Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213784.roa
File: AS213784.roa (raw, json)
Hash identifier: e1XmObbPOQ2Zn7W+8VlgEJ3N3s19UncLNzYYhM6UbkM=
Subject key identifier: C3:72:D0:03:AD:41:AE:F9:93:D5:DA:07:7F:2B:91:79:0D:3C:2D:71
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 73BA3800127DB6F167DE67008294614F4433BDC3
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213784.roa
Signing time: Tue 28 Apr 2026 14:42:40 +0000
ROA not before: Tue 28 Apr 2026 14:37:40 +0000
ROA not after: Tue 27 Apr 2027 14:42:40 +0000
asID: 213784
IP address blocks: 82.24.21.0/24 maxlen: 24
82.24.41.0/24 maxlen: 24
82.26.175.0/24 maxlen: 24
82.41.235.0/24 maxlen: 24
82.41.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:ba:38:00:12:7d:b6:f1:67:de:67:00:82:94:61:4f:44:33:bd:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 28 14:37:40 2026 GMT
Not After : Apr 27 14:42:40 2027 GMT
Subject: CN=C372D003AD41AEF993D5DA077F2B91790D3C2D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8b:98:7b:b5:3f:9d:76:d9:89:ef:6c:c0:f8:
8c:28:3e:3b:39:f0:59:67:71:91:0a:2f:73:81:9b:
b1:56:cf:e3:31:2c:cd:14:92:45:8a:fc:db:a5:15:
e4:01:0d:ad:2d:8e:ce:fe:84:f3:e7:1c:27:40:ac:
ff:e7:36:09:15:62:f2:13:c6:e6:7d:28:cd:4e:86:
ba:9f:a9:ac:94:49:ff:48:a0:11:22:fc:cf:7e:5c:
90:62:dd:c2:9a:ab:0e:eb:37:1b:d8:e1:e1:df:b4:
2e:27:7d:4b:36:72:e8:c4:a2:8e:da:d6:18:24:23:
b4:02:99:0f:e6:ba:b0:bd:c2:c0:3b:2c:8f:5b:76:
0e:5f:9c:e6:62:8c:69:39:be:68:f2:33:6b:ef:e5:
e4:7d:ab:4a:32:50:a3:18:44:22:7e:6c:63:b8:2b:
07:32:8a:c2:0b:5d:a5:fe:28:c8:d5:eb:9d:88:2a:
b1:66:96:e1:71:1a:52:d1:25:13:82:3a:7a:65:63:
43:c8:fe:c1:f3:be:61:7a:51:29:28:4b:34:64:e5:
00:6e:b3:84:bd:ad:2e:6e:8e:ab:2b:58:bf:fd:b2:
87:de:3a:c9:9a:41:96:fd:23:99:33:46:35:47:a9:
ba:8b:d9:e2:7e:7d:45:74:bc:c6:f4:93:b8:89:e0:
21:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:72:D0:03:AD:41:AE:F9:93:D5:DA:07:7F:2B:91:79:0D:3C:2D:71
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS213784.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.24.21.0/24
82.24.41.0/24
82.26.175.0/24
82.41.235.0/24
82.41.241.0/24
Signature Algorithm: sha256WithRSAEncryption
74:2c:eb:59:66:a4:8f:58:8e:35:e2:cf:8a:29:46:94:2e:05:
d5:e0:fa:db:72:72:dd:05:89:cb:cd:2f:13:4f:ca:77:9b:a7:
55:b6:67:69:b9:bf:16:5f:51:5c:f6:99:dd:60:78:4f:87:02:
84:c3:ef:3d:1c:34:bc:07:c7:df:f1:eb:0c:35:1c:53:c3:cb:
22:85:6d:f4:a0:06:a6:c4:58:60:14:c3:4d:38:08:2e:70:6e:
84:57:5d:f2:49:86:87:95:0a:06:65:45:73:7a:ca:92:f3:2a:
a3:20:81:9e:6a:51:f0:eb:7e:10:69:5e:95:e8:06:21:8f:2d:
46:ce:49:7f:09:02:7e:1d:05:ff:9d:b9:3b:f3:60:d9:3c:02:
81:16:25:98:9b:2a:ab:72:53:fe:a9:e6:f4:e6:5c:58:e6:c3:
c1:1e:58:27:ff:ea:ce:81:51:78:f2:a5:65:61:69:33:38:bb:
62:e4:e4:0c:ce:a0:20:64:f0:6c:1a:a0:33:1b:94:2f:82:6e:
f4:72:e9:d2:03:2a:a9:e5:35:f9:8e:4e:25:f2:e9:d6:97:6f:
c5:60:2e:b4:e2:ee:94:98:9d:6a:5b:05:56:93:5d:08:9c:42:
cd:65:bd:d9:93:93:a0:00:bc:f2:5d:3d:9a:cc:7f:aa:7b:d2:
08:e0:3b:58
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUc7o4ABJ9tvFn3mcAgpRhT0QzvcMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MjgxNDM3NDBaFw0yNzA0MjcxNDQyNDBaMDMxMTAvBgNV
BAMTKEMzNzJEMDAzQUQ0MUFFRjk5M0Q1REEwNzdGMkI5MTc5MEQzQzJENzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIi5h7tT+ddtmJ72zA+IwoPjs5
8FlncZEKL3OBm7FWz+MxLM0UkkWK/NulFeQBDa0tjs7+hPPnHCdArP/nNgkVYvIT
xuZ9KM1OhrqfqayUSf9IoBEi/M9+XJBi3cKaqw7rNxvY4eHftC4nfUs2cujEoo7a
1hgkI7QCmQ/murC9wsA7LI9bdg5fnOZijGk5vmjyM2vv5eR9q0oyUKMYRCJ+bGO4
KwcyisILXaX+KMjV652IKrFmluFxGlLRJROCOnplY0PI/sHzvmF6USkoSzRk5QBu
s4S9rS5ujqsrWL/9sofeOsmaQZb9I5kzRjVHqbqL2eJ+fUV0vMb0k7iJ4CEBAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUw3LQA61BrvmT1doHfyuReQ08LXEwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjEzNzg0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAUhgV
AwQAUhgpAwQAUhqvAwQAUinrAwQAUinxMA0GCSqGSIb3DQEBCwUAA4IBAQB0LOtZ
ZqSPWI414s+KKUaULgXV4PrbcnLdBYnLzS8TT8p3m6dVtmdpub8WX1Fc9pndYHhP
hwKEw+89HDS8B8ff8esMNRxTw8sihW30oAamxFhgFMNNOAgucG6EV13ySYaHlQoG
ZUVzesqS8yqjIIGealHw634QaV6V6AYhjy1Gzkl/CQJ+HQX/nbk782DZPAKBFiWY
myqrclP+qeb05lxY5sPBHlgn/+rOgVF48qVlYWkzOLti5OQMzqAgZPBsGqAzG5Qv
gm70cunSAyqp5TX5jk4l8unWl2/FYC604u6UmJ1qWwVWk10InELNZb3Zk5OgALzy
XT2azH+qe9II4DtY
-----END CERTIFICATE-----
Generated at Wed May 13 04:27:22 2026 by rpki-client