Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49791.roa
File: AS49791.roa (raw, json)
Hash identifier: 81lccSeoL27D8Jtj3FIWLu2n/rEKnk3xxNk4K62/fy8=
Subject key identifier: CB:18:DA:4B:FB:A5:75:DD:5E:50:AB:82:17:45:26:D8:27:F9:5F:47
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7E7E8637E40AEFA7BDC9D56A5AD5EAC656EEC853
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49791.roa
Signing time: Tue 12 May 2026 17:26:00 +0000
ROA not before: Tue 12 May 2026 17:21:00 +0000
ROA not after: Tue 11 May 2027 17:26:00 +0000
asID: 49791
IP address blocks: 82.22.40.0/23 maxlen: 23
82.40.62.0/23 maxlen: 24
82.41.30.0/23 maxlen: 23
84.75.220.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:7e:86:37:e4:0a:ef:a7:bd:c9:d5:6a:5a:d5:ea:c6:56:ee:c8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: May 12 17:21:00 2026 GMT
Not After : May 11 17:26:00 2027 GMT
Subject: CN=CB18DA4BFBA575DD5E50AB82174526D827F95F47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6a:3f:ae:3e:91:5f:bb:db:94:84:26:01:8a:
e7:d1:0f:4c:a7:1b:ac:89:0d:fc:86:83:5c:e8:14:
4c:fb:04:fb:bb:2e:8a:f0:a1:15:63:c8:7e:bb:a7:
1c:e7:04:a2:23:9e:53:17:f3:8f:0c:07:56:80:26:
ff:a0:e0:d1:b4:e9:56:cf:ee:37:83:b3:c1:b4:ca:
4e:07:4b:1d:6d:bb:c0:ae:22:5d:fe:8f:2e:43:e6:
6e:9e:b5:4e:a6:6b:6f:a2:d5:75:25:86:aa:b1:8f:
cd:76:fc:04:10:8d:1a:cd:2a:43:7e:ef:64:fd:d8:
23:ee:58:93:00:c7:bc:34:7d:b4:ab:6c:ff:78:f7:
29:55:aa:ba:e1:3a:db:51:9f:ad:be:3a:f7:84:f7:
d9:5c:a8:dc:bc:fe:94:4b:60:50:76:1f:29:5e:59:
c3:dc:a2:5b:dc:cd:52:8d:6b:ca:cb:5a:20:8e:0f:
98:28:0e:9e:be:0b:c5:d2:e2:de:5b:76:16:31:38:
08:39:e9:fa:b0:48:ce:4b:49:18:4d:ed:7e:2f:5e:
7f:a2:d0:e4:2b:71:2f:8f:3c:3d:8d:96:6e:fa:9d:
0d:7f:a7:06:31:f6:17:2b:41:9b:a1:fd:32:58:16:
ef:42:81:58:60:f0:0e:15:35:b3:24:65:10:7c:d8:
c6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:18:DA:4B:FB:A5:75:DD:5E:50:AB:82:17:45:26:D8:27:F9:5F:47
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS49791.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.40.0/23
82.40.62.0/23
82.41.30.0/23
84.75.220.0/23
Signature Algorithm: sha256WithRSAEncryption
14:5c:d3:f8:63:6b:d6:9b:19:ef:3e:89:36:6f:a1:82:ae:4e:
54:86:0d:a1:19:d1:37:ad:1c:14:ba:18:8c:a0:8b:b2:b3:3b:
ee:39:88:17:8f:bb:b6:4f:38:bf:ac:42:85:1b:a4:3d:20:87:
18:2d:27:bf:29:8b:6e:9d:5a:39:d1:6f:2b:5d:53:cf:ef:32:
9c:32:ca:fc:43:44:59:94:4f:d0:6f:63:d1:e8:55:69:bf:7b:
78:ae:dc:7b:69:c0:5f:5d:b4:64:75:ea:e4:e6:08:b0:8a:69:
0b:11:57:01:99:3c:97:7b:c4:df:a0:17:92:97:8a:14:66:88:
ab:6e:dd:47:58:b5:99:49:d9:dc:b1:50:3b:45:54:f2:19:f2:
8b:09:d3:67:2e:57:26:1f:64:d7:02:36:0f:c0:83:9c:60:e1:
c1:cc:46:d6:7e:92:70:c5:43:20:0c:08:24:ad:32:e1:e2:6e:
ee:56:22:94:56:89:71:49:34:09:7f:dc:e3:75:41:8e:4b:cc:
b5:06:4e:04:50:63:7f:32:8d:4a:c2:5d:1b:fc:ad:9d:5b:27:
da:4e:5b:04:55:43:5b:dc:f8:c0:05:a4:d6:bf:bb:a0:1b:ef:
cd:9b:05:e6:f8:91:5c:6c:eb:b5:4f:73:5a:9b:fa:dd:de:7b:
1a:a2:61:17
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUfn6GN+QK76e9ydVqWtXqxlbuyFMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni
M2NmZGQwMTAeFw0yNjA1MTIxNzIxMDBaFw0yNzA1MTExNzI2MDBaMDMxMTAvBgNV
BAMTKENCMThEQTRCRkJBNTc1REQ1RTUwQUI4MjE3NDUyNkQ4MjdGOTVGNDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8aj+uPpFfu9uUhCYBiufRD0yn
G6yJDfyGg1zoFEz7BPu7LorwoRVjyH67pxznBKIjnlMX848MB1aAJv+g4NG06VbP
7jeDs8G0yk4HSx1tu8CuIl3+jy5D5m6etU6ma2+i1XUlhqqxj812/AQQjRrNKkN+
72T92CPuWJMAx7w0fbSrbP949ylVqrrhOttRn62+OveE99lcqNy8/pRLYFB2Hyle
WcPcolvczVKNa8rLWiCOD5goDp6+C8XS4t5bdhYxOAg56fqwSM5LSRhN7X4vXn+i
0OQrcS+PPD2Nlm76nQ1/pwYx9hcrQZuh/TJYFu9CgVhg8A4VNbMkZRB82MYXAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUyxjaS/uldd1eUKuCF0Um2Cf5X0cwHwYDVR0j
BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx
YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ
UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt
NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDk3OTEucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAFSFigD
BAFSKD4DBAFSKR4DBAFUS9wwDQYJKoZIhvcNAQELBQADggEBABRc0/hja9abGe8+
iTZvoYKuTlSGDaEZ0TetHBS6GIygi7KzO+45iBePu7ZPOL+sQoUbpD0ghxgtJ78p
i26dWjnRbytdU8/vMpwyyvxDRFmUT9BvY9HoVWm/e3iu3HtpwF9dtGR16uTmCLCK
aQsRVwGZPJd7xN+gF5KXihRmiKtu3UdYtZlJ2dyxUDtFVPIZ8osJ02cuVyYfZNcC
Ng/Ag5xg4cHMRtZ+knDFQyAMCCStMuHibu5WIpRWiXFJNAl/3ON1QY5LzLUGTgRQ
Y38yjUrCXRv8rZ1bJ9pOWwRVQ1vc+MAFpNa/u6Ab782bBeb4kVxs67VPc1qb+t3e
exqiYRc=
-----END CERTIFICATE-----
Generated at Wed May 13 02:45:08 2026 by rpki-client