Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
File: AS24940.roa (raw, json)
Hash identifier: GMS2X9iceGzV16qdespNUSc7AGBwf75J2N2YylcPe4k=
Subject key identifier: E4:C3:8E:8B:EC:6B:9C:05:CA:3A:6C:EB:86:E6:C6:29:30:C1:FF:C6
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 70E2FD3B13A5FA2C0485346B6D012016F23ABD13
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
Signing time: Fri 20 Mar 2026 19:22:30 +0000
ROA not before: Fri 20 Mar 2026 19:17:30 +0000
ROA not after: Fri 19 Mar 2027 19:22:30 +0000
asID: 24940
IP address blocks: 82.39.175.0/24 maxlen: 24
2a13:9500:12c::/48 maxlen: 48
2a13:9500:151::/48 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:e2:fd:3b:13:a5:fa:2c:04:85:34:6b:6d:01:20:16:f2:3a:bd:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 20 19:17:30 2026 GMT
Not After : Mar 19 19:22:30 2027 GMT
Subject: CN=E4C38E8BEC6B9C05CA3A6CEB86E6C62930C1FFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:12:d4:53:8d:4a:d7:72:ae:f7:89:19:3c:
40:1f:7c:13:88:66:e0:e7:a9:6b:a5:41:57:8a:86:
10:2c:d3:f5:9a:63:29:3b:8e:7f:68:48:06:84:53:
cc:75:da:97:5d:36:3b:c6:53:8a:e5:52:10:33:4c:
75:6f:31:ed:b9:2f:f0:8a:67:2e:47:26:6f:c1:dd:
17:01:41:61:8a:6b:ce:1e:6d:9f:c9:11:e3:43:fe:
35:84:7c:ad:ae:25:99:b5:8d:c9:69:76:ca:01:91:
34:b9:eb:ce:98:25:a7:0b:10:4d:1f:89:82:59:91:
be:31:e7:18:12:be:b6:98:c9:c2:79:75:dd:bf:37:
83:42:35:37:04:7d:9b:21:8a:ad:22:76:30:20:f6:
e1:fe:19:47:22:e3:97:63:03:5d:65:1a:70:e4:36:
89:49:6c:54:56:c6:93:fc:2f:34:b0:d1:0c:1f:9b:
19:dc:84:40:eb:5f:f3:6f:f5:2b:9f:a9:19:22:cc:
4e:7b:b9:24:78:9f:64:ed:70:98:26:a2:a0:bf:96:
0a:a7:48:75:26:fa:71:e1:ee:93:3b:06:95:64:12:
8a:84:25:06:a4:c1:45:70:c6:3b:15:cf:8b:27:57:
29:86:0f:18:a6:52:8c:37:a1:81:d4:5c:ad:de:6f:
1a:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C3:8E:8B:EC:6B:9C:05:CA:3A:6C:EB:86:E6:C6:29:30:C1:FF:C6
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS24940.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.39.175.0/24
IPv6:
2a13:9500:12c::/48
2a13:9500:151::/48
Signature Algorithm: sha256WithRSAEncryption
28:ab:d9:a6:1d:13:78:59:0f:4d:d7:3e:b2:4b:c7:d4:2a:1a:
35:49:b8:15:9d:dd:f7:d4:32:a1:70:a2:b6:c6:ae:cb:a9:fd:
f2:db:a4:57:e6:ea:7b:27:a7:61:72:ed:38:b3:47:38:fa:52:
bc:ac:c0:05:6e:39:35:d2:35:70:a0:e3:6c:af:89:21:48:3f:
aa:9c:80:09:62:4a:0a:4b:33:46:af:24:b4:90:9e:65:cf:90:
87:67:de:3b:43:ef:00:d1:ce:2a:90:6d:21:0b:22:98:54:23:
d4:8c:4f:9b:7e:9e:a8:5c:65:e3:09:16:08:8e:7f:78:26:f2:
f8:06:d3:29:d8:08:49:7f:f2:98:dd:5f:2f:53:c3:2f:40:66:
52:3d:f6:97:44:f2:a8:2f:4a:00:86:d5:c0:71:bb:81:13:f1:
65:f6:4d:18:79:0f:c4:36:04:e4:a3:7f:b8:f5:9e:bf:07:10:
e8:eb:82:25:27:bc:26:87:34:eb:a0:94:cd:bc:23:73:45:ff:
80:17:f4:f9:58:0b:69:f8:99:ea:35:d0:e2:67:93:ad:62:49:
4e:f3:2d:82:34:d2:a9:63:17:63:ea:9c:28:ee:0c:7d:0b:92:
47:b6:08:cd:90:eb:25:07:74:bf:ac:27:d7:d4:e9:ea:d8:69:
18:6f:39:9b
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgIUcOL9OxOl+iwEhTRrbQEgFvI6vRMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAzMjAxOTE3MzBaFw0yNzAzMTkxOTIyMzBaMDMxMTAvBgNV
BAMTKEU0QzM4RThCRUM2QjlDMDVDQTNBNkNFQjg2RTZDNjI5MzBDMUZGQzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5RxLUU41K13Ku94kZPEAffBOI
ZuDnqWulQVeKhhAs0/WaYyk7jn9oSAaEU8x12pddNjvGU4rlUhAzTHVvMe25L/CK
Zy5HJm/B3RcBQWGKa84ebZ/JEeND/jWEfK2uJZm1jclpdsoBkTS5686YJacLEE0f
iYJZkb4x5xgSvraYycJ5dd2/N4NCNTcEfZshiq0idjAg9uH+GUci45djA11lGnDk
NolJbFRWxpP8LzSw0QwfmxnchEDrX/Nv9SufqRkizE57uSR4n2TtcJgmoqC/lgqn
SHUm+nHh7pM7BpVkEoqEJQakwUVwxjsVz4snVymGDximUow3oYHUXK3ebxqnAgMB
AAGjggIjMIICHzAdBgNVHQ4EFgQU5MOOi+xrnAXKOmzrhubGKTDB/8YwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjQ5NDAucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwOQYIKwYBBQUHAQcBAf8EKjAoMAwEAgABMAYDBABSJ68w
GAQCAAIwEgMHACoTlQABLAMHACoTlQABUTANBgkqhkiG9w0BAQsFAAOCAQEAKKvZ
ph0TeFkPTdc+skvH1CoaNUm4FZ3d99QyoXCitsauy6n98tukV+bqeyenYXLtOLNH
OPpSvKzABW45NdI1cKDjbK+JIUg/qpyACWJKCkszRq8ktJCeZc+Qh2feO0PvANHO
KpBtIQsimFQj1IxPm36eqFxl4wkWCI5/eCby+AbTKdgISX/ymN1fL1PDL0BmUj32
l0TyqC9KAIbVwHG7gRPxZfZNGHkPxDYE5KN/uPWevwcQ6OuCJSe8Joc066CUzbwj
c0X/gBf0+VgLafiZ6jXQ4meTrWJJTvMtgjTSqWMXY+qcKO4MfQuSR7YIzZDrJQd0
v6wn19Tp6thpGG85mw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:34:48 2026 by rpki-client