Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210277.roa
File: AS210277.roa (raw, json)
Hash identifier: owuLpERgpo6YMo6ApJh1miZl8HZvlpCj1/sID25LqVs=
Subject key identifier: 14:51:4F:EA:D8:86:C3:6C:76:07:62:DF:8F:70:3A:9B:72:7E:9E:7B
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1E6173BCB7AE6B20069E4FC7440DD98CF9B377FA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210277.roa
Signing time: Sat 02 May 2026 10:50:27 +0000
ROA not before: Sat 02 May 2026 10:45:27 +0000
ROA not after: Sat 01 May 2027 10:50:27 +0000
asID: 210277
IP address blocks: 2a13:9500:16d::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:61:73:bc:b7:ae:6b:20:06:9e:4f:c7:44:0d:d9:8c:f9:b3:77:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 2 10:45:27 2026 GMT
Not After : May 1 10:50:27 2027 GMT
Subject: CN=14514FEAD886C36C760762DF8F703A9B727E9E7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0e:fe:f5:5a:60:65:0f:10:f2:fe:b0:3f:e4:
dc:5b:42:e2:5a:07:2e:40:4d:73:f4:c0:3a:9a:98:
cf:0f:37:ce:32:41:3f:8e:15:f5:0d:9a:57:3e:9f:
3e:a0:06:24:47:a2:bf:cb:b9:c0:6d:53:0d:11:ac:
d4:0e:6a:74:31:7b:4a:0d:7e:9f:1d:33:da:9b:2a:
8e:b8:1e:ab:eb:17:c1:16:44:16:c9:2d:01:f4:a9:
51:d6:6f:c1:f4:43:89:d1:c8:1f:f2:4a:5d:7e:3a:
27:01:2c:b5:54:0d:33:d5:97:bb:66:d0:79:30:76:
06:57:12:45:c3:01:97:06:22:71:e9:4f:7e:9b:2d:
83:d0:27:e4:27:88:d1:f8:89:24:29:51:ed:40:1a:
d2:46:e3:52:72:72:66:27:26:59:8c:8f:34:4a:f3:
ed:6c:44:19:b5:7c:34:09:d6:20:d9:18:cf:aa:61:
79:16:52:52:aa:03:32:b8:76:d2:e0:3c:bb:6b:b1:
ff:5f:19:84:8e:16:36:fa:89:02:b3:de:99:a7:24:
f6:df:b4:e1:0b:ab:8e:e5:14:5c:39:78:8b:ef:93:
53:38:72:5f:41:39:54:fb:03:08:f4:be:05:e8:bf:
0a:74:a6:bb:6a:fb:96:1b:d0:27:01:ab:12:2a:3c:
6e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:51:4F:EA:D8:86:C3:6C:76:07:62:DF:8F:70:3A:9B:72:7E:9E:7B
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS210277.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9500:16d::/48
Signature Algorithm: sha256WithRSAEncryption
20:d7:a7:dc:d6:35:45:fe:74:80:0e:d8:b1:1a:17:a4:d5:da:
c6:69:61:51:f6:23:84:d5:15:c3:0c:a6:7d:a9:c1:fe:6c:52:
44:84:62:68:4e:09:d5:e6:11:94:d2:9e:a6:72:09:ff:65:cc:
47:cf:9b:03:f1:f8:20:8f:50:ce:86:ae:c5:12:37:11:83:d3:
d0:bf:d3:75:87:b0:9b:c3:fa:8a:4a:df:cc:13:1e:07:26:db:
77:49:99:dd:d6:6d:da:8e:73:3c:83:e7:c7:bb:d1:e5:e9:04:
1e:fb:77:dd:5f:5d:1e:f5:b7:29:42:b6:aa:0d:fc:14:09:3d:
5f:6d:10:14:f0:96:3e:8d:0d:10:ee:48:1e:2f:15:96:75:e4:
bd:b9:a2:32:27:3d:94:e3:b4:0a:04:34:55:36:1b:88:d0:6f:
3a:55:b8:18:53:9a:2c:13:a4:00:11:5e:8e:d9:a3:cc:34:b2:
53:7e:80:c0:9e:09:35:15:87:cb:e3:c5:bd:43:f9:65:a1:3c:
31:fe:80:13:66:c1:31:46:51:8d:a5:a1:9e:b5:17:a6:5d:69:
f6:20:d9:66:a3:ea:97:6e:08:13:c9:8c:52:55:24:a5:7a:d4:
26:72:47:82:05:3f:9f:19:f8:bd:15:59:bd:92:d1:fa:5f:f5:
45:a8:bb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:58:52 2026 by rpki-client