Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa
File: AS395374.roa (raw, json)
Hash identifier: Yz7UQwaJUJ5LnYMIPBhF9gt2COS1ur3pkKR2CqpHJqo=
Subject key identifier: E5:47:40:5F:70:38:3A:4E:A9:01:BA:A6:4F:C1:5F:C5:2C:18:CC:32
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0224F937B8D701ACF5C170CA50361F3222DBB8CB
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa
Signing time: Mon 11 May 2026 09:13:16 +0000
ROA not before: Mon 11 May 2026 09:08:16 +0000
ROA not after: Mon 10 May 2027 09:13:16 +0000
asID: 395374
IP address blocks: 82.27.122.0/24 maxlen: 24
178.83.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:24:f9:37:b8:d7:01:ac:f5:c1:70:ca:50:36:1f:32:22:db:b8:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 11 09:08:16 2026 GMT
Not After : May 10 09:13:16 2027 GMT
Subject: CN=E547405F70383A4EA901BAA64FC15FC52C18CC32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4a:06:34:9f:43:a1:57:fc:4d:90:1f:4d:a7:
22:86:dc:c9:80:02:32:8b:d9:16:4a:e7:33:39:c0:
1c:a7:23:26:6f:e5:3e:10:b1:bb:1b:66:16:a5:96:
5f:d5:75:ae:5c:ac:81:37:a7:7c:c6:ed:1d:d5:07:
fa:2a:4e:a0:0f:fb:b2:22:84:b1:97:1d:45:0b:55:
2e:94:30:0e:7d:57:ac:2b:a3:40:6c:e3:13:03:ca:
54:17:79:58:ce:51:a1:80:3e:66:25:1e:af:4c:83:
b0:be:07:0c:4f:a8:ae:33:95:70:fc:65:a6:71:aa:
48:9d:2d:33:c7:55:a1:a5:6c:02:35:5b:7f:e7:2c:
0d:9f:82:69:54:b6:02:b1:ab:fc:e8:da:40:3d:55:
d9:24:2c:40:b7:3c:58:bc:43:52:37:8e:eb:4f:94:
e0:e4:27:a3:3d:5b:c5:18:4c:34:f1:76:14:08:7d:
de:fa:6d:7d:ec:87:d4:bc:f2:b4:ca:41:44:73:77:
a7:a4:3a:da:84:ec:71:f3:56:07:11:f9:cd:49:7f:
18:a9:a2:6c:bd:4b:fb:5d:44:26:fc:1d:67:5f:4a:
5c:e4:2a:4e:4c:d8:b4:d8:24:2c:52:ef:6a:0d:96:
a9:fc:5a:6f:73:9d:ea:c0:49:65:39:60:e4:2b:7d:
d2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:47:40:5F:70:38:3A:4E:A9:01:BA:A6:4F:C1:5F:C5:2C:18:CC:32
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS395374.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.27.122.0/24
178.83.69.0/24
Signature Algorithm: sha256WithRSAEncryption
93:ff:b9:14:b5:d0:4e:76:f4:da:40:ec:19:a8:7d:c8:1e:a9:
96:6b:af:2e:d9:0d:38:f5:5d:14:54:86:06:11:40:cf:21:8a:
3d:3e:0c:73:5e:94:00:8c:b8:06:62:d3:21:71:03:8c:bf:e3:
5d:f4:56:a2:17:0b:52:43:32:4b:4e:76:4f:2e:81:4c:4e:45:
e0:e7:13:dd:69:a9:e3:2c:2e:17:7f:46:94:89:4d:14:96:1b:
ac:e6:c5:4a:2a:e9:45:52:d2:22:7d:a7:ae:77:3f:d4:e8:9e:
a6:4b:7d:82:b7:e7:86:2f:48:e4:f6:76:10:33:72:f0:25:ff:
6a:f2:4c:00:80:56:63:a9:63:4b:cc:56:fa:b7:ab:76:1c:3b:
ad:e2:b9:4a:2e:0e:27:af:94:93:91:56:86:38:c6:5e:7b:01:
0a:6e:1d:75:cf:33:be:a7:00:0d:a2:63:49:9a:b3:58:cf:10:
46:00:5c:5b:5a:c6:45:a5:f6:14:3d:82:14:b3:99:11:f2:a9:
b2:57:ab:dd:32:ea:5c:bd:bd:bf:1d:29:c2:f4:9b:00:42:91:
f8:d8:38:a3:22:43:a4:d1:0f:96:d2:a5:dc:4a:c9:93:f2:03:
0e:bd:14:dd:c5:4f:16:33:bf:97:2a:72:72:8d:87:53:b7:15:
ef:58:49:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:42:01 2026 by rpki-client