Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203430.roa
File: AS203430.roa (raw, json)
Hash identifier: 9mi9V2X4gS69pxgCJW8BwQKfpvuBXlb60DUF+mztHLc=
Subject key identifier: EB:8F:8B:45:0E:AA:4B:92:D5:6D:71:0D:0F:90:DB:19:0C:C6:AC:0B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7AD1D370D03D69B2EEAEF8A8AD7F8E9832F2034C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203430.roa
Signing time: Thu 23 Apr 2026 19:32:16 +0000
ROA not before: Thu 23 Apr 2026 19:27:16 +0000
ROA not after: Thu 22 Apr 2027 19:32:16 +0000
asID: 203430
IP address blocks: 178.83.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:d1:d3:70:d0:3d:69:b2:ee:ae:f8:a8:ad:7f:8e:98:32:f2:03:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 23 19:27:16 2026 GMT
Not After : Apr 22 19:32:16 2027 GMT
Subject: CN=EB8F8B450EAA4B92D56D710D0F90DB190CC6AC0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:66:51:50:ae:12:3f:f7:66:99:aa:b5:24:e2:
83:4c:6a:f1:b9:b8:8b:8d:b1:58:1b:01:11:cb:79:
ce:a2:6b:b8:dd:1a:72:f7:32:4f:5a:47:e6:47:a3:
41:8e:9a:0d:5a:68:12:6c:4a:72:e6:ed:7a:af:9b:
30:9b:56:47:7c:12:45:ad:e1:1e:35:d5:0f:ea:dd:
9b:02:12:75:6c:77:f5:b6:33:ca:f9:03:64:c7:7a:
7c:70:87:ba:41:ff:78:98:99:88:21:49:f1:6e:c4:
c4:88:14:9c:11:03:97:bb:37:81:74:bf:e7:cf:1a:
38:32:f6:1f:a8:fa:e3:82:db:80:8f:b4:b3:4e:1a:
5f:c6:d3:3d:2e:bd:f1:26:0c:da:00:c0:06:48:18:
8e:74:ec:53:8e:bf:b4:d3:07:7e:c0:96:b8:a3:bb:
a0:c8:c9:05:cc:81:16:9e:a0:ba:56:e1:78:eb:41:
e3:16:4d:38:01:57:d3:33:bc:af:55:f4:a4:a5:2b:
c0:71:a2:3c:c2:fd:df:26:cd:dd:2d:74:e9:2f:2f:
29:45:33:5d:a0:4e:02:c0:0a:a3:85:a2:6a:48:e5:
a1:68:e1:bb:74:93:d1:a5:b2:02:93:35:80:dd:cd:
6c:ca:d4:56:ea:7d:d1:a3:87:aa:8b:c2:35:57:97:
24:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8F:8B:45:0E:AA:4B:92:D5:6D:71:0D:0F:90:DB:19:0C:C6:AC:0B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS203430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.30.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:44:17:a7:02:4a:51:03:06:18:db:92:c0:69:ee:88:c2:b1:
1f:90:61:9d:e7:87:95:37:52:4c:90:a4:58:5a:88:83:33:2f:
70:fb:8e:c5:48:2b:0d:f7:6b:4a:3d:12:6f:f5:cf:dc:1f:b0:
b3:4e:f8:5b:a6:c8:1e:fa:3e:d1:8d:f9:7b:ef:e5:87:dc:1f:
09:d1:f5:c5:d5:97:0d:36:0a:91:99:85:30:29:f8:88:14:2b:
9b:2d:52:f8:05:64:fc:4e:47:91:80:74:b9:27:70:e9:da:f1:
06:75:8d:e2:e9:50:25:81:d9:93:9d:cc:6b:bb:1e:6c:d0:eb:
55:2b:22:e3:f7:9a:f0:b7:56:d7:ef:9e:bc:b4:36:74:03:f8:
f4:cf:61:40:84:9c:ce:98:0a:85:65:53:87:d2:7c:6b:0f:af:
fa:59:c6:08:f7:5d:91:e4:85:8a:1d:0e:22:73:0a:e2:f1:39:
90:33:8f:71:de:89:a6:b6:56:44:4c:c6:b6:49:a5:58:1d:6a:
93:3c:4d:e1:00:ac:c6:a2:d6:ed:68:a2:76:92:2b:e3:f0:11:
6e:a1:c9:b0:79:58:c5:aa:29:11:f5:08:21:84:d3:4d:fe:f2:
02:62:8b:c7:2c:53:ea:78:52:be:aa:67:a7:81:4c:0a:0c:b9:
e1:ef:48:88
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUetHTcNA9abLurviorX+OmDLyA0wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MjMxOTI3MTZaFw0yNzA0MjIxOTMyMTZaMDMxMTAvBgNV
BAMTKEVCOEY4QjQ1MEVBQTRCOTJENTZENzEwRDBGOTBEQjE5MENDNkFDMEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAZlFQrhI/92aZqrUk4oNMavG5
uIuNsVgbARHLec6ia7jdGnL3Mk9aR+ZHo0GOmg1aaBJsSnLm7XqvmzCbVkd8EkWt
4R411Q/q3ZsCEnVsd/W2M8r5A2THenxwh7pB/3iYmYghSfFuxMSIFJwRA5e7N4F0
v+fPGjgy9h+o+uOC24CPtLNOGl/G0z0uvfEmDNoAwAZIGI507FOOv7TTB37Alrij
u6DIyQXMgRaeoLpW4XjrQeMWTTgBV9MzvK9V9KSlK8BxojzC/d8mzd0tdOkvLylF
M12gTgLACqOFompI5aFo4bt0k9GlsgKTNYDdzWzK1FbqfdGjh6qLwjVXlySNAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQU64+LRQ6qS5LVbXEND5DbGQzGrAswHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjAzNDMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAslMe
MA0GCSqGSIb3DQEBCwUAA4IBAQAsRBenAkpRAwYY25LAae6IwrEfkGGd54eVN1JM
kKRYWoiDMy9w+47FSCsN92tKPRJv9c/cH7CzTvhbpsge+j7Rjfl77+WH3B8J0fXF
1ZcNNgqRmYUwKfiIFCubLVL4BWT8TkeRgHS5J3Dp2vEGdY3i6VAlgdmTncxrux5s
0OtVKyLj95rwt1bX7568tDZ0A/j0z2FAhJzOmAqFZVOH0nxrD6/6WcYI912R5IWK
HQ4icwri8TmQM49x3ommtlZETMa2SaVYHWqTPE3hAKzGotbtaKJ2kivj8BFuocmw
eVjFqikR9QghhNNN/vICYovHLFPqeFK+qmengUwKDLnh70iI
-----END CERTIFICATE-----
Generated at Wed May 13 04:31:31 2026 by rpki-client