Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213734.roa
File: AS213734.roa (raw, json)
Hash identifier: JOJ2U95EG4vJMzi2cDDwPqk6Qm8F248xbEJDsXfPAHo=
Subject key identifier: 31:6D:32:09:6F:43:06:E0:07:87:06:69:2C:42:8D:98:B9:4D:7B:E5
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 566BBC7A23B941D68F06DA0A0B56D020E340F8A2
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213734.roa
Signing time: Tue 24 Mar 2026 06:14:50 +0000
ROA not before: Tue 24 Mar 2026 06:09:50 +0000
ROA not after: Tue 23 Mar 2027 06:14:50 +0000
asID: 213734
IP address blocks: 82.22.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:43:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:6b:bc:7a:23:b9:41:d6:8f:06:da:0a:0b:56:d0:20:e3:40:f8:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 24 06:09:50 2026 GMT
Not After : Mar 23 06:14:50 2027 GMT
Subject: CN=316D32096F4306E0078706692C428D98B94D7BE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:42:39:58:7c:3c:54:52:c8:57:32:89:cd:04:
02:50:94:e8:2f:af:59:ef:77:17:45:29:0f:ca:d4:
3c:91:ee:38:79:1e:ce:39:87:0f:bf:f7:23:d1:4a:
93:03:06:06:6c:63:df:47:0e:a3:2c:eb:76:86:79:
5f:8d:01:3b:f0:96:8a:d8:41:7c:6f:f1:50:b9:16:
15:38:e3:e4:27:fb:20:54:1c:00:6f:2d:8c:b5:7e:
8d:e9:97:09:e0:2f:2d:72:86:8d:2a:f7:85:79:1b:
a4:ad:74:30:68:72:cf:86:48:1e:4c:aa:d5:cb:fc:
8a:0b:ce:5a:46:0a:fc:5c:72:de:05:ec:02:66:98:
99:f6:28:6d:f6:f1:e3:4a:b4:ae:a5:90:ca:67:b0:
5d:83:73:b8:e4:1d:2d:4e:9e:a7:15:19:19:ae:00:
20:ce:4e:ed:bf:56:2d:39:e7:7b:66:0a:e5:b8:fb:
f8:bf:a8:0c:86:31:08:ba:1a:46:3a:f8:a3:50:13:
91:4a:77:4e:ae:5e:d2:41:79:20:e3:91:c8:7f:a0:
60:16:7d:4a:13:26:54:0b:a8:c5:9b:36:75:3a:15:
44:d6:ae:98:1b:5b:db:75:77:07:ae:b7:4d:17:54:
24:57:19:0e:8a:1b:48:c9:14:fa:15:bf:55:33:b2:
23:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:6D:32:09:6F:43:06:E0:07:87:06:69:2C:42:8D:98:B9:4D:7B:E5
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.54.0/24
Signature Algorithm: sha256WithRSAEncryption
22:4d:6d:26:5b:23:1e:43:c2:b6:d9:aa:6a:bc:47:e9:7a:fe:
04:d2:3b:ee:a7:58:89:08:eb:c0:e3:11:a3:dd:fa:10:2d:c3:
59:82:9f:2d:95:c0:10:97:d4:0e:6c:33:dd:78:03:22:0f:a6:
f3:72:35:73:9c:39:31:f1:1c:17:10:5a:ce:09:09:88:5c:7a:
3b:e7:40:a3:99:20:c9:5e:f1:69:47:1f:b9:d1:6b:3a:c4:4c:
aa:b4:cb:f0:14:9e:bd:3a:2c:30:0d:7f:3c:d7:05:63:25:e7:
d6:92:41:4f:d8:0f:c6:5a:f4:fe:8f:d6:14:a2:f5:74:7b:a7:
8e:d2:9c:b2:3e:63:7a:18:96:df:0e:b0:6b:bb:77:97:9e:c9:
82:02:5c:c4:f0:15:e6:fe:9c:54:2e:cd:92:2a:2f:f2:45:94:
ac:18:cd:76:5d:54:97:87:f2:0b:26:78:bf:35:ce:c0:bf:f6:
c5:2f:9a:ae:ff:33:58:bc:29:74:aa:c0:21:9f:76:4f:d9:c0:
cd:25:59:da:6c:08:7d:05:32:06:01:6e:b3:87:b9:f8:56:69:
25:87:96:21:89:55:d8:83:a5:b5:01:05:24:1b:77:8c:b6:17:
f9:74:cb:25:ed:e7:37:fc:7b:6c:f1:a7:6b:b2:8c:02:7d:03:
e0:e4:04:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:09:45 2026 by rpki-client