Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
File: AS10753.roa (raw, json)
Hash identifier: r2Cb6zJSgTyQE6K2FtFK5KhCJ6bw11iWqfggM1s2Ctw=
Subject key identifier: A1:87:55:0B:33:85:11:09:6D:81:51:CD:4B:FC:50:48:2B:F3:EE:03
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4F45D19E394EBB17B9364584403F0A91493F4203
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
Signing time: Thu 07 May 2026 06:54:59 +0000
ROA not before: Thu 07 May 2026 06:49:59 +0000
ROA not after: Thu 06 May 2027 06:54:59 +0000
asID: 10753
IP address blocks: 82.21.210.0/24 maxlen: 24
82.21.216.0/24 maxlen: 24
82.21.234.0/24 maxlen: 24
82.22.250.0/24 maxlen: 24
82.25.225.0/24 maxlen: 24
82.25.250.0/24 maxlen: 24
82.26.234.0/24 maxlen: 24
82.26.250.0/24 maxlen: 24
82.27.250.0/24 maxlen: 24
82.29.239.0/24 maxlen: 24
82.38.42.0/23 maxlen: 24
82.38.46.0/23 maxlen: 24
82.38.80.0/23 maxlen: 24
178.83.82.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:45:d1:9e:39:4e:bb:17:b9:36:45:84:40:3f:0a:91:49:3f:42:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 7 06:49:59 2026 GMT
Not After : May 6 06:54:59 2027 GMT
Subject: CN=A187550B338511096D8151CD4BFC50482BF3EE03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1b:1a:15:67:3e:e0:4e:b7:22:ba:4b:67:df:
ff:ae:42:13:15:09:09:bd:b0:d8:93:3f:67:4e:f4:
7e:c1:22:c4:c7:8f:58:7f:da:b9:c0:e2:cc:b2:34:
c5:7e:99:bf:e1:4b:39:df:94:c9:0f:47:73:77:aa:
fe:9d:85:b4:29:ce:81:16:21:c2:00:67:2d:f7:3c:
9b:c7:cb:73:63:a4:23:22:28:57:0d:c1:d6:5f:cd:
4a:c3:7c:28:b0:05:6c:05:f4:e2:29:66:53:36:6e:
23:59:72:32:6b:3f:8d:fb:af:b7:9e:1a:97:bf:49:
c5:75:68:e2:01:dc:4a:fe:9e:48:9e:55:f9:3b:e3:
e2:86:7d:fe:af:95:a6:87:f4:2a:3b:a0:2b:be:c3:
7b:2f:8e:16:e9:fa:d1:cd:da:98:55:87:e0:8b:32:
dd:27:d1:35:ae:f9:2c:e8:3c:9a:42:2f:83:35:37:
61:fa:bd:3a:53:93:98:13:34:34:a8:ee:a4:7e:8c:
66:a6:57:ff:26:f3:0f:1b:dc:13:e5:55:57:64:e8:
57:88:69:61:d8:98:ea:0d:84:f7:67:41:04:3b:ab:
c6:34:03:e0:c1:eb:88:49:4e:28:21:ad:6e:23:49:
82:55:5a:b5:62:7d:d8:eb:29:d6:b1:4a:bc:11:46:
95:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:87:55:0B:33:85:11:09:6D:81:51:CD:4B:FC:50:48:2B:F3:EE:03
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS10753.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.210.0/24
82.21.216.0/24
82.21.234.0/24
82.22.250.0/24
82.25.225.0/24
82.25.250.0/24
82.26.234.0/24
82.26.250.0/24
82.27.250.0/24
82.29.239.0/24
82.38.42.0/23
82.38.46.0/23
82.38.80.0/23
178.83.82.0/23
Signature Algorithm: sha256WithRSAEncryption
31:b9:10:fd:75:a4:ec:23:e5:ec:3b:ed:e9:64:da:ae:72:4c:
18:b4:35:d6:c1:71:7d:af:6f:86:79:f9:e5:ac:06:65:69:88:
10:49:d2:47:a3:7e:a1:31:32:3a:8c:b4:19:30:f3:7f:dc:17:
ee:5f:88:4b:58:e8:cb:b2:1f:1e:a5:90:48:d7:97:0e:97:7d:
7f:a0:29:0d:4b:fe:59:0f:2b:b3:45:7a:4e:41:8b:3e:20:45:
2c:9d:df:6c:a6:37:24:62:5f:80:52:64:68:75:f6:8a:2b:18:
47:eb:b6:af:55:3f:6a:f1:3c:ae:f7:52:a3:6c:3d:52:0c:5b:
81:5b:11:59:9f:1d:20:8a:c1:5d:09:54:8a:46:b3:7f:de:99:
39:e2:5b:c0:da:48:d5:39:3d:f9:10:63:12:7e:c7:d3:1d:d4:
5b:e3:71:6a:05:8d:de:9f:8e:66:c6:1b:d9:a7:6b:cb:fb:9c:
b6:3a:78:4b:75:d2:b9:5c:b3:c7:86:6f:b0:0e:74:47:65:a4:
b9:12:da:d8:7b:19:11:e3:d8:eb:99:a2:fe:da:ed:26:75:31:
78:fe:31:ce:d0:b8:53:b9:0f:4c:1a:22:cf:99:42:09:71:17:
fe:32:15:32:7c:05:19:38:ff:bb:00:42:a5:a7:47:fd:51:e0:
fb:60:78:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:52:55 2026 by rpki-client