:ba:
8a:db:ad:91:0a:c8:07:83:b1:01:b0:fd:05:39:bd:07:58:bb:
9c:a6:48:98
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:10:41 2026 by rpki-client