Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS397979.roa
File: AS397979.roa (raw, json)
Hash identifier: X2K16YadRe+lME5Cc3DQ7LRsxbUOHBOu1NLW0D7m4XI=
Subject key identifier: 6F:EC:A1:35:5D:0E:C2:BD:01:76:80:FF:E1:0A:C0:E0:48:49:F2:FF
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5DFD968D07BA0D903FF269FF9F3CCA93AC890380
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS397979.roa
Signing time: Tue 28 Apr 2026 22:56:41 +0000
ROA not before: Tue 28 Apr 2026 22:51:41 +0000
ROA not after: Tue 27 Apr 2027 22:56:41 +0000
asID: 397979
IP address blocks: 82.47.139.0/24 maxlen: 24
178.83.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:fd:96:8d:07:ba:0d:90:3f:f2:69:ff:9f:3c:ca:93:ac:89:03:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 28 22:51:41 2026 GMT
Not After : Apr 27 22:56:41 2027 GMT
Subject: CN=6FECA1355D0EC2BD017680FFE10AC0E04849F2FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c9:e1:15:ec:b0:32:64:9c:2f:df:6a:46:8b:
dc:4d:64:7d:2a:f2:44:92:56:10:73:3c:a3:98:c1:
f5:ec:b4:c5:b5:22:84:46:52:8e:40:55:18:f4:1e:
b6:2a:bb:31:f3:13:b7:d6:a9:8f:3c:ca:03:8d:1c:
02:66:dc:b5:c6:e2:6b:d7:cf:7c:c1:6f:29:5e:dc:
47:88:ca:eb:0f:27:3a:af:3a:46:ec:55:ea:b2:8f:
87:1f:21:1d:c3:15:00:a6:0a:84:5c:1a:39:ae:22:
d7:5d:0c:8f:8e:bb:37:2d:99:07:e4:d3:85:39:7b:
83:91:0d:a3:b6:c5:cb:5f:58:1c:cc:20:76:92:79:
a7:ad:62:ec:47:f9:6e:e9:98:c0:17:08:1c:bc:57:
45:83:d5:70:b8:82:39:f8:de:4d:fc:d4:c3:c4:26:
3f:4c:dd:6a:07:f1:d1:83:85:7a:d6:e5:78:1c:9c:
05:15:f1:26:46:d0:8b:a6:6d:d5:72:fa:e4:03:62:
8e:48:92:e7:55:92:1f:39:0b:e9:a0:b5:bc:64:a5:
bc:42:78:d1:19:1e:58:ba:b1:f3:7e:08:0b:24:68:
2a:16:50:99:34:39:c9:e8:18:67:9a:ed:fe:df:0f:
d7:cd:7c:8a:d2:1a:49:6b:f5:5b:30:e5:45:f4:2b:
28:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EC:A1:35:5D:0E:C2:BD:01:76:80:FF:E1:0A:C0:E0:48:49:F2:FF
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS397979.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.139.0/24
178.83.137.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:9b:95:28:68:68:27:0f:d6:3b:7d:16:9c:73:e5:c8:06:a2:
e7:cf:c2:8a:27:32:fa:0e:61:1e:70:ad:70:54:4d:23:c4:11:
c2:32:20:cc:37:81:20:6d:03:1a:15:30:49:4f:a8:0c:7f:1a:
9c:89:f3:36:58:5a:4a:2f:24:28:d6:4a:10:fb:cf:eb:eb:44:
33:29:e1:e6:d8:13:1e:6e:95:5f:fc:43:e9:0a:fc:be:54:3c:
24:e6:d6:15:35:70:7c:51:10:f4:1c:72:ed:0d:08:c8:e4:52:
b9:f4:08:3b:52:a7:c2:21:1b:50:23:c5:98:58:a6:53:ba:43:
7b:b9:ab:b2:ce:09:d1:57:b6:2c:4c:85:fa:48:fa:3d:62:17:
81:e7:a1:01:0f:94:47:1c:1c:4c:68:82:12:af:f6:e9:da:f2:
fe:71:3f:69:64:35:a3:cf:f7:b4:d6:1f:e6:ff:5d:ba:31:7a:
94:0d:a8:7a:7a:bd:0a:7b:28:ca:af:46:0a:df:f2:29:55:76:
95:cd:ca:5e:73:3e:2d:08:d3:37:10:45:1b:36:a7:6b:da:b2:
0c:5c:b4:fd:d5:83:68:dd:4e:0a:91:a6:ab:11:a5:70:54:5b:
84:3a:6f:59:3b:3e:d7:6b:59:26:8a:ab:7d:34:cc:6d:59:9d:
b9:49:27:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:42:10 2026 by rpki-client