Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214036.roa
File: AS214036.roa (raw, json)
Hash identifier: zc89ulla+Ps9rQ2RYqIDcB35uM4VEwtQoPIhJ/bLdAI=
Subject key identifier: EF:92:80:60:09:23:5D:60:7E:67:9D:05:B5:B9:EA:D6:AC:F8:05:A7
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 41ECAC37DB3D69E77F417E20CF82AAFFD53A2E34
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214036.roa
Signing time: Fri 08 May 2026 10:19:33 +0000
ROA not before: Fri 08 May 2026 10:14:33 +0000
ROA not after: Fri 07 May 2027 10:19:33 +0000
asID: 214036
IP address blocks: 82.38.15.0/24 maxlen: 24
82.38.63.0/24 maxlen: 24
82.39.107.0/24 maxlen: 24
82.40.23.0/24 maxlen: 24
82.41.58.0/24 maxlen: 24
82.41.181.0/24 maxlen: 24
178.83.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:ec:ac:37:db:3d:69:e7:7f:41:7e:20:cf:82:aa:ff:d5:3a:2e:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 8 10:14:33 2026 GMT
Not After : May 7 10:19:33 2027 GMT
Subject: CN=EF92806009235D607E679D05B5B9EAD6ACF805A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b9:ba:5f:03:a4:8a:1a:e3:bb:dc:c6:50:23:
dc:21:4b:99:60:92:00:b2:d8:cd:ee:ff:ba:0b:96:
5a:b8:3f:de:10:a4:6b:25:1a:ec:28:47:6e:84:5e:
6a:3b:cc:69:ca:c4:c3:ae:f3:92:0e:79:06:26:43:
27:c2:0c:c4:a4:49:20:11:9f:72:db:86:87:b9:63:
e8:97:af:e1:43:77:83:d8:7c:0d:d6:75:af:45:ea:
cb:e5:b6:8b:4a:13:97:a1:28:0e:2a:1f:c7:36:40:
16:3c:14:e1:1d:2e:2b:54:5d:24:b0:8f:18:7d:fc:
b1:15:cd:1f:b1:4e:bd:cb:0e:b2:a4:56:36:99:f4:
0f:76:07:2a:bd:62:d6:cd:e9:1b:af:7a:2a:d8:f4:
04:eb:9b:f9:bd:0b:fb:e1:33:bf:ed:7f:01:17:8f:
d3:ec:e9:bc:47:f5:0e:57:ac:62:18:8e:63:41:ca:
75:a5:2e:2c:f0:35:40:fc:d9:60:4c:d5:4c:2b:db:
98:d6:9b:69:0b:bf:21:91:c6:56:5e:cb:1a:88:a0:
2f:9b:08:63:9d:2b:e4:63:cc:00:43:a0:85:85:5f:
3e:5a:53:f9:6b:eb:48:20:6d:78:63:da:b3:21:2b:
55:a0:1c:25:3c:c1:de:51:d0:a9:e7:32:e3:9d:21:
3d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:92:80:60:09:23:5D:60:7E:67:9D:05:B5:B9:EA:D6:AC:F8:05:A7
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS214036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.38.15.0/24
82.38.63.0/24
82.39.107.0/24
82.40.23.0/24
82.41.58.0/24
82.41.181.0/24
178.83.164.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a6:31:54:66:3b:02:3c:fe:39:41:58:26:62:8e:ea:e7:66:
f8:79:e2:01:f1:3c:a8:bc:3e:0f:8d:8a:56:19:29:f2:bb:b3:
9f:6a:3e:f4:d6:64:7d:b7:47:9d:d5:d2:b9:41:1b:95:52:49:
d4:1e:26:16:42:cb:cf:d4:43:5b:56:98:1f:40:ce:78:35:ab:
8e:38:40:0a:6f:90:52:b6:2f:fa:ea:39:a1:b8:e4:8e:2d:04:
b7:d4:08:de:58:f7:9e:8e:f5:27:02:b8:79:8b:c4:b3:3c:e0:
18:5b:53:de:d9:24:14:81:5b:c3:ba:15:74:c7:4f:b3:66:79:
3a:c6:2c:48:bb:9b:6d:0d:7c:d3:b4:20:52:c1:68:7d:d1:d7:
93:da:53:cb:16:10:04:20:d8:9f:59:63:97:95:46:71:7c:c2:
82:b6:d1:75:ed:2a:58:dc:06:9a:bd:23:ed:ac:f0:1f:2d:9f:
d0:71:15:0e:c7:5c:7f:86:56:e5:bb:24:46:40:a3:4a:d0:84:
3a:20:b2:6e:25:da:40:62:83:0e:c2:b3:1f:61:40:9a:7d:bd:
dd:92:53:c3:b8:35:0c:cf:ab:27:03:03:d6:f2:fc:2e:73:ea:
72:61:9f:4f:6b:75:be:53:e4:eb:42:ff:6e:09:be:da:78:14:
43:cc:6e:31
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgIUQeysN9s9aed/QX4gz4Kq/9U6LjQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MDgxMDE0MzNaFw0yNzA1MDcxMDE5MzNaMDMxMTAvBgNV
BAMTKEVGOTI4MDYwMDkyMzVENjA3RTY3OUQwNUI1QjlFQUQ2QUNGODA1QTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ubpfA6SKGuO73MZQI9whS5lg
kgCy2M3u/7oLllq4P94QpGslGuwoR26EXmo7zGnKxMOu85IOeQYmQyfCDMSkSSAR
n3Lbhoe5Y+iXr+FDd4PYfA3Wda9F6svltotKE5ehKA4qH8c2QBY8FOEdLitUXSSw
jxh9/LEVzR+xTr3LDrKkVjaZ9A92Byq9YtbN6RuveirY9ATrm/m9C/vhM7/tfwEX
j9Ps6bxH9Q5XrGIYjmNBynWlLizwNUD82WBM1Uwr25jWm2kLvyGRxlZeyxqIoC+b
CGOdK+RjzABDoIWFXz5aU/lr60ggbXhj2rMhK1WgHCU8wd5R0KnnMuOdIT05AgMB
AAGjggIuMIICKjAdBgNVHQ4EFgQU75KAYAkjXWB+Z50Ftbnq1qz4BacwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjE0MDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAUiYP
AwQAUiY/AwQAUidrAwQAUigXAwQAUik6AwQAUim1AwQAslOkMA0GCSqGSIb3DQEB
CwUAA4IBAQAwpjFUZjsCPP45QVgmYo7q52b4eeIB8TyovD4PjYpWGSnyu7Ofaj70
1mR9t0ed1dK5QRuVUknUHiYWQsvP1ENbVpgfQM54NauOOEAKb5BSti/66jmhuOSO
LQS31AjeWPeejvUnArh5i8SzPOAYW1Pe2SQUgVvDuhV0x0+zZnk6xixIu5ttDXzT
tCBSwWh90deT2lPLFhAEINifWWOXlUZxfMKCttF17SpY3AaavSPtrPAfLZ/QcRUO
x1x/hlbluyRGQKNK0IQ6ILJuJdpAYoMOwrMfYUCafb3dklPDuDUMz6snAwPW8vwu
c+pyYZ9Pa3W+U+TrQv9uCb7aeBRDzG4x
-----END CERTIFICATE-----
Generated at Wed May 13 00:25:14 2026 by rpki-client