Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa
File: AS13335.roa (raw, json)
Hash identifier: L2KT5GfJtnNZmnGyScwgXPuc1AMjD2gSONfOTYh7OAY=
Subject key identifier: 6C:61:30:A6:BE:DB:48:12:66:67:C8:7F:F6:1A:0E:8D:BE:D3:3E:28
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 30B9DEE68B5988293CE27B5D870465953A127503
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa
Signing time: Sat 02 May 2026 07:26:52 +0000
ROA not before: Sat 02 May 2026 07:21:52 +0000
ROA not after: Sat 01 May 2027 07:26:52 +0000
asID: 13335
IP address blocks: 82.21.82.0/24 maxlen: 24
82.22.16.0/24 maxlen: 24
82.24.40.0/24 maxlen: 24
82.26.156.0/24 maxlen: 24
82.39.142.0/24 maxlen: 24
82.40.22.0/24 maxlen: 24
82.47.179.0/24 maxlen: 24
84.75.180.0/23 maxlen: 24
2a13:9500:3e::/48 maxlen: 48
2a13:9500:b7::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:b9:de:e6:8b:59:88:29:3c:e2:7b:5d:87:04:65:95:3a:12:75:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 2 07:21:52 2026 GMT
Not After : May 1 07:26:52 2027 GMT
Subject: CN=6C6130A6BEDB48126667C87FF61A0E8DBED33E28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:71:69:2c:f6:e8:55:2e:b1:19:c4:00:1a:3f:
77:d2:1a:e1:4e:85:d3:24:14:31:f3:e3:29:32:c9:
d1:57:1e:f7:e1:c6:8d:06:d3:dd:ad:2f:dc:8a:c5:
5a:b6:a6:42:18:ee:91:64:3a:ba:b0:ff:42:51:4c:
d3:de:c8:ae:d7:6a:3d:19:ec:7b:58:29:e4:14:a5:
fc:25:b0:c5:be:ab:d7:5c:be:a3:61:7c:47:f6:2e:
89:05:93:3b:0e:e7:26:16:af:3f:0a:56:61:05:5a:
21:5a:43:69:4f:48:cd:f3:33:48:74:6a:c6:f7:db:
de:89:c1:17:4b:cc:c9:b3:07:4a:ca:1b:bc:4a:da:
e1:79:a5:82:d6:e2:12:5c:59:dc:3f:2b:8b:aa:c6:
23:52:60:26:4f:d4:df:1f:85:4d:ec:17:3d:35:2a:
82:e1:15:5e:9a:4e:e2:cd:f6:a6:26:2a:17:38:88:
3d:74:00:59:3e:1d:b3:d7:b9:d1:d4:db:c4:21:00:
2f:51:e4:b6:ab:3f:52:a7:c8:46:a7:3a:e4:db:0c:
7a:90:84:ad:15:7c:e2:5c:6c:99:97:5d:5b:5b:85:
f3:5f:67:bc:58:3f:eb:52:6b:10:7e:8d:1a:d4:cf:
c8:fc:03:86:c5:6c:92:9d:55:ed:1e:bb:fe:05:7b:
38:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:61:30:A6:BE:DB:48:12:66:67:C8:7F:F6:1A:0E:8D:BE:D3:3E:28
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS13335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.82.0/24
82.22.16.0/24
82.24.40.0/24
82.26.156.0/24
82.39.142.0/24
82.40.22.0/24
82.47.179.0/24
84.75.180.0/23
IPv6:
2a13:9500:3e::/48
2a13:9500:b7::/48
Signature Algorithm: sha256WithRSAEncryption
56:48:ca:d2:40:4f:11:c5:75:62:b9:71:b3:59:2c:c6:19:90:
6b:33:8f:4b:85:14:e8:99:86:67:fb:7c:c9:13:9e:e8:07:66:
98:ae:5e:2c:b4:ac:1b:09:40:d1:08:1c:e5:1b:62:4a:8f:7e:
20:d6:da:7c:5f:1b:e9:04:03:f4:44:34:24:b2:0e:9d:c9:6b:
79:2d:b0:7c:e6:da:8d:06:7e:7b:b5:e1:85:07:dd:6e:fa:99:
aa:31:d7:6d:09:f0:b8:19:e1:b6:72:35:a5:63:63:b7:cd:7c:
c5:bd:3c:3a:2a:d8:83:12:2b:66:7c:11:d7:f8:6f:3b:1d:f1:
cd:14:fa:a1:cb:ee:2e:28:d1:e7:5d:db:64:12:23:8b:18:1e:
9a:f4:24:9f:47:81:b9:af:68:96:07:cd:b9:34:52:a0:0f:23:
46:c4:88:85:6f:28:46:be:14:72:a9:3f:15:c8:ca:af:f5:17:
4b:2c:7a:4e:b2:10:39:38:98:b1:f1:08:ae:96:ab:47:9b:93:
65:65:4d:2d:e2:9f:85:c2:06:97:2e:d7:6d:76:c2:c8:45:f5:
1a:1b:4f:31:5a:5f:57:1f:84:e1:99:29:ab:fc:fd:58:54:09:
a5:69:af:4b:14:5d:92:f4:da:c7:d7:d3:5f:65:d6:7c:d5:38:
7a:8a:41:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:08:32 2026 by rpki-client