Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS11059.roa
File: AS11059.roa (raw, json)
Hash identifier: MjUiHBGBP1MCoalM1q4E2+jiqom7V6u9DwuWVhJxwKo=
Subject key identifier: FB:71:41:F5:14:25:2D:81:30:31:D8:A8:02:CC:8A:CF:2A:85:B7:BD
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 4DD97097B92BF30B496C39C3E872DF0D6C0F3743
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS11059.roa
Signing time: Tue 17 Mar 2026 13:11:54 +0000
ROA not before: Tue 17 Mar 2026 13:06:54 +0000
ROA not after: Tue 16 Mar 2027 13:11:54 +0000
asID: 11059
IP address blocks: 84.75.240.0/21 maxlen: 24
178.83.124.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:43:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:d9:70:97:b9:2b:f3:0b:49:6c:39:c3:e8:72:df:0d:6c:0f:37:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 17 13:06:54 2026 GMT
Not After : Mar 16 13:11:54 2027 GMT
Subject: CN=FB7141F514252D813031D8A802CC8ACF2A85B7BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6a:d4:5e:08:d4:68:0e:f3:34:1d:59:68:52:
fe:d4:f6:da:35:75:8c:94:da:b6:2e:98:db:d0:84:
f7:ad:ef:c9:ef:4a:8d:51:e4:a8:61:c9:53:a7:b6:
2e:a9:bb:a1:87:ab:3b:07:29:7f:ad:7e:69:94:42:
4c:aa:9e:f4:59:cd:5e:24:4d:29:15:02:82:e2:53:
08:43:de:5e:90:4e:f2:2e:ea:d9:5e:2b:db:36:b4:
4d:cf:91:3d:80:27:b0:cb:bf:6f:9d:54:55:7d:2e:
03:10:8d:d3:0b:da:b7:ea:76:06:fe:b1:50:83:a6:
7a:16:ec:96:16:ae:40:48:c1:88:d1:6b:5b:5e:78:
1f:56:2e:98:35:0e:fd:58:31:b3:25:98:e4:bb:a0:
61:06:ea:42:7c:11:4e:1d:f6:42:23:d5:95:26:73:
c1:4a:21:ee:09:25:ef:1e:72:d5:1b:3d:3d:52:87:
6b:9f:51:af:78:98:a5:9d:21:45:bb:e1:86:f7:a5:
ca:f0:ef:7c:e8:27:bf:f3:b3:ba:49:61:51:e3:07:
73:71:62:2d:12:c2:fd:63:eb:9e:c2:49:b8:c5:70:
97:e1:f2:04:70:62:a9:4a:ad:ec:0d:4f:98:f6:af:
c5:ed:dd:49:fe:49:df:de:c4:63:7a:df:f3:08:4f:
3d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:71:41:F5:14:25:2D:81:30:31:D8:A8:02:CC:8A:CF:2A:85:B7:BD
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS11059.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.240.0/21
178.83.124.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:b9:c8:93:66:a3:48:87:c1:f7:a2:3d:39:cc:ca:0c:0e:88:
e3:e0:d2:e1:89:46:94:11:e4:89:4e:a2:14:0e:23:ce:2c:01:
4b:cb:d1:58:3f:c5:2e:aa:bb:e3:58:b4:10:19:32:0a:89:5f:
55:f8:97:eb:1b:b7:8e:e0:c1:67:fa:cb:c2:0a:5d:96:1e:6b:
6a:07:58:5e:9c:94:f1:fc:6a:32:71:bf:69:28:f2:a4:9c:8e:
21:16:31:1e:f0:89:8f:67:6a:42:90:7e:a8:a1:b3:c2:81:33:
02:8d:72:18:ef:da:42:94:aa:59:e7:14:b5:99:88:49:55:00:
52:cf:db:b7:aa:d2:20:39:f7:31:0b:92:23:17:a0:a3:30:cc:
db:04:8c:35:b8:f4:13:0c:cd:00:9b:bc:a5:91:44:1a:f0:13:
35:a2:40:31:31:7d:c9:be:fe:61:80:b2:93:16:87:0a:fd:1a:
4e:cd:f5:e3:97:8a:11:1b:85:1e:da:ce:9e:89:d8:b2:ad:c6:
89:c0:63:d4:e4:d4:22:42:97:9b:b9:77:41:15:91:c7:b8:a8:
ee:a5:46:fa:c2:d0:30:56:3c:22:47:86:65:5a:9c:ff:b0:5f:
a8:d7:52:85:a2:d9:f5:99:af:dc:b2:bc:6d:38:f6:3d:34:bb:
de:03:25:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:33:45 2026 by rpki-client