Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
File: AS36530.roa (raw, json)
Hash identifier: unYxRtkXdyYsQlYbliY8grFojRz6v4BXn3nWQyNEEL4=
Subject key identifier: 59:A3:41:94:22:C1:DB:9B:6C:50:33:32:68:5A:F0:F9:F7:9C:B1:B7
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 528AFB9295F0CD6265B64795621112955F6C3776
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
Signing time: Fri 08 May 2026 13:33:59 +0000
ROA not before: Fri 08 May 2026 13:28:59 +0000
ROA not after: Fri 07 May 2027 13:33:59 +0000
asID: 36530
IP address blocks: 82.25.46.0/23 maxlen: 24
82.26.72.0/23 maxlen: 24
82.26.78.0/23 maxlen: 24
82.47.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:8a:fb:92:95:f0:cd:62:65:b6:47:95:62:11:12:95:5f:6c:37:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 8 13:28:59 2026 GMT
Not After : May 7 13:33:59 2027 GMT
Subject: CN=59A3419422C1DB9B6C503332685AF0F9F79CB1B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:36:5e:c2:9b:d9:5f:7a:b2:99:ae:85:36:69:
a9:f9:8a:b3:8f:3b:e0:78:47:39:cf:07:ca:1d:b2:
97:49:36:ac:8d:56:4a:9d:85:34:18:0e:9b:3b:e6:
68:36:c2:b7:dc:d3:74:aa:38:47:30:7e:b2:a4:06:
9d:e0:c7:4a:04:34:64:0b:dc:a1:3f:b2:13:32:19:
d0:43:73:0b:22:1b:75:e2:e6:41:2a:25:21:29:46:
ad:fa:2d:ba:fa:49:0a:ca:bc:1a:59:a2:cc:44:12:
d4:2d:41:97:22:e3:4b:79:54:ed:14:7e:63:40:13:
68:12:21:f3:d2:82:b5:d6:df:34:62:11:9c:a0:6e:
36:55:0d:00:04:dc:aa:f3:7b:3e:04:fb:31:bc:ba:
6c:68:b4:e8:15:8e:93:d5:fc:68:6d:1a:e2:0f:ec:
ea:3c:1b:05:bd:d3:95:58:84:88:f3:bc:7c:e9:7b:
f5:45:b5:59:74:5f:46:fb:90:29:74:37:74:e9:98:
77:95:e7:74:a2:71:66:f9:fa:f4:7f:91:df:d8:ca:
21:3e:bf:9c:13:d4:ae:13:ec:97:e1:4f:58:fe:bb:
8d:e7:75:a5:d2:d3:5c:2a:61:9f:84:7d:56:f4:ff:
32:ad:c5:05:5a:e7:ad:17:44:58:66:20:7c:a3:73:
96:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A3:41:94:22:C1:DB:9B:6C:50:33:32:68:5A:F0:F9:F7:9C:B1:B7
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS36530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.46.0/23
82.26.72.0/23
82.26.78.0/23
82.47.60.0/23
Signature Algorithm: sha256WithRSAEncryption
12:9a:90:c4:c7:e1:3d:19:8a:99:41:5a:0c:99:bd:73:8e:6b:
50:29:f7:6d:5d:f7:14:a6:68:b7:9e:96:39:84:f4:26:df:4d:
d1:8a:e7:25:36:d4:be:d2:86:a4:f7:10:3e:a7:14:00:d9:21:
a8:bf:e7:ab:69:ac:1e:ca:31:2f:57:f2:96:26:54:c3:06:5d:
32:4d:1d:ba:e5:df:3d:89:35:ba:ce:ff:e5:90:43:36:4b:cd:
a1:11:e9:5c:9b:a9:87:1b:77:e8:ce:57:b9:84:53:da:0d:fd:
f4:18:09:77:b5:5c:e4:26:fa:4a:46:0f:43:af:ba:17:2e:66:
52:a6:7b:5b:de:98:b5:11:dd:e7:83:f2:f7:aa:12:cf:04:4d:
dc:fa:31:79:c6:30:2b:8d:32:39:e9:be:e1:f8:0b:55:b8:a6:
66:29:60:8a:fd:70:62:73:bf:5d:45:aa:0b:30:55:53:94:8b:
19:51:01:a4:77:50:d5:60:e5:52:21:00:6f:bd:40:e2:2f:95:
2d:bb:ab:2a:9f:63:87:d5:d6:91:d7:1a:fa:8c:2d:20:dd:1f:
84:ae:20:68:3a:b3:72:5a:b5:ad:1f:3e:d7:76:27:dc:64:d4:
bd:8a:11:26:67:cd:7f:d0:48:70:7b:61:13:8d:cd:2b:96:e7:
5e:53:ef:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:05:00 2026 by rpki-client