Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
File: AS401776.roa (raw, json)
Hash identifier: 19SwxMISLXE46Sp9YOhlZaTzr8P963cgg7aeOjl12eg=
Subject key identifier: 52:1F:1E:E5:1D:8C:6B:7B:52:D0:40:CD:98:EA:99:17:7A:69:7F:EF
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 194D8FD122B755426253491EAA20148B70528FF8
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
Signing time: Sun 26 Apr 2026 05:54:41 +0000
ROA not before: Sun 26 Apr 2026 05:49:41 +0000
ROA not after: Sun 25 Apr 2027 05:54:41 +0000
asID: 401776
IP address blocks: 82.41.20.0/24 maxlen: 24
82.41.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:4d:8f:d1:22:b7:55:42:62:53:49:1e:aa:20:14:8b:70:52:8f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 26 05:49:41 2026 GMT
Not After : Apr 25 05:54:41 2027 GMT
Subject: CN=521F1EE51D8C6B7B52D040CD98EA99177A697FEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:46:a0:6d:65:29:8f:a2:c5:2b:ba:01:34:08:
4d:8c:54:ae:88:dc:64:ad:b6:b3:e3:b7:26:31:68:
60:cd:e8:b6:90:5d:1e:09:97:bd:50:2e:cc:30:69:
0f:41:4e:6b:30:4c:fb:21:f3:9f:07:c4:a1:a0:c7:
32:bb:ec:1b:aa:2f:64:2c:61:13:d4:c5:01:96:4b:
68:ef:72:ca:6b:f2:17:db:ae:86:31:d2:f6:66:19:
66:ee:e0:b7:14:cc:ff:67:a0:5d:41:09:dd:db:09:
4e:a6:0b:3a:f9:5c:0f:6c:11:ea:dc:94:db:84:0b:
b9:dc:60:1a:5f:ff:40:7a:83:77:04:fd:c5:35:bc:
22:3e:9b:5b:8b:2b:6a:3c:d8:81:0f:75:18:89:00:
a5:c9:42:5f:9d:f4:f0:85:5a:7c:0c:53:62:62:4d:
76:d3:79:25:7c:60:50:90:fb:92:ce:df:c5:ff:f1:
86:ea:43:b3:96:21:18:a1:13:3b:d3:fc:36:ce:82:
dd:1b:5e:71:cc:06:d7:f5:49:f5:fe:9a:d6:4f:a3:
8c:3d:b8:fa:52:12:d2:63:e0:b5:bb:e3:bc:56:bf:
f6:2d:ab:11:d4:c8:72:cd:ea:b6:db:45:be:db:34:
da:17:6c:7d:e2:17:36:e6:33:9c:3e:89:68:db:09:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:1F:1E:E5:1D:8C:6B:7B:52:D0:40:CD:98:EA:99:17:7A:69:7F:EF
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.41.20.0/23
Signature Algorithm: sha256WithRSAEncryption
85:3b:f9:55:9b:74:88:8b:f6:5f:02:77:01:a9:16:f7:eb:e6:
78:fa:a2:4a:ee:2c:28:ff:73:62:1b:61:ac:65:aa:2c:26:c8:
cf:ce:21:b6:4f:d9:f4:5c:93:46:2e:98:c0:a1:27:78:76:ab:
ab:fe:aa:ea:ea:fd:e1:ff:3f:22:17:87:26:ec:be:7e:b4:36:
7f:83:a0:e5:6a:02:16:21:49:a2:e7:95:92:50:83:57:d5:4a:
74:a7:cf:dd:2c:59:4f:46:67:35:e3:8c:03:91:b9:5e:e6:28:
57:55:41:f4:d6:ff:00:51:4c:06:6c:0d:ab:64:4a:e0:d7:9d:
0a:68:fa:0f:e5:de:d7:3f:dc:72:1d:41:64:7b:36:76:7c:bd:
6e:0a:dd:6e:41:8f:92:0d:e1:2d:4c:04:3b:bb:96:fe:5d:da:
ce:ba:14:a7:6f:91:e7:22:de:5d:f5:e4:d5:81:21:48:a0:bb:
f4:ea:d5:88:5d:0f:f7:10:03:2c:e0:2a:2e:69:da:58:a7:85:
7d:05:33:31:28:3c:9d:f0:27:17:06:6f:bf:b3:04:59:de:e5:
9d:c5:72:d4:7d:86:72:33:d7:74:45:9b:2e:62:53:d3:ae:c8:
29:4c:d1:b3:95:fd:ec:d9:a7:85:a4:17:a0:53:5f:aa:53:3b:
74:e1:3f:f0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIUGU2P0SK3VUJiU0keqiAUi3BSj/gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA0MjYwNTQ5NDFaFw0yNzA0MjUwNTU0NDFaMDMxMTAvBgNV
BAMTKDUyMUYxRUU1MUQ4QzZCN0I1MkQwNDBDRDk4RUE5OTE3N0E2OTdGRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnRqBtZSmPosUrugE0CE2MVK6I
3GSttrPjtyYxaGDN6LaQXR4Jl71QLswwaQ9BTmswTPsh858HxKGgxzK77BuqL2Qs
YRPUxQGWS2jvcspr8hfbroYx0vZmGWbu4LcUzP9noF1BCd3bCU6mCzr5XA9sEerc
lNuEC7ncYBpf/0B6g3cE/cU1vCI+m1uLK2o82IEPdRiJAKXJQl+d9PCFWnwMU2Ji
TXbTeSV8YFCQ+5LO38X/8YbqQ7OWIRihEzvT/DbOgt0bXnHMBtf1SfX+mtZPo4w9
uPpSEtJj4LW747xWv/YtqxHUyHLN6rbbRb7bNNoXbH3iFzbmM5w+iWjbCdExAgMB
AAGjggIKMIICBjAdBgNVHQ4EFgQUUh8e5R2Ma3tS0EDNmOqZF3ppf+8wHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDAxNzc2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUikU
MA0GCSqGSIb3DQEBCwUAA4IBAQCFO/lVm3SIi/ZfAncBqRb36+Z4+qJK7iwo/3Ni
G2GsZaosJsjPziG2T9n0XJNGLpjAoSd4dqur/qrq6v3h/z8iF4cm7L5+tDZ/g6Dl
agIWIUmi55WSUINX1Up0p8/dLFlPRmc144wDkble5ihXVUH01v8AUUwGbA2rZErg
150KaPoP5d7XP9xyHUFkezZ2fL1uCt1uQY+SDeEtTAQ7u5b+XdrOuhSnb5HnIt5d
9eTVgSFIoLv06tWIXQ/3EAMs4CouadpYp4V9BTMxKDyd8CcXBm+/swRZ3uWdxXLU
fYZyM9d0RZsuYlPTrsgpTNGzlf3s2aeFpBegU1+qUzt04T/w
-----END CERTIFICATE-----
Generated at Tue May 12 23:52:43 2026 by rpki-client