Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS62005.roa
File: AS62005.roa (raw, json)
Hash identifier: 9hbBZjkYOwlMZEoZ2vv2fwKpvbkxDIZP/i1Mi7yi/G4=
Subject key identifier: 30:EE:57:72:D6:F5:35:71:2E:ED:90:67:B7:96:BD:95:93:6D:06:16
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 166A8D7C4B12785CCC5EFD66AE26B3BB25A0BEDC
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS62005.roa
Signing time: Thu 23 Apr 2026 10:47:05 +0000
ROA not before: Thu 23 Apr 2026 10:42:05 +0000
ROA not after: Thu 22 Apr 2027 10:47:05 +0000
asID: 62005
IP address blocks: 82.21.222.0/24 maxlen: 24
82.21.229.0/24 maxlen: 24
82.22.236.0/24 maxlen: 24
82.23.219.0/24 maxlen: 24
82.24.226.0/24 maxlen: 24
82.25.224.0/24 maxlen: 24
82.26.216.0/24 maxlen: 24
82.26.222.0/24 maxlen: 24
82.27.212.0/24 maxlen: 24
82.27.236.0/24 maxlen: 24
82.29.216.0/24 maxlen: 24
82.29.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:6a:8d:7c:4b:12:78:5c:cc:5e:fd:66:ae:26:b3:bb:25:a0:be:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 23 10:42:05 2026 GMT
Not After : Apr 22 10:47:05 2027 GMT
Subject: CN=30EE5772D6F535712EED9067B796BD95936D0616
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e9:19:dd:7a:78:b6:41:91:fc:2f:cf:ba:f2:
ca:a6:7b:af:76:c8:db:93:59:6a:c7:79:06:29:be:
15:ea:19:13:b7:f4:65:6b:76:2d:7d:b6:ef:bb:a3:
76:ba:d0:d7:fc:1f:c5:37:68:ed:af:63:3c:21:21:
e1:68:0c:a6:88:83:a8:03:f5:09:d6:02:92:4e:3c:
34:77:4e:68:14:2e:a8:2d:de:d6:46:0f:57:b4:43:
ae:87:b9:40:57:ba:b9:d5:13:4c:fc:f4:45:79:14:
3d:a4:e0:af:0c:ea:dc:f6:ca:04:65:6a:85:df:e7:
fe:29:d4:2a:28:8c:38:f2:26:06:a3:eb:99:ff:21:
73:f6:18:f1:62:b6:a9:c8:9a:53:23:c8:99:dd:c4:
91:d6:a7:88:a0:39:c5:87:91:0b:13:49:d0:73:38:
ad:e3:39:31:94:4c:a7:0d:1e:1a:a4:14:13:17:30:
26:51:c5:30:a3:36:c1:31:70:fc:f2:61:a7:ff:6f:
9e:6c:ef:e6:95:86:a4:9e:e7:ef:1c:72:71:38:13:
e0:47:e3:45:5c:8a:a4:f1:a9:c1:e4:00:d3:a1:c5:
bc:8a:d8:36:c7:1b:24:21:13:b5:57:ec:28:29:ea:
fc:8d:ac:d8:ad:05:c1:71:5f:a7:4d:dd:84:d3:59:
1a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EE:57:72:D6:F5:35:71:2E:ED:90:67:B7:96:BD:95:93:6D:06:16
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS62005.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.21.222.0/24
82.21.229.0/24
82.22.236.0/24
82.23.219.0/24
82.24.226.0/24
82.25.224.0/24
82.26.216.0/24
82.26.222.0/24
82.27.212.0/24
82.27.236.0/24
82.29.216.0/24
82.29.227.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3d:78:34:09:43:9a:dc:98:1f:45:40:bd:c1:24:8f:e7:fe:
2b:58:5a:e2:5f:03:4f:5d:c1:a9:30:69:88:ab:ef:5b:e5:5f:
78:d5:f4:a2:ec:2f:cb:68:35:d9:13:f1:2f:1c:f8:5c:69:ec:
26:ba:a9:24:48:e6:a8:6a:13:ad:20:ef:64:d2:3e:8e:4d:6d:
bf:61:c5:85:fa:9a:f6:dd:cc:f3:20:0b:c0:d8:e8:a7:07:ad:
2a:49:10:bb:49:40:0b:f3:6c:36:d8:76:f7:71:2e:96:bc:ae:
54:0b:ed:29:95:60:f6:82:68:65:b4:0c:c6:ef:68:13:94:ce:
36:85:0f:6a:66:5d:d6:2d:ae:22:26:98:29:2e:1d:74:d3:fd:
8f:7a:73:d5:d5:9f:7e:b4:e2:40:a0:56:86:18:6d:97:c7:8f:
c3:d3:54:25:6d:98:2f:2d:45:b8:36:78:b9:29:18:8d:a2:d9:
cf:58:13:62:5b:c5:09:ff:d4:6f:e2:63:09:25:8f:0f:a7:b8:
60:73:84:c0:40:7f:c4:47:93:15:c1:3f:fb:e9:b9:26:8e:ab:
09:b5:00:4f:2e:f5:c1:86:98:97:42:29:c1:b4:2d:f6:3b:73:
2b:7b:dc:0c:bb:db:b2:a3:a4:52:66:4b:fb:91:89:7c:20:e3:
73:82:56:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:42:54 2026 by rpki-client