Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
File: AS205886.roa (raw, json)
Hash identifier: 1UMLqtn2U46mHMbK4HA+h4Ujz67jm903Q7CxawWLzb4=
Subject key identifier: 61:05:B7:73:16:CF:DC:55:01:8A:2E:0F:DE:4A:56:51:08:97:BC:A4
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 5D8511B5B63548BF1D2E88C44D9AA1FF97B292E7
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
Signing time: Sat 18 Oct 2025 09:16:39 +0000
ROA not before: Sat 18 Oct 2025 09:11:39 +0000
ROA not after: Sat 17 Oct 2026 09:16:39 +0000
asID: 205886
IP address blocks: 82.139.192.0/24 maxlen: 24
82.139.207.0/24 maxlen: 24
82.139.218.0/24 maxlen: 24
82.139.236.0/24 maxlen: 24
82.139.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:85:11:b5:b6:35:48:bf:1d:2e:88:c4:4d:9a:a1:ff:97:b2:92:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Oct 18 09:11:39 2025 GMT
Not After : Oct 17 09:16:39 2026 GMT
Subject: CN=6105B77316CFDC55018A2E0FDE4A56510897BCA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:99:af:ba:a4:5f:7b:05:43:04:a0:cc:a3:65:
82:33:91:43:57:92:cc:28:f9:9a:86:67:16:08:e4:
06:40:0c:43:aa:9c:45:50:41:d8:90:03:d8:64:b9:
98:87:9b:26:5a:0a:df:9c:95:75:23:ef:09:88:d1:
97:4c:a0:1d:36:5e:24:63:01:13:3c:28:d9:7f:a7:
75:4b:c7:9e:20:bf:bd:34:74:b5:28:fc:7d:97:23:
e0:ab:e6:d4:6a:b7:5c:0f:48:b5:be:c0:f2:ac:e2:
53:95:9c:6e:3d:56:72:e5:c7:dc:8b:c1:c5:97:63:
71:f1:99:82:88:a1:a3:92:8d:ea:c3:83:1f:b2:f6:
ed:c0:b9:a8:5d:4a:99:ce:f4:f0:52:9c:8a:5c:50:
94:2c:6d:93:b9:7d:39:27:d3:03:ec:f1:c7:db:6b:
80:1d:a8:2b:0a:22:2c:64:2a:de:a7:a9:59:db:75:
02:49:fe:95:8b:7d:cc:d8:87:bc:c2:c1:b1:99:20:
72:e7:5d:96:b1:4e:d0:a8:49:4b:87:7e:1d:54:74:
52:39:7c:ba:78:5d:59:41:15:c0:24:f6:2f:a3:21:
5c:f5:bb:4c:f6:fa:dc:c7:63:8a:2d:7f:20:1f:24:
ef:39:a3:80:e4:b3:97:41:37:df:11:26:32:63:6d:
12:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:05:B7:73:16:CF:DC:55:01:8A:2E:0F:DE:4A:56:51:08:97:BC:A4
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.139.192.0/24
82.139.207.0/24
82.139.218.0/24
82.139.236.0/24
82.139.250.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e2:71:4f:bd:d0:84:06:f1:a2:96:e2:bf:46:83:3a:e1:92:
eb:51:13:c6:f7:2e:48:78:5d:2c:4d:5a:98:46:3f:d5:db:ef:
58:bb:06:93:2f:c4:cd:8b:4c:df:de:c8:2a:f5:b9:e2:89:b6:
6d:86:d2:4b:35:6a:38:57:70:a6:b8:b1:4c:73:58:88:91:f4:
0a:c6:2e:57:31:3e:35:5c:c9:55:2c:54:2f:73:28:92:ed:c6:
46:9e:60:7c:04:ff:49:da:0c:6a:f4:8c:e6:ec:d4:6e:3f:67:
ca:2f:ab:4a:ec:fe:ec:bd:61:73:7b:b3:d9:75:57:8e:06:30:
23:c8:a9:66:25:58:4e:95:26:ce:41:c8:c7:65:c8:43:3b:ef:
df:fb:49:b8:e7:a7:2c:c5:66:24:ff:93:5d:58:78:96:01:f1:
98:99:f2:53:10:78:8d:a1:ef:64:3c:f0:46:91:27:0a:dd:1b:
be:ed:d9:22:ba:15:fc:6b:16:20:32:a5:06:ef:ee:9a:16:99:
55:b7:ad:11:b3:ed:e8:64:23:85:ae:2c:8c:74:c3:6f:38:8f:
79:3f:99:3a:13:3c:02:70:27:49:f7:eb:90:2e:df:d0:f4:49:
57:b1:6d:e0:1f:7f:b5:83:be:c2:ff:43:eb:f1:0b:8c:64:d8:
95:55:63:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:25:19 2025 by rpki-client