Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
File: AS24940.roa (raw, json)
Hash identifier: GlCxb9PHlZhmCOrZ23reL0mQ+FG3oqWJ7thRrLGfSRk=
Subject key identifier: 24:A2:B2:EF:59:2E:B1:0E:B3:93:33:76:53:67:1C:59:4F:D8:01:F0
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 471FC102474A2C866A20CD71517CD857C9FA87A3
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
Signing time: Sat 02 May 2026 07:36:22 +0000
ROA not before: Sat 02 May 2026 07:31:22 +0000
ROA not after: Sat 01 May 2027 07:36:22 +0000
asID: 24940
IP address blocks: 82.39.175.0/24 maxlen: 24
2a13:9500:12c::/48 maxlen: 48
2a13:9500:151::/48 maxlen: 48
2a13:9500:165::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:1f:c1:02:47:4a:2c:86:6a:20:cd:71:51:7c:d8:57:c9:fa:87:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 2 07:31:22 2026 GMT
Not After : May 1 07:36:22 2027 GMT
Subject: CN=24A2B2EF592EB10EB393337653671C594FD801F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:48:c0:d7:9a:e4:18:1b:4c:64:0f:30:47:
1e:ba:85:9f:44:cf:33:37:fd:73:bd:62:73:6a:b6:
76:66:e3:bc:ca:33:1e:0e:90:79:b1:de:68:93:35:
4b:7e:9c:57:4d:6d:85:d5:da:21:75:e4:4c:a4:72:
ef:3c:a7:1b:0d:87:df:0e:8c:0e:d5:50:f7:75:4e:
3d:5a:99:9a:69:ae:6a:83:aa:c5:a9:11:15:95:8e:
9f:36:a7:b2:8e:cb:b7:3b:2c:00:18:09:ba:7a:3e:
c1:ab:cc:6a:67:18:81:b5:22:8c:58:bf:34:18:ad:
b1:c5:c1:09:e1:5b:38:0c:b1:b7:ba:df:cd:e9:82:
23:3e:8c:8b:c1:07:6b:86:f9:ec:29:87:cc:1b:fd:
b2:03:08:47:98:2f:03:53:10:d4:d0:01:01:1e:6e:
72:3b:1e:42:87:a6:7e:52:e8:a8:91:b5:4d:ee:bc:
70:39:63:23:21:a5:07:2b:c5:54:94:51:24:5f:17:
65:02:4d:26:e7:7f:02:da:65:a1:c5:3a:0d:47:56:
55:c6:04:10:61:1e:ee:89:4c:4d:7c:d3:39:df:51:
d0:c8:b8:6e:94:b3:be:16:6e:c9:ec:52:05:cc:05:
5a:43:ce:51:05:98:fc:4f:da:fc:5a:53:f9:33:78:
87:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A2:B2:EF:59:2E:B1:0E:B3:93:33:76:53:67:1C:59:4F:D8:01:F0
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.39.175.0/24
IPv6:
2a13:9500:12c::/48
2a13:9500:151::/48
2a13:9500:165::/48
Signature Algorithm: sha256WithRSAEncryption
41:0c:5d:28:14:aa:31:01:bf:e8:08:e3:ea:0b:17:d9:b4:3d:
21:8f:61:d1:e6:e7:00:be:e8:cd:1d:bf:3b:c4:69:53:60:c6:
7f:72:0d:b3:2c:5c:57:38:c8:e7:64:47:8e:10:a3:00:a9:a2:
e3:bb:95:0f:0d:f6:69:8f:12:a0:36:26:2f:8d:80:ca:a5:dc:
b8:07:f5:9d:7d:bc:c3:80:d8:f6:e4:67:04:e6:7c:c8:bf:d0:
19:bd:38:86:44:55:2d:84:26:b0:ef:6d:39:52:9e:05:eb:6a:
62:c3:20:29:b1:54:5a:65:df:c9:ab:0f:dd:b7:be:d6:85:06:
5a:9f:72:d4:91:97:ed:25:39:b3:e9:53:d3:cf:ef:3d:29:91:
0f:45:aa:ed:7f:5e:e1:f9:72:b6:54:48:0d:40:39:42:66:95:
0e:2e:29:e5:a0:9d:eb:3d:4a:e3:eb:55:43:a2:c4:9f:a6:9f:
ca:9e:a7:6e:18:76:86:0a:d0:5a:33:c3:fd:1e:28:6d:dd:b5:
a6:15:c1:7f:6e:7f:e8:99:a7:3c:dd:8d:d0:9c:e8:3d:55:49:
43:a5:5a:9d:77:f2:aa:57:dc:8f:2b:01:3d:45:08:b0:a1:c1:
28:30:e1:42:75:c1:89:dd:ce:92:8c:bd:06:39:b1:3d:96:f6:
6f:22:ef:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:17:53 2026 by rpki-client