Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS46475.roa
File: AS46475.roa (raw, json)
Hash identifier: vM4OPztGNYPETiTv9qzBp3psr+tKRNgKYH/+Z4N9Zfo=
Subject key identifier: A5:C2:14:AC:83:14:CB:DC:01:AA:73:6F:9D:22:0A:89:40:A7:A1:62
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 61C495234D50313E5F694D04B4EE9F6B02B67C65
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS46475.roa
Signing time: Wed 29 Apr 2026 09:22:28 +0000
ROA not before: Wed 29 Apr 2026 09:17:28 +0000
ROA not after: Wed 28 Apr 2027 09:22:28 +0000
asID: 46475
IP address blocks: 82.25.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:c4:95:23:4d:50:31:3e:5f:69:4d:04:b4:ee:9f:6b:02:b6:7c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 29 09:17:28 2026 GMT
Not After : Apr 28 09:22:28 2027 GMT
Subject: CN=A5C214AC8314CBDC01AA736F9D220A8940A7A162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:06:b6:c8:c6:2e:15:03:df:ca:7e:7f:1b:
f9:51:79:2b:c0:27:ad:b8:aa:62:45:b0:b2:b2:ad:
f8:d8:9e:6a:d0:26:8d:f4:e4:7c:03:de:b4:a5:33:
64:e6:2b:00:2a:37:45:10:5f:4d:55:82:ed:86:f2:
0b:8d:fc:f5:86:47:b6:fc:45:51:69:55:f1:3a:33:
dd:ec:f8:3d:2f:9d:d0:85:59:0d:86:7e:bf:a3:db:
41:53:18:8d:70:8a:00:1e:fa:d0:5a:be:07:51:7e:
42:27:23:1c:9f:a7:b5:2a:13:37:13:e6:28:b9:ab:
79:2d:94:9f:ea:42:51:06:ce:a5:69:03:4d:f2:45:
7d:fd:5d:3f:87:7e:c4:b7:68:37:6d:61:3b:04:9a:
27:9b:66:45:41:1e:0d:b4:0e:92:de:0c:6c:9a:81:
be:aa:1a:7e:e0:13:80:a8:4a:fb:2a:a9:cd:3e:f1:
98:79:61:fa:82:90:16:b3:f5:d0:e8:f5:21:bd:07:
de:52:d1:6f:f4:7e:91:dc:28:26:9b:2b:4e:4b:55:
10:a5:42:88:53:87:78:45:01:66:a5:9e:ca:08:a9:
32:83:0b:eb:15:92:5a:2d:a1:1e:e6:47:d0:f5:eb:
e8:a4:e3:fa:f2:68:d3:8d:cf:7d:87:2d:b6:72:72:
42:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C2:14:AC:83:14:CB:DC:01:AA:73:6F:9D:22:0A:89:40:A7:A1:62
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS46475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.31.0/24
Signature Algorithm: sha256WithRSAEncryption
14:53:a5:51:bc:3a:61:9e:21:19:0e:04:d1:14:05:95:0b:ed:
d7:28:6e:ee:91:a0:11:3c:eb:9b:4a:7a:3c:60:97:38:9f:74:
6b:24:19:4d:d3:f4:05:e8:bf:2c:7e:8a:3b:0e:c6:47:3b:cc:
43:62:80:9d:58:a9:1c:9a:67:3a:e4:21:d9:a8:55:e9:26:a5:
b0:15:d2:c1:b7:f5:45:e5:c6:31:47:97:25:b2:b0:34:45:86:
64:4b:64:9a:34:ad:29:4e:09:31:a1:6c:8e:aa:bd:02:0d:a6:
b7:c9:f9:c1:fb:33:b5:bf:ae:7c:8d:26:85:98:d5:f7:0f:8b:
d4:91:aa:ee:63:1d:eb:92:70:f7:0c:08:ad:20:b4:5c:73:8f:
11:42:79:16:3c:86:aa:b9:52:ac:04:89:dd:da:2a:4c:62:db:
8d:ca:a8:7d:ff:d6:54:46:08:bc:7b:0b:df:71:8b:7c:59:ff:
15:43:ed:20:e1:7d:8a:7a:6e:40:46:7e:be:6f:bb:3b:7d:e6:
3e:dc:fe:c0:f1:55:a0:87:b3:0b:82:0e:2d:68:3f:89:3c:17:
75:70:72:43:96:ed:63:c1:10:3b:94:a1:4c:6c:ca:a2:cd:97:
db:50:0c:fa:cd:8a:ff:79:a8:d9:c7:26:53:0c:04:3f:c8:4d:
c0:d1:be:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:34:54 2026 by rpki-client