Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
File: AS401776.roa (raw, json)
Hash identifier: RLE5JyFxfExugX8HJ3cGvgOwyU9XRxn1ZshXedBn7zc=
Subject key identifier: 0A:1E:52:65:14:78:40:F6:63:17:C1:EA:17:C7:5A:A6:DC:5A:C2:6C
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 397CE57C940299130A7045EE4AD0DD37068336A9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
Signing time: Tue 24 Mar 2026 07:45:11 +0000
ROA not before: Tue 24 Mar 2026 07:40:11 +0000
ROA not after: Tue 23 Mar 2027 07:45:11 +0000
asID: 401776
IP address blocks: 82.29.74.0/24 maxlen: 24
82.38.181.0/24 maxlen: 24
82.39.170.0/24 maxlen: 24
82.41.20.0/24 maxlen: 24
82.41.21.0/24 maxlen: 24
82.41.72.0/24 maxlen: 24
82.41.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:7c:e5:7c:94:02:99:13:0a:70:45:ee:4a:d0:dd:37:06:83:36:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 24 07:40:11 2026 GMT
Not After : Mar 23 07:45:11 2027 GMT
Subject: CN=0A1E5265147840F66317C1EA17C75AA6DC5AC26C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0a:cd:ae:ce:60:ac:c1:94:83:a8:54:b4:e9:
31:92:c9:a5:f6:2a:18:f3:39:01:29:d0:a8:ed:c3:
8d:79:ef:51:db:53:bc:72:f7:b0:df:aa:7f:0a:f5:
d0:28:fb:0b:04:ca:79:ee:85:89:f7:9e:fb:88:5c:
e4:dc:7d:e2:a8:92:9e:13:fa:f4:16:46:22:50:ed:
f7:2d:73:a4:e4:b4:64:27:cb:75:43:23:6e:e8:30:
81:1a:cc:5c:25:4e:49:27:62:a7:fd:ce:7f:47:a8:
04:b0:63:e9:c5:4e:bd:e8:a7:d0:40:ef:da:97:13:
61:dd:7a:45:72:0b:5d:83:42:25:0b:02:d1:9b:a3:
2f:52:19:9f:4c:3c:62:d1:03:e6:18:dd:9b:cd:18:
11:ed:ed:6e:11:ff:70:d3:ed:ea:eb:60:cc:0c:f7:
55:53:53:5a:a0:d1:06:99:e3:96:ea:09:36:b1:0f:
cd:cd:8a:7c:48:15:a5:a7:22:db:c5:17:54:b3:c5:
27:04:b6:bf:8d:22:1c:dd:13:0a:87:a5:a0:c1:01:
ab:93:7f:58:1d:4f:c7:4c:2e:08:78:66:1e:00:f6:
79:8b:b0:ef:07:a6:1b:8d:cc:cf:8a:a1:42:5c:2a:
23:55:13:4c:77:67:a7:1a:53:a1:2e:68:a1:c8:ba:
5b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1E:52:65:14:78:40:F6:63:17:C1:EA:17:C7:5A:A6:DC:5A:C2:6C
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS401776.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.29.74.0/24
82.38.181.0/24
82.39.170.0/24
82.41.20.0/23
82.41.72.0/24
82.41.98.0/24
Signature Algorithm: sha256WithRSAEncryption
95:b3:3b:a3:2e:ab:c1:b1:59:1e:b6:df:a4:e2:34:3b:fc:bd:
fb:bf:ed:57:02:e8:d2:7a:7e:06:49:50:7c:ca:98:47:78:d5:
be:05:69:00:91:cb:eb:f7:8c:cb:ce:0a:5f:7a:9c:d2:c6:b0:
e4:a6:52:64:22:27:74:19:8a:54:b2:2d:2e:47:1a:2c:5f:10:
5a:0e:c3:c2:d8:f2:e4:8d:f5:8c:2e:b7:3c:5d:e2:7b:cc:b5:
03:37:59:09:ad:31:48:e3:0e:d5:99:a0:c8:2a:81:13:c4:02:
12:27:2f:21:eb:52:6d:c2:a6:7c:b6:bd:76:73:5f:fa:05:0c:
2e:77:40:28:5a:01:14:31:34:0b:46:05:05:97:d3:fc:00:30:
ee:df:22:7a:6a:a8:16:4b:f6:98:1b:f9:80:99:b4:29:31:c1:
d9:25:74:49:ba:29:e4:f1:75:b9:15:18:1a:9d:6a:bf:d0:4f:
c1:53:fa:18:03:df:cc:38:a9:d0:16:e4:49:b7:75:b8:e8:78:
db:de:4a:4a:29:c0:8e:b8:09:2f:b4:e0:6c:52:b4:0e:4d:bb:
d3:e0:ca:31:31:7c:86:25:bf:85:a2:3d:98:22:33:69:95:62:
d8:72:6c:c6:2c:16:f1:5b:8b:2b:7e:0b:e3:5d:8f:8d:42:92:
96:85:8d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:29:24 2026 by rpki-client