Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
File: AS203054.roa (raw, json)
Hash identifier: JNklbbqD9eZPssUoGenT+kVz0GWR8KTlnXi1UjkVOUI=
Subject key identifier: 73:DF:78:66:19:E7:DF:F8:D7:3C:BC:0D:1C:54:C9:54:C1:11:8C:67
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 51EB6FD2B8AC4F75FF8A424A356CB2E84E6B43FA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
Signing time: Thu 26 Mar 2026 09:28:01 +0000
ROA not before: Thu 26 Mar 2026 09:23:01 +0000
ROA not after: Thu 25 Mar 2027 09:28:01 +0000
asID: 203054
IP address blocks: 84.75.162.0/24 maxlen: 24
84.75.163.0/24 maxlen: 24
178.83.202.0/24 maxlen: 24
178.83.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:20:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:eb:6f:d2:b8:ac:4f:75:ff:8a:42:4a:35:6c:b2:e8:4e:6b:43:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 26 09:23:01 2026 GMT
Not After : Mar 25 09:28:01 2027 GMT
Subject: CN=73DF786619E7DFF8D73CBC0D1C54C954C1118C67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:14:e6:2e:98:60:5e:d5:0b:c3:c2:07:99:e7:
cd:6e:f9:87:13:b0:5e:9c:08:0e:c1:20:6e:96:6b:
81:26:3e:7c:47:0e:fb:ea:8e:e0:ba:cf:48:b2:81:
dd:61:a8:f2:63:f8:4f:bd:a7:4f:4e:e8:d5:83:dc:
87:63:48:00:e2:13:fb:2a:71:5b:59:45:a7:ad:d2:
44:5e:2c:2b:7c:57:67:28:2e:7c:60:22:e9:e8:98:
22:75:6c:4a:17:d4:17:f6:d6:8a:2e:69:87:8b:e0:
c7:32:5e:e3:0b:e6:2b:0f:c4:ab:7f:ef:f8:59:81:
71:65:bb:ef:e4:33:3f:4f:95:51:f3:64:99:e9:56:
1c:69:ee:03:bd:3d:26:10:78:2c:ac:9b:42:15:f9:
83:46:6c:2a:d0:6e:4e:65:3f:e1:64:25:5a:10:bf:
44:f2:67:38:14:26:34:1c:be:12:70:cd:6c:49:92:
23:31:75:6f:20:aa:8a:ce:11:aa:2a:a2:15:aa:96:
61:43:ce:0c:13:23:2e:e7:73:9b:18:fe:f5:fb:d1:
06:bf:87:d1:57:bb:9a:e6:da:05:a9:47:d9:fb:05:
7c:0f:ea:2c:13:c3:75:2f:8c:3a:76:8e:b7:20:e8:
1d:1a:ea:c4:03:44:2b:90:25:52:14:c8:d3:dc:72:
d2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DF:78:66:19:E7:DF:F8:D7:3C:BC:0D:1C:54:C9:54:C1:11:8C:67
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203054.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.75.162.0/23
178.83.202.0/24
178.83.214.0/24
Signature Algorithm: sha256WithRSAEncryption
67:07:20:3f:6e:af:75:be:0c:10:06:68:a2:46:0e:5c:6f:ec:
b5:a7:e8:dd:e8:15:3d:d8:1a:26:22:1d:07:e8:82:e8:65:4d:
3d:97:47:85:84:2b:df:06:bf:ae:7e:da:21:e7:b7:2b:fa:a5:
93:df:f8:fd:2d:34:ae:b7:32:54:5a:9c:ef:ad:be:4a:8b:81:
37:e8:95:56:1a:85:42:38:36:53:64:57:33:83:a6:87:78:62:
b8:bb:0c:a5:c9:fc:6d:a6:06:b6:be:89:51:0e:9d:e8:e6:5f:
cf:09:12:59:0d:c5:09:ab:b7:bd:1c:74:c7:d7:86:16:16:ab:
0f:ad:cc:29:85:de:a4:cc:eb:92:6f:75:f3:06:c9:c5:61:e4:
15:09:7e:a7:7f:07:21:42:0b:f6:fe:14:7d:74:33:1a:10:84:
c3:3c:22:c2:8c:76:f1:55:38:1c:30:7d:de:89:e3:e2:22:ec:
22:f6:bf:93:00:fd:0d:cf:40:bb:4d:e9:16:29:71:d8:3b:5e:
fd:9a:0a:34:73:9b:1e:7d:e6:5b:c1:ce:e4:bd:58:90:61:43:
ba:2e:2f:58:d1:66:c7:fe:cf:73:99:a6:4d:46:3e:ad:9a:79:
f2:35:56:aa:4e:b2:31:e4:62:5f:c5:e1:81:f1:9e:a5:57:57:
f1:11:75:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:06:34 2026 by rpki-client