Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57076.roa
File: AS57076.roa (raw, json)
Hash identifier: HXta5CwJwFvkRNf8MeQsKMRUhiH1uwE1gYkl6Mi9A5c=
Subject key identifier: C9:02:46:92:73:71:B9:B6:6E:D6:03:89:CB:3E:9E:EC:04:9D:15:43
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 716813A8E364A27F2107347EA1FB3CB4195049A9
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57076.roa
Signing time: Fri 13 Mar 2026 17:20:05 +0000
ROA not before: Fri 13 Mar 2026 17:15:05 +0000
ROA not after: Fri 12 Mar 2027 17:20:05 +0000
asID: 57076
IP address blocks: 82.40.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:68:13:a8:e3:64:a2:7f:21:07:34:7e:a1:fb:3c:b4:19:50:49:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 13 17:15:05 2026 GMT
Not After : Mar 12 17:20:05 2027 GMT
Subject: CN=C90246927371B9B66ED60389CB3E9EEC049D1543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:3b:bd:94:c8:85:22:56:54:d6:aa:30:0f:
0f:6f:84:a9:22:98:2e:9f:e4:e8:b7:f6:b8:5c:09:
60:4e:c5:da:20:66:fc:09:9e:59:52:b2:2b:35:71:
c9:1d:a5:14:4d:9a:8c:45:db:14:7f:e6:60:e6:33:
a9:84:eb:34:3c:9c:16:ba:b7:98:16:d7:2e:fe:55:
7f:a5:92:0c:08:e1:ab:1d:1f:ef:3e:89:da:56:b1:
4d:06:2f:2d:87:3e:d3:61:05:2f:d6:02:11:1d:21:
a4:76:4b:55:e2:3c:88:e2:c2:bc:e8:3e:1d:6c:6f:
62:85:12:9d:0e:0e:39:bd:89:29:d6:1c:c6:61:9a:
22:7c:7c:b9:f6:df:52:8d:4f:5e:ac:00:ce:01:83:
ac:a8:ac:3e:b3:89:26:be:06:8a:61:f0:93:47:f0:
78:96:09:9b:43:e1:3e:5b:90:77:ca:ea:43:3d:82:
35:3e:23:aa:da:bc:34:b8:83:58:29:e2:51:91:18:
9b:8e:3d:c8:58:e9:e0:83:83:63:01:dc:f8:97:66:
3d:f4:18:cc:54:10:19:0c:1d:8b:61:ff:24:d2:59:
1e:bb:c8:7a:05:96:20:f2:a4:12:c7:46:3c:66:2e:
d9:2e:63:20:38:40:84:9a:57:ed:13:96:a2:27:e1:
41:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:02:46:92:73:71:B9:B6:6E:D6:03:89:CB:3E:9E:EC:04:9D:15:43
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS57076.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.40.55.0/24
Signature Algorithm: sha256WithRSAEncryption
38:2a:5d:6b:bf:f4:52:71:f1:f0:17:d3:83:29:9a:0a:fe:ca:
e5:57:9b:10:57:3f:8e:5d:ce:f4:83:ea:92:f3:1d:a4:c1:ce:
d0:ba:0e:bb:34:18:81:e1:e8:34:f8:1e:7a:cd:4d:81:dc:ff:
75:4f:2c:82:d8:6c:8c:af:9d:f8:d6:63:a6:10:f7:61:e3:b8:
3f:80:8a:4d:17:d8:d4:c1:48:b7:bd:9c:af:86:94:36:80:96:
af:a8:ec:36:75:6c:f7:0a:ef:c0:b0:8f:8f:e6:5b:e4:94:b5:
43:c5:45:1a:72:d0:3c:a2:15:dc:c3:ea:c5:c7:b1:71:71:7c:
13:94:bb:64:a6:89:e2:92:0b:75:85:96:8b:75:d1:d2:77:9d:
6a:5b:fe:8e:20:69:a2:ed:07:ce:89:47:08:d3:a2:cb:23:87:
e9:44:e1:fb:74:3f:9c:1c:9e:d9:39:44:50:b2:ea:7b:89:a1:
39:b1:7d:ee:03:c4:8f:a5:53:7c:01:39:33:66:2f:24:dd:a4:
ad:3a:db:c7:99:cc:08:4c:3a:c4:2c:78:e4:27:d1:4f:35:db:
e9:97:42:31:c6:50:16:44:d2:cd:d8:c8:a1:9f:a0:94:ac:d9:
34:8f:3f:22:b9:25:85:d1:da:9b:24:da:29:08:01:4e:b2:b3:
c1:bf:35:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:34:49 2026 by rpki-client