Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
File: AS4766.roa (raw, json)
Hash identifier: DlcrY1W+gVHO0cYHKxu2vHc51cOzbK0DL7dSDKMqbcs=
Subject key identifier: 9E:F7:12:15:5C:46:A0:5B:F5:20:D8:44:02:EC:66:F3:45:A0:B3:00
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 5C256BA50B787329E69F136F1CFAC36A115A1A
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
Signing time: Sun 22 Mar 2026 15:35:44 +0000
ROA not before: Sun 22 Mar 2026 15:30:44 +0000
ROA not after: Sun 21 Mar 2027 15:35:44 +0000
asID: 4766
IP address blocks: 82.23.240.0/24 maxlen: 24
82.24.209.0/24 maxlen: 24
82.24.219.0/24 maxlen: 24
82.24.233.0/24 maxlen: 24
82.24.250.0/24 maxlen: 24
82.25.211.0/24 maxlen: 24
84.75.2.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:43:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:25:6b:a5:0b:78:73:29:e6:9f:13:6f:1c:fa:c3:6a:11:5a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 22 15:30:44 2026 GMT
Not After : Mar 21 15:35:44 2027 GMT
Subject: CN=9EF712155C46A05BF520D84402EC66F345A0B300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9e:87:30:6d:48:6f:89:e4:a8:08:9a:cb:a4:
c1:71:8f:23:37:cc:0c:c3:53:4e:15:e0:f4:93:7c:
86:24:09:a8:1a:10:4e:3f:a8:7a:e7:f0:dc:2b:ae:
1b:b3:6e:bf:42:1d:9b:30:c5:f8:de:42:2c:05:70:
26:3e:1a:dc:0a:6b:8b:b9:b9:7b:51:dd:c2:d1:9e:
3b:ff:1f:b0:95:79:b4:9d:b1:d0:36:4f:e9:47:5e:
a6:fa:c4:5b:90:4e:2e:ba:01:d5:cb:39:f5:ce:50:
fe:c9:b0:e6:53:2a:28:16:a2:c3:e4:3a:21:0c:20:
fe:2c:7e:a2:29:29:e1:02:72:b1:36:52:f4:13:e3:
89:86:7a:cc:25:91:45:5c:cd:46:77:6e:3a:a0:d7:
3c:85:2a:32:94:a9:55:cf:d2:b5:a1:91:f2:4a:40:
a8:b5:2d:bb:bc:28:6b:76:fc:57:d3:10:36:e0:ed:
1b:5d:a6:35:8f:c3:0f:a2:80:96:b5:cf:b8:b9:e3:
f8:f3:46:da:95:57:66:c1:fc:a1:3e:74:0e:47:de:
8a:48:2c:18:61:e0:4f:e5:b4:65:cc:d6:74:de:7b:
88:f9:22:76:81:e1:3a:fa:c1:33:f6:86:93:35:15:
6b:b7:6b:d3:5c:38:76:f6:75:1e:9b:fc:cb:93:6f:
2c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:F7:12:15:5C:46:A0:5B:F5:20:D8:44:02:EC:66:F3:45:A0:B3:00
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS4766.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.240.0/24
82.24.209.0/24
82.24.219.0/24
82.24.233.0/24
82.24.250.0/24
82.25.211.0/24
84.75.2.0/23
Signature Algorithm: sha256WithRSAEncryption
07:a9:de:49:e5:49:46:f2:1d:dc:67:65:27:c0:f7:e6:24:28:
f4:db:b5:b0:aa:82:0d:a1:ff:b3:d6:30:46:54:54:34:c5:0f:
e9:4f:22:96:f0:0e:35:06:b3:81:e5:88:f5:b9:44:fe:3a:d1:
41:c9:e7:a0:11:9f:15:b6:d2:ff:f6:be:a6:2c:8f:a5:c1:9f:
d3:dd:17:52:e1:f6:87:2e:d3:67:7d:b5:30:e0:82:4c:c1:9e:
bc:22:aa:5a:e0:d5:b2:90:8e:e5:2b:7f:07:ed:75:6e:90:d2:
50:3c:a9:75:81:8f:46:40:04:1c:26:ea:e6:67:e6:72:e0:2d:
ea:32:6c:ff:1d:3e:5a:04:87:34:b1:b2:ee:47:8a:f0:4f:bc:
97:2f:67:38:93:a3:0e:4a:f2:0f:b4:73:f5:ce:c4:f8:ce:51:
69:20:d5:cc:86:f5:f4:39:57:2d:43:3a:1e:9d:bd:81:82:4d:
47:d2:dc:b0:bd:22:51:56:0f:ac:71:c7:b9:22:bd:8c:a3:89:
9d:a9:27:9c:83:b5:bd:10:21:4a:60:bc:c1:ac:01:4a:1e:ef:
60:b0:8e:6f:f8:3b:e9:cf:44:a2:31:50:c2:d6:a6:8f:2c:79:
ff:43:31:d3:01:76:e3:e6:48:3e:e3:83:8e:65:92:9d:88:ae:
81:e4:47:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:33:50 2026 by rpki-client