Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS208504.roa
File: AS208504.roa (raw, json)
Hash identifier: L6PchFEdZSv5TiEc6K0sR93ympbIzuL0WhcooIlENpY=
Subject key identifier: A6:39:68:5B:C9:E3:A3:60:7F:9B:FD:7F:99:DD:9B:20:B2:12:E5:72
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1D2672F99E6776EF731D075804E12DDCAE2FC48C
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS208504.roa
Signing time: Thu 07 May 2026 11:05:05 +0000
ROA not before: Thu 07 May 2026 11:00:05 +0000
ROA not after: Thu 06 May 2027 11:05:05 +0000
asID: 208504
IP address blocks: 178.83.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:26:72:f9:9e:67:76:ef:73:1d:07:58:04:e1:2d:dc:ae:2f:c4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 7 11:00:05 2026 GMT
Not After : May 6 11:05:05 2027 GMT
Subject: CN=A639685BC9E3A3607F9BFD7F99DD9B20B212E572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d4:75:c4:42:56:ae:07:bc:b4:97:89:81:89:
6f:1a:72:e7:44:18:3c:e9:64:e8:c9:8c:12:41:4f:
aa:cc:f1:23:39:29:66:37:82:ee:c4:32:9b:5a:06:
44:2b:a3:0e:4b:90:1e:e9:c4:41:af:0f:d7:b7:6e:
f2:a2:00:79:95:58:e4:bb:41:35:5c:00:fc:a4:73:
21:61:52:0b:56:13:7d:19:9f:d7:b0:cd:6f:eb:e3:
c0:12:53:d0:2b:57:af:6f:26:d1:96:8a:0f:a7:17:
61:00:2c:f5:ed:15:1b:82:59:f1:99:78:ce:9b:94:
2a:ed:d7:9d:ae:d3:9b:7d:12:69:58:80:02:b5:78:
fd:4e:42:82:e8:af:cd:2d:da:37:f4:70:1d:8f:29:
e0:e2:16:6b:59:82:f8:44:62:90:89:d7:aa:45:50:
43:65:b6:2f:28:41:4a:f1:1e:e4:7a:88:f5:77:91:
2f:d5:95:82:bf:50:4e:ce:a5:26:de:e7:d5:6b:c7:
93:77:91:eb:ab:56:d7:dc:aa:a8:9f:4b:32:89:08:
31:33:43:2f:38:67:50:34:4c:50:4d:3d:11:3f:e6:
6b:52:da:01:d1:5e:f6:16:2c:34:f7:a4:40:a3:27:
89:39:ea:f4:43:48:84:a3:9f:3e:37:35:10:e6:71:
d4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:39:68:5B:C9:E3:A3:60:7F:9B:FD:7F:99:DD:9B:20:B2:12:E5:72
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS208504.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.177.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d3:2a:c9:33:36:d2:e6:8d:81:b8:14:e5:ac:1b:9d:39:62:
16:b3:e6:39:df:ad:5d:b6:7f:ae:0a:cf:39:75:91:1c:cd:78:
c2:6f:e7:b8:24:f5:12:8d:99:d4:c6:18:fe:64:90:52:24:ed:
e2:28:3b:d3:d2:06:97:ea:3e:28:c8:68:19:9b:66:08:d8:33:
c2:7e:0c:97:8d:e6:31:aa:77:18:d3:12:db:e0:24:5b:76:75:
af:05:b8:96:af:f9:d3:d8:cc:d8:4b:ea:ed:3e:3d:3c:e3:3b:
fa:3d:bf:d0:09:ae:de:42:4e:f1:0a:c9:6e:07:c4:44:14:a4:
73:0c:c0:ce:80:a0:78:2c:0e:9d:76:d6:30:5d:46:43:fe:99:
8c:da:9f:d0:08:1d:95:c5:b6:ca:a6:cc:b2:c9:31:62:19:bd:
78:d4:39:55:50:af:d9:be:63:f8:1d:14:1c:e4:43:46:38:a7:
3b:bf:33:23:52:2e:e8:ed:7d:6c:c2:39:ff:6e:a0:a8:7d:9b:
d1:87:01:87:d1:47:c8:97:6b:f5:b0:0a:10:89:ca:7f:16:83:
49:7d:0c:54:0e:66:3b:e5:8a:73:05:37:90:4a:c1:ed:06:8a:
71:63:18:41:58:ad:d5:8f:6a:0a:50:bf:6b:95:e1:2a:b9:e0:
30:14:80:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:16 2026 by rpki-client