Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: 3gtrBxIDPvS0S0Cgn5Q4GAGt/l3O6Tjyg6bDnzvk0XI=
Subject key identifier: B2:07:18:A3:E4:69:5A:EB:C1:9B:E0:17:C8:56:CD:71:94:DD:75:90
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 40442A19F6748253AB66D8A59D36FEBBFBFBA0DD
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Wed 06 May 2026 12:43:22 +0000
ROA not before: Wed 06 May 2026 12:38:22 +0000
ROA not after: Wed 05 May 2027 12:43:22 +0000
asID: 203054
IP address blocks: 82.22.29.0/24 maxlen: 24
82.22.161.0/24 maxlen: 24
82.25.5.0/24 maxlen: 24
82.47.22.0/24 maxlen: 24
82.47.52.0/24 maxlen: 24
82.47.54.0/24 maxlen: 24
82.47.63.0/24 maxlen: 24
82.47.103.0/24 maxlen: 24
82.47.105.0/24 maxlen: 24
82.47.111.0/24 maxlen: 24
82.47.113.0/24 maxlen: 24
82.47.114.0/24 maxlen: 24
82.47.122.0/24 maxlen: 24
82.47.131.0/24 maxlen: 24
82.47.144.0/24 maxlen: 24
82.47.159.0/24 maxlen: 24
82.47.160.0/24 maxlen: 24
82.47.163.0/24 maxlen: 24
82.47.223.0/24 maxlen: 24
178.83.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:44:2a:19:f6:74:82:53:ab:66:d8:a5:9d:36:fe:bb:fb:fb:a0:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 6 12:38:22 2026 GMT
Not After : May 5 12:43:22 2027 GMT
Subject: CN=B20718A3E4695AEBC19BE017C856CD7194DD7590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9f:2c:56:d9:60:4e:a2:e6:d8:e3:f8:ee:3d:
59:93:db:c9:81:b2:a3:1f:55:55:0a:a9:26:79:d7:
71:04:1f:ce:2d:52:ca:9d:6e:b1:ea:ed:07:f1:a8:
cc:8e:36:6e:f9:90:bc:bf:15:c9:8a:d5:fd:bb:bc:
60:67:d0:e1:e5:fe:87:34:79:cd:f5:9f:bc:fc:f4:
c8:30:dc:0c:c7:7f:39:47:f6:93:c8:43:cd:74:21:
d8:97:00:75:70:f2:1d:d7:ff:f3:4a:a7:2a:b5:ab:
5b:0e:91:9f:32:a5:00:fc:c3:eb:32:62:60:5d:3e:
68:30:4f:c5:d9:79:f0:cf:fa:ca:9d:6e:ae:9b:e1:
0d:56:04:dd:d9:58:b0:2b:1f:af:61:80:b4:75:66:
c3:a0:3a:4f:68:24:4a:04:f3:d8:88:5e:cb:80:47:
6d:ea:26:04:7d:db:b9:38:64:79:3f:74:50:27:7e:
ef:95:92:90:18:44:11:a6:09:d3:fc:af:80:dc:e4:
96:7d:d4:a4:f5:d8:2b:13:4a:84:66:65:8e:a3:9f:
66:43:b1:9b:c6:97:da:8c:3f:58:9d:74:87:0c:76:
f2:d9:ef:d9:fa:9a:29:db:eb:10:ff:2f:40:76:33:
fa:ed:ca:0a:72:3d:b5:9d:7e:df:99:2a:63:44:47:
ea:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:07:18:A3:E4:69:5A:EB:C1:9B:E0:17:C8:56:CD:71:94:DD:75:90
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.29.0/24
82.22.161.0/24
82.25.5.0/24
82.47.22.0/24
82.47.52.0/24
82.47.54.0/24
82.47.63.0/24
82.47.103.0/24
82.47.105.0/24
82.47.111.0/24
82.47.113.0-82.47.114.255
82.47.122.0/24
82.47.131.0/24
82.47.144.0/24
82.47.159.0-82.47.160.255
82.47.163.0/24
82.47.223.0/24
178.83.226.0/24
Signature Algorithm: sha256WithRSAEncryption
63:bb:ba:15:44:07:f9:e1:2b:34:bd:6b:6e:86:68:49:20:b7:
40:c9:57:e5:5f:15:67:76:6a:09:9f:d3:bc:35:1b:ba:49:66:
59:25:82:0f:ee:5c:30:ac:47:73:22:07:1d:11:7a:c1:6a:c5:
a6:72:e8:24:47:f2:44:9a:3a:dc:8d:7b:6a:33:13:c6:92:6f:
82:7b:b8:da:af:c3:8a:77:e7:92:7a:1f:39:fe:c8:b0:bd:92:
4c:df:04:ba:57:e2:2c:e2:95:8d:90:9f:b1:e2:05:f1:c9:7f:
70:bc:1d:d3:3b:48:43:6a:1e:d8:fa:43:74:89:a7:1e:04:0e:
8a:95:8c:a3:17:2b:3b:e1:b1:f7:cd:fb:62:75:98:d7:6d:3c:
e0:af:a0:28:51:25:3b:ca:7a:95:23:36:fd:2b:d2:6d:52:15:
5c:bd:dc:32:72:d8:44:32:cf:47:cf:d1:9f:ed:96:14:5a:08:
eb:7c:af:14:d1:e9:ad:9e:21:f8:73:66:8f:81:13:0e:43:f1:
d7:8c:71:ec:cc:4d:a4:9a:24:d8:59:b8:77:84:7f:37:ae:08:
bf:52:64:62:95:ee:15:cf:ea:72:bb:3f:ee:45:c7:44:71:e1:
00:db:7a:c7:3c:58:f9:cc:75:4c:eb:ad:ec:05:7a:fe:c6:78:
4e:16:5f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:18:08 2026 by rpki-client