Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
File: AS272696.roa (raw, json)
Hash identifier: GFsNt/fTwSvhndYizOW9x3l1inlUqwUYfyMQHq1Rjt8=
Subject key identifier: 79:39:4A:2F:F2:3B:2D:C9:43:1F:5A:2F:EB:35:33:D4:09:88:C4:97
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 60914A828BAFE9588B9641773EB7F3FB94E4C6CA
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
Signing time: Wed 06 May 2026 20:48:50 +0000
ROA not before: Wed 06 May 2026 20:43:50 +0000
ROA not after: Wed 05 May 2027 20:48:50 +0000
asID: 272696
IP address blocks: 82.27.17.0/24 maxlen: 24
82.38.173.0/24 maxlen: 24
178.83.17.0/24 maxlen: 24
178.83.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:91:4a:82:8b:af:e9:58:8b:96:41:77:3e:b7:f3:fb:94:e4:c6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 6 20:43:50 2026 GMT
Not After : May 5 20:48:50 2027 GMT
Subject: CN=79394A2FF23B2DC9431F5A2FEB3533D40988C497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8e:76:7e:36:9e:e3:f3:0e:b1:ff:c1:5a:5e:
3b:6c:f7:0e:9d:c1:fc:55:86:48:22:f9:84:25:73:
e3:54:b2:c4:8a:d2:02:cf:a0:0e:e1:8d:ab:2b:83:
85:60:e1:6a:8f:ab:65:2c:25:96:ef:3a:7f:e8:0e:
dd:cc:94:c9:5f:94:26:05:a2:e9:7c:1e:39:68:10:
3e:fd:d7:61:31:79:56:6c:43:ba:c6:1e:79:41:f6:
06:29:d5:19:9f:26:bf:3b:cc:1b:1a:ae:a6:22:9b:
8f:52:ed:2c:f4:33:37:1b:d1:23:a8:4b:39:04:a5:
a5:b9:53:2b:55:56:c8:29:8d:b9:74:0d:7e:5b:b0:
56:38:22:c9:9e:c7:91:d9:b0:f4:2a:ec:9f:59:05:
2c:48:0c:ad:36:f1:3d:05:ce:89:00:67:04:36:66:
f6:f6:87:c4:1e:93:0b:17:cc:e5:1a:ab:7d:2b:ff:
ae:e3:67:29:1c:9c:44:72:53:cf:fd:85:eb:fc:7f:
aa:da:92:95:e7:68:d6:b3:34:c6:c0:8b:a0:e4:0a:
bf:53:07:da:3b:e8:a5:d3:18:0c:5a:c0:0b:2d:77:
c0:e5:97:e2:a9:01:4a:9f:65:7b:db:15:a2:5b:bd:
6b:21:34:73:3a:ed:d1:0a:f4:91:06:49:8e:de:25:
30:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:39:4A:2F:F2:3B:2D:C9:43:1F:5A:2F:EB:35:33:D4:09:88:C4:97
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS272696.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.27.17.0/24
82.38.173.0/24
178.83.17.0/24
178.83.141.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:e0:9b:e2:46:d8:0a:ff:cd:37:b8:af:5b:68:6e:46:bb:7a:
f8:77:c0:f8:4e:64:8f:e5:77:1f:0c:69:a7:4f:8b:2e:6a:22:
21:47:03:9a:f3:30:aa:c4:52:9c:28:00:a8:d3:ae:c6:65:0d:
ac:20:7a:66:b8:82:72:03:66:3d:45:0d:36:00:b8:ea:22:ec:
51:42:ca:ce:91:6b:b5:2b:dc:ab:ff:1b:af:84:a1:be:b8:80:
8e:dd:a9:1c:db:9a:4d:27:ce:71:d5:bf:17:5d:ef:2b:39:25:
be:e6:db:a1:60:a3:d2:04:26:ed:fe:26:9c:d5:c1:9c:bd:6d:
83:e0:9b:94:28:34:6f:09:b5:60:26:f5:f4:d4:3a:08:af:21:
bf:da:4d:37:52:2d:38:98:a6:4d:3d:3e:8f:7b:7c:e8:8f:1e:
57:66:43:9b:ec:1e:ce:61:54:67:bd:38:05:56:a1:bd:6f:e8:
e5:9a:83:45:b5:bd:55:59:ca:53:98:f1:c3:9e:b0:6f:58:a2:
ea:47:e0:2d:80:6a:47:45:af:cf:33:f7:70:8f:56:ee:c8:60:
f1:6f:37:ee:be:1c:e1:88:7a:25:93:5d:43:f0:4a:b0:cb:6a:
79:92:7c:7e:0c:b3:de:be:4d:58:96:3c:79:95:b2:f8:db:11:
58:ee:e0:05
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgIUYJFKgouv6ViLlkF3Prfz+5TkxsowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MDYyMDQzNTBaFw0yNzA1MDUyMDQ4NTBaMDMxMTAvBgNV
BAMTKDc5Mzk0QTJGRjIzQjJEQzk0MzFGNUEyRkVCMzUzM0Q0MDk4OEM0OTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwjnZ+Np7j8w6x/8FaXjts9w6d
wfxVhkgi+YQlc+NUssSK0gLPoA7hjasrg4Vg4WqPq2UsJZbvOn/oDt3MlMlflCYF
oul8HjloED7912ExeVZsQ7rGHnlB9gYp1RmfJr87zBsarqYim49S7Sz0Mzcb0SOo
SzkEpaW5UytVVsgpjbl0DX5bsFY4Ismex5HZsPQq7J9ZBSxIDK028T0FzokAZwQ2
Zvb2h8QekwsXzOUaq30r/67jZykcnERyU8/9hev8f6rakpXnaNazNMbAi6DkCr9T
B9o76KXTGAxawAstd8Dll+KpAUqfZXvbFaJbvWshNHM67dEK9JEGSY7eJTD7AgMB
AAGjggIcMIICGDAdBgNVHQ4EFgQUeTlKL/I7LclDH1ov6zUz1AmIxJcwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjcyNjk2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAUhsR
AwQAUiatAwQAslMRAwQAslONMA0GCSqGSIb3DQEBCwUAA4IBAQAL4JviRtgK/803
uK9baG5Gu3r4d8D4TmSP5XcfDGmnT4suaiIhRwOa8zCqxFKcKACo067GZQ2sIHpm
uIJyA2Y9RQ02ALjqIuxRQsrOkWu1K9yr/xuvhKG+uICO3akc25pNJ85x1b8XXe8r
OSW+5tuhYKPSBCbt/iac1cGcvW2D4JuUKDRvCbVgJvX01DoIryG/2k03Ui04mKZN
PT6Pe3zojx5XZkOb7B7OYVRnvTgFVqG9b+jlmoNFtb1VWcpTmPHDnrBvWKLqR+At
gGpHRa/PM/dwj1buyGDxbzfuvhzhiHolk11D8Eqwy2p5knx+DLPevk1Yljx5lbL4
2xFY7uAF
-----END CERTIFICATE-----
Generated at Wed May 13 07:40:25 2026 by rpki-client