Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: muAqGMa/xCVfaKZ3rRmD5d55JRE3czKph6aZ7jikAn8=
Subject key identifier: 01:E9:D6:6E:F3:B9:0D:FD:4B:28:D6:C0:50:89:0A:53:2C:0C:09:39
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 02036D2321AAF40F933C27E8A95BC0C405222800
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
Signing time: Thu 19 Mar 2026 11:33:53 +0000
ROA not before: Thu 19 Mar 2026 11:28:53 +0000
ROA not after: Thu 18 Mar 2027 11:33:53 +0000
asID: 10753
IP address blocks: 82.22.26.0/24 maxlen: 24
82.38.12.0/24 maxlen: 24
82.38.46.0/23 maxlen: 24
82.38.80.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:03:6d:23:21:aa:f4:0f:93:3c:27:e8:a9:5b:c0:c4:05:22:28:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 19 11:28:53 2026 GMT
Not After : Mar 18 11:33:53 2027 GMT
Subject: CN=01E9D66EF3B90DFD4B28D6C050890A532C0C0939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:09:6d:2c:3b:c2:76:64:4d:6c:88:b4:33:
7a:f8:73:d0:20:19:2d:4d:8c:ed:a5:89:1d:03:31:
fa:71:54:c5:0a:b3:b8:05:da:10:27:6b:ac:43:42:
5a:8b:40:4b:15:86:a2:05:7a:a0:fa:b6:d8:57:53:
9e:41:19:c5:bb:ff:98:f3:15:4f:e8:70:58:b5:55:
f4:9d:b5:03:96:84:15:68:06:e8:0a:29:0a:04:71:
14:cc:d0:c7:ac:a7:b0:b8:b3:f4:f6:06:c7:f7:46:
96:5b:0a:56:1b:15:6e:16:2c:d9:15:62:9a:a5:47:
82:88:de:08:aa:93:51:fe:8a:9a:a0:31:0d:ec:c3:
6f:17:01:56:66:0e:8b:bb:51:2d:8d:19:ce:fb:85:
ec:fc:a5:1f:14:05:dc:55:ee:c7:0a:d4:b4:47:38:
8e:3d:d8:54:6a:3a:f7:8b:e8:eb:9c:66:c8:4e:2f:
b4:58:04:38:dd:8a:76:a5:4b:d2:1f:dc:5b:2f:ae:
5e:d3:63:18:60:0e:1f:89:06:ca:31:47:f1:44:af:
d7:46:c3:9a:84:67:ce:41:fb:a3:4e:74:a7:e6:e9:
68:35:b5:f5:fe:97:e8:bc:38:42:84:17:af:4e:fe:
44:2f:9d:13:a2:de:53:95:43:22:03:65:2c:af:6a:
0e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E9:D6:6E:F3:B9:0D:FD:4B:28:D6:C0:50:89:0A:53:2C:0C:09:39
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.26.0/24
82.38.12.0/24
82.38.46.0/23
82.38.80.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:b1:3b:33:f4:77:04:37:ea:94:1d:9a:5c:ec:b7:10:18:f7:
f0:54:a6:53:73:e4:21:ab:87:9e:11:90:fe:c4:f6:ce:cd:70:
f4:45:c2:d5:7f:78:4e:40:2d:36:ad:51:c6:2a:2e:d1:08:da:
0d:56:6f:e7:a3:4f:f6:a2:6b:ec:53:17:f1:9e:ad:e4:5b:53:
96:18:8b:cc:d4:6f:c5:f3:46:71:c7:c2:0c:8c:0b:07:ed:fa:
72:da:22:c4:b8:a6:b6:e1:53:8a:3b:ab:e8:7c:ad:83:c6:eb:
eb:94:e8:cd:95:ba:11:67:20:72:33:29:08:28:50:2a:4f:4c:
62:ff:2b:36:cd:99:d6:91:d2:10:f9:07:e8:64:56:23:23:db:
86:5c:15:ad:24:ed:2a:84:82:a9:52:14:2d:97:95:e7:62:21:
c4:32:6e:86:62:aa:03:14:0e:70:50:cf:05:3e:c4:3c:ea:85:
5c:83:18:1a:31:85:52:2a:2b:56:aa:67:fc:a6:6d:00:93:e1:
8e:03:ad:41:fd:99:3a:69:09:7c:57:1c:20:89:91:a4:96:64:
26:5b:74:c6:e3:d2:1a:06:9a:9a:99:89:6f:af:59:c1:6b:9e:
61:75:d3:87:18:cc:16:22:5f:f3:77:c7:9e:eb:0a:af:3a:54:
3c:f9:41:cf
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUAgNtIyGq9A+TPCfoqVvAxAUiKAAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAzMTkxMTI4NTNaFw0yNzAzMTgxMTMzNTNaMDMxMTAvBgNV
BAMTKDAxRTlENjZFRjNCOTBERkQ0QjI4RDZDMDUwODkwQTUzMkMwQzA5MzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeTwltLDvCdmRNbIi0M3r4c9Ag
GS1NjO2liR0DMfpxVMUKs7gF2hAna6xDQlqLQEsVhqIFeqD6tthXU55BGcW7/5jz
FU/ocFi1VfSdtQOWhBVoBugKKQoEcRTM0Mesp7C4s/T2Bsf3RpZbClYbFW4WLNkV
YpqlR4KI3giqk1H+ipqgMQ3sw28XAVZmDou7US2NGc77hez8pR8UBdxV7scK1LRH
OI492FRqOveL6OucZshOL7RYBDjdinalS9If3Fsvrl7TYxhgDh+JBsoxR/FEr9dG
w5qEZ85B+6NOdKfm6Wg1tfX+l+i8OEKEF69O/kQvnROi3lOVQyIDZSyvag5jAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUAenWbvO5Df1LKNbAUIkKUywMCTkwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTA3NTMucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBABSFhoD
BABSJgwDBAFSJi4DBAFSJlAwDQYJKoZIhvcNAQELBQADggEBAHuxOzP0dwQ36pQd
mlzstxAY9/BUplNz5CGrh54RkP7E9s7NcPRFwtV/eE5ALTatUcYqLtEI2g1Wb+ej
T/aia+xTF/GereRbU5YYi8zUb8XzRnHHwgyMCwft+nLaIsS4prbhU4o7q+h8rYPG
6+uU6M2VuhFnIHIzKQgoUCpPTGL/KzbNmdaR0hD5B+hkViMj24ZcFa0k7SqEgqlS
FC2XlediIcQyboZiqgMUDnBQzwU+xDzqhVyDGBoxhVIqK1aqZ/ymbQCT4Y4DrUH9
mTppCXxXHCCJkaSWZCZbdMbj0hoGmpqZiW+vWcFrnmF104cYzBYiX/N3x57rCq86
VDz5Qc8=
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:29:28 2026 by rpki-client