Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198053.roa
File: AS198053.roa (raw, json)
Hash identifier: flyALWgvOZtoo3wFmEg8PElyhfIdxWB3K5ratZmDM2w=
Subject key identifier: 7F:BF:4D:9C:E5:6E:15:44:51:14:51:55:8A:F9:76:70:21:A5:D3:11
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 60E3A7C2E71BDD95906F90B79211887F323F9C5E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198053.roa
Signing time: Wed 06 May 2026 11:55:42 +0000
ROA not before: Wed 06 May 2026 11:50:42 +0000
ROA not after: Wed 05 May 2027 11:55:42 +0000
asID: 198053
IP address blocks: 178.83.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e3:a7:c2:e7:1b:dd:95:90:6f:90:b7:92:11:88:7f:32:3f:9c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 6 11:50:42 2026 GMT
Not After : May 5 11:55:42 2027 GMT
Subject: CN=7FBF4D9CE56E1544511451558AF9767021A5D311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:11:77:8c:af:01:f6:b0:f6:85:32:2a:72:7b:
bd:d1:e3:34:94:2d:a5:20:0a:f1:32:cd:9d:18:1e:
cf:f3:c2:03:02:f4:13:a3:26:69:26:f8:82:81:9a:
d3:75:0b:e0:4b:69:4b:62:48:11:42:fc:6c:80:9d:
8d:fc:de:f6:f1:ec:5c:9c:c3:fa:40:fa:e9:b2:4c:
27:d4:90:29:13:16:c0:ee:86:09:71:f8:49:8c:04:
88:74:b6:b9:55:37:90:fa:b3:ae:b2:bd:31:5b:ea:
66:13:b4:a7:60:ca:45:85:18:eb:c6:65:50:ed:cb:
19:a1:a0:ac:20:7f:57:f9:f5:33:84:62:89:39:9b:
55:cd:80:bd:ef:c8:e8:7e:f1:34:98:35:43:98:07:
b6:ab:a2:8e:ff:15:ac:4e:be:04:97:42:08:4c:d3:
2f:a5:e6:69:93:df:6e:e3:15:06:db:33:bf:bf:90:
a0:da:04:5b:0f:c2:53:22:bc:f1:c5:7a:d8:27:13:
0f:9b:83:89:66:f3:bf:75:8a:71:85:54:e1:c1:0d:
e8:40:60:24:f0:ff:fe:d6:8a:65:d7:b1:a0:e0:2d:
54:95:28:c0:49:0c:d9:e7:c3:c0:52:9a:6c:f4:d4:
2b:fc:fd:86:07:11:24:26:8b:27:2a:86:41:af:b4:
04:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BF:4D:9C:E5:6E:15:44:51:14:51:55:8A:F9:76:70:21:A5:D3:11
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS198053.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.12.0/23
Signature Algorithm: sha256WithRSAEncryption
34:6c:d7:e8:a8:b1:41:5a:9d:14:d6:e4:9b:38:71:1e:c9:bd:
f7:97:48:e9:47:24:46:3f:fc:2a:39:74:4c:cb:2b:03:68:2e:
de:f0:63:ee:21:b4:0a:ca:b7:c5:5f:6f:ad:1c:ab:e0:ba:f5:
5e:bc:6a:2e:33:b5:fe:f5:7f:0c:43:80:fd:ec:9f:3b:43:04:
50:d0:3b:fc:bf:61:ff:82:d8:9d:23:c3:36:51:2a:a2:e7:71:
b3:57:93:24:ad:63:53:c7:02:64:2d:f7:9c:9d:cb:9a:d9:3e:
66:2c:01:e8:2d:cd:5b:3a:c9:40:e9:79:53:f7:2e:6f:bf:0c:
91:97:c3:d9:db:c3:1d:5d:0e:1a:1f:66:79:ba:62:8e:07:8e:
d7:d8:af:87:e2:73:d5:97:12:c8:63:ca:70:72:3f:1e:51:62:
70:48:3e:b1:11:34:cf:0d:b4:6c:a3:d7:0a:20:fc:e3:ec:50:
dd:6a:e1:d1:f2:19:7f:aa:9d:2f:77:73:37:d2:05:59:a8:1e:
fa:67:05:5e:a7:2d:1c:d7:4e:41:0c:0e:84:fd:3d:64:08:cc:
53:dd:f3:1e:3b:05:41:56:d1:f1:af:f3:a8:92:0c:84:97:8a:
df:3b:15:4a:e3:1f:52:8d:04:cc:e4:f5:73:e4:78:82:4e:0a:
74:3a:7f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:53:50 2026 by rpki-client