Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
File: AS48266.roa (raw, json)
Hash identifier: gjTWNnIYMOZkLL7TXoya7oBOGym+9BOVO3XB4MdQ8XM=
Subject key identifier: 54:7B:07:C9:D2:79:44:E0:64:F4:A1:AF:4E:E2:81:59:95:23:A0:71
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 1B76C532BC35FE2CDD2BEEEFA4C3D9686E38DA7E
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
Signing time: Tue 12 May 2026 17:39:49 +0000
ROA not before: Tue 12 May 2026 17:34:49 +0000
ROA not after: Tue 11 May 2027 17:39:49 +0000
asID: 48266
IP address blocks: 82.25.33.0/24 maxlen: 24
82.25.40.0/24 maxlen: 24
82.38.121.0/24 maxlen: 24
82.39.150.0/24 maxlen: 24
82.47.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:76:c5:32:bc:35:fe:2c:dd:2b:ee:ef:a4:c3:d9:68:6e:38:da:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 12 17:34:49 2026 GMT
Not After : May 11 17:39:49 2027 GMT
Subject: CN=547B07C9D27944E064F4A1AF4EE281599523A071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:85:c0:60:83:0d:ce:aa:a9:49:1c:0d:f7:c1:
ea:45:5c:d2:c8:c8:a0:9b:0b:76:6e:6f:46:80:b8:
2a:86:3c:a7:2a:46:dd:1c:5c:b1:3c:4d:9a:21:06:
cd:1a:54:e4:f2:d0:3a:99:ba:2c:be:11:9e:ea:ac:
72:ae:45:37:83:1b:48:fd:c5:bd:fb:15:35:ac:35:
0f:cf:58:a7:c1:32:36:9d:34:99:a4:58:d4:20:c1:
28:8d:11:cc:71:6c:48:ce:03:d5:6f:e7:01:56:d3:
82:8e:3c:88:b2:83:6d:5d:ec:91:e1:38:36:9d:1b:
af:fc:87:3c:b4:a6:ae:f4:91:1f:58:4a:8a:64:5d:
17:d9:71:ec:4d:dd:d2:fe:6b:f5:c1:71:2c:dc:59:
cb:4c:ad:a0:22:85:be:e2:1b:5e:ca:38:68:b9:02:
1a:1c:cb:46:ce:7b:19:5c:0b:e8:8d:70:18:0b:07:
60:7a:25:7d:e1:08:bf:69:e8:1b:5f:5e:af:b1:ee:
ee:5f:5a:e8:e9:7a:5d:51:22:84:7c:85:70:b8:c1:
3e:90:25:42:47:ab:9a:1d:8e:36:01:8e:1c:65:03:
0c:b2:34:e2:56:97:24:e1:c7:61:18:58:f4:0c:d5:
99:7f:f0:52:f2:df:91:94:72:d6:82:4c:90:2d:9c:
d5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7B:07:C9:D2:79:44:E0:64:F4:A1:AF:4E:E2:81:59:95:23:A0:71
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS48266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.33.0/24
82.25.40.0/24
82.38.121.0/24
82.39.150.0/24
82.47.47.0/24
Signature Algorithm: sha256WithRSAEncryption
00:ee:78:17:f0:72:18:a8:9e:a9:e0:e4:7f:b8:e0:6f:80:b9:
2d:f9:8f:c1:a4:67:73:97:ce:76:a2:1e:22:52:48:39:0c:da:
20:2e:a3:c6:bf:45:7e:b2:f2:97:9b:ee:b2:ec:9a:04:20:80:
e3:5f:8d:a0:be:e1:af:79:ea:f2:f6:a9:35:6f:97:55:ac:2f:
5f:9c:8f:eb:13:3a:90:a1:38:1f:e6:4e:6f:60:ef:dd:3d:e7:
9c:bb:77:35:9b:d7:12:be:46:7c:a9:89:fc:26:36:a6:ac:17:
13:a9:44:c6:7c:38:bd:19:4d:b8:51:44:59:7f:06:99:26:fc:
33:de:8e:52:44:32:b0:73:87:30:2f:5e:84:7d:98:91:69:64:
df:2b:f9:a2:de:a2:be:58:d6:b4:92:be:cc:7b:81:9c:27:ee:
3b:34:7e:09:e6:83:90:e6:50:8b:0f:81:e9:9b:af:e7:71:67:
b7:12:96:f4:5d:e8:cb:f6:2b:36:df:b2:61:84:d4:16:f8:70:
b5:e2:12:65:f0:45:2f:78:55:f5:44:36:70:f7:aa:24:ab:82:
76:76:bd:04:f4:66:b8:1b:46:fa:fc:46:14:ad:05:0b:73:1c:
9a:e6:ab:f4:5c:8d:28:bc:60:dd:23:cf:30:41:f6:0f:5d:a7:
30:cb:90:cf
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgIUG3bFMrw1/izdK+7vpMPZaG442n4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MTIxNzM0NDlaFw0yNzA1MTExNzM5NDlaMDMxMTAvBgNV
BAMTKDU0N0IwN0M5RDI3OTQ0RTA2NEY0QTFBRjRFRTI4MTU5OTUyM0EwNzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCihcBggw3OqqlJHA33wepFXNLI
yKCbC3Zub0aAuCqGPKcqRt0cXLE8TZohBs0aVOTy0DqZuiy+EZ7qrHKuRTeDG0j9
xb37FTWsNQ/PWKfBMjadNJmkWNQgwSiNEcxxbEjOA9Vv5wFW04KOPIiyg21d7JHh
ODadG6/8hzy0pq70kR9YSopkXRfZcexN3dL+a/XBcSzcWctMraAihb7iG17KOGi5
Ahocy0bOexlcC+iNcBgLB2B6JX3hCL9p6BtfXq+x7u5fWujpel1RIoR8hXC4wT6Q
JUJHq5odjjYBjhxlAwyyNOJWlyThx2EYWPQM1Zl/8FLy35GUctaCTJAtnNWHAgMB
AAGjggIhMIICHTAdBgNVHQ4EFgQUVHsHydJ5ROBk9KGvTuKBWZUjoHEwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDgyNjYucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNwYIKwYBBQUHAQcBAf8EKDAmMCQEAgABMB4DBABSGSED
BABSGSgDBABSJnkDBABSJ5YDBABSLy8wDQYJKoZIhvcNAQELBQADggEBAADueBfw
chionqng5H+44G+AuS35j8GkZ3OXznaiHiJSSDkM2iAuo8a/RX6y8peb7rLsmgQg
gONfjaC+4a956vL2qTVvl1WsL1+cj+sTOpChOB/mTm9g790955y7dzWb1xK+Rnyp
ifwmNqasFxOpRMZ8OL0ZTbhRRFl/Bpkm/DPejlJEMrBzhzAvXoR9mJFpZN8r+aLe
or5Y1rSSvsx7gZwn7js0fgnmg5DmUIsPgembr+dxZ7cSlvRd6Mv2KzbfsmGE1Bb4
cLXiEmXwRS94VfVENnD3qiSrgnZ2vQT0ZrgbRvr8RhStBQtzHJrmq/RcjSi8YN0j
zzBB9g9dpzDLkM8=
-----END CERTIFICATE-----
Generated at Tue May 12 22:23:12 2026 by rpki-client