Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS275616.roa
File: AS275616.roa (raw, json)
Hash identifier: UlG8OLhlzeuxfFMw/8wJ6l0PKXpKm7aAPZSwSK4cnGA=
Subject key identifier: 33:68:BF:94:3B:1D:2E:74:69:FD:2F:2D:76:39:43:AB:C0:1E:54:1D
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 18DA86CA20F76B03921F04C366157AA59B0D276A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS275616.roa
Signing time: Wed 11 Mar 2026 07:40:17 +0000
ROA not before: Wed 11 Mar 2026 07:35:17 +0000
ROA not after: Wed 10 Mar 2027 07:40:17 +0000
asID: 275616
IP address blocks: 82.41.222.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:da:86:ca:20:f7:6b:03:92:1f:04:c3:66:15:7a:a5:9b:0d:27:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 11 07:35:17 2026 GMT
Not After : Mar 10 07:40:17 2027 GMT
Subject: CN=3368BF943B1D2E7469FD2F2D763943ABC01E541D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:f3:0a:d3:8b:da:f0:e2:f3:de:be:ba:d4:
23:69:35:92:a9:ac:2b:5c:31:0c:f1:82:32:bf:65:
a9:f6:09:ba:8c:f8:cf:1d:bd:d9:c1:ce:e9:d4:72:
1f:f5:d0:43:f3:85:46:2f:1b:8e:93:a5:c4:a0:ea:
18:fe:d7:68:78:45:d0:c7:46:7e:d5:f1:dc:2a:c4:
7e:19:6a:e1:4f:f2:a3:74:4c:4c:df:4a:ec:1d:4a:
57:2d:c7:d3:10:69:cb:37:e8:f4:a4:99:10:56:ab:
87:78:ef:26:e8:12:c6:e5:a0:cb:1e:ad:fd:2d:31:
5d:17:12:86:4e:ed:e5:96:0e:35:64:00:15:76:a1:
85:e2:b3:e9:fc:d9:72:0f:29:be:28:c2:16:8a:da:
0f:1b:41:4a:4d:c7:80:a9:eb:c1:d4:58:a9:e2:81:
3a:2b:f5:44:0a:19:42:18:6d:d4:93:11:f8:07:89:
02:0c:04:24:c8:13:3b:01:3e:a7:62:dc:fa:fe:30:
63:0b:19:4b:74:44:0b:d6:a9:ad:2a:e0:6a:39:56:
a8:06:78:63:d7:ba:1e:4d:cc:ee:2d:9c:14:2f:4e:
81:3b:28:0f:72:13:be:17:53:c7:be:3f:3e:a7:83:
96:a8:5d:8f:61:1b:10:80:8e:38:ec:ac:8b:d1:75:
bb:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:68:BF:94:3B:1D:2E:74:69:FD:2F:2D:76:39:43:AB:C0:1E:54:1D
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS275616.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.222.0/23
Signature Algorithm: sha256WithRSAEncryption
09:d0:da:08:4b:63:bd:cc:ed:b6:76:d9:5b:07:cf:ec:72:6e:
fb:a5:02:83:9c:c8:ae:17:47:68:fd:37:8c:eb:21:5a:d5:5f:
b9:ff:62:0f:31:6a:84:94:3f:51:ad:0f:f4:cf:ca:64:c8:31:
c7:04:8f:ed:19:9f:65:a6:8f:0c:20:0c:29:8c:68:99:4a:e7:
85:c3:96:85:e2:47:42:7b:86:d3:41:fe:cc:9a:51:50:bd:3c:
d5:c5:6c:dd:90:3d:9f:74:b6:e2:e9:de:69:01:e8:2c:a5:f4:
a7:f8:ca:b0:64:97:e6:24:93:51:e5:99:a6:7c:b0:f1:4a:dc:
7d:36:a6:fe:b7:02:54:42:b0:8e:49:33:a3:35:94:e0:b5:12:
a1:42:0a:f4:2e:51:fd:3a:6b:68:31:ea:c5:05:d4:22:bc:a5:
8d:7a:a0:51:61:74:47:b0:2c:a1:06:4b:87:b0:fa:ef:0a:15:
1e:46:0e:fb:18:92:8c:c8:f7:35:f1:75:1a:1c:79:e9:51:20:
fc:02:cc:8c:07:14:8f:6d:26:d8:cd:2a:59:61:08:ac:24:0e:
ee:a1:e4:77:73:03:1b:bb:17:71:ea:86:3c:6c:cd:8a:af:5e:
5d:c9:15:8d:3e:b4:77:3e:6c:1c:22:03:fc:c3:bf:69:a7:3e:
57:5b:7b:a2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUGNqGyiD3awOSHwTDZhV6pZsNJ2owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjAzMTEwNzM1MTdaFw0yNzAzMTAwNzQwMTdaMDMxMTAvBgNV
BAMTKDMzNjhCRjk0M0IxRDJFNzQ2OUZEMkYyRDc2Mzk0M0FCQzAxRTU0MUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNfMK04va8OLz3r661CNpNZKp
rCtcMQzxgjK/Zan2CbqM+M8dvdnBzunUch/10EPzhUYvG46TpcSg6hj+12h4RdDH
Rn7V8dwqxH4ZauFP8qN0TEzfSuwdSlctx9MQacs36PSkmRBWq4d47yboEsbloMse
rf0tMV0XEoZO7eWWDjVkABV2oYXis+n82XIPKb4owhaK2g8bQUpNx4Cp68HUWKni
gTor9UQKGUIYbdSTEfgHiQIMBCTIEzsBPqdi3Pr+MGMLGUt0RAvWqa0q4Go5VqgG
eGPXuh5NzO4tnBQvToE7KA9yE74XU8e+Pz6ng5aoXY9hGxCAjjjsrIvRdbv1AgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUM2i/lDsdLnRp/S8tdjlDq8AeVB0wHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMjc1NjE2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUine
MA0GCSqGSIb3DQEBCwUAA4IBAQAJ0NoIS2O9zO22dtlbB8/scm77pQKDnMiuF0do
/TeM6yFa1V+5/2IPMWqElD9RrQ/0z8pkyDHHBI/tGZ9lpo8MIAwpjGiZSueFw5aF
4kdCe4bTQf7MmlFQvTzVxWzdkD2fdLbi6d5pAegspfSn+MqwZJfmJJNR5ZmmfLDx
Stx9Nqb+twJUQrCOSTOjNZTgtRKhQgr0LlH9OmtoMerFBdQivKWNeqBRYXRHsCyh
BkuHsPrvChUeRg77GJKMyPc18XUaHHnpUSD8AsyMBxSPbSbYzSpZYQisJA7uoeR3
cwMbuxdx6oY8bM2Kr15dyRWNPrR3PmwcIgP8w79ppz5XW3ui
-----END CERTIFICATE-----
Generated at Thu Mar 26 01:29:19 2026 by rpki-client