Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS200464.roa
File: AS200464.roa (raw, json)
Hash identifier: soFvwaeX3lWNuKZ3NWUpgJk42Dv4sgxFXy8b47Di7LE=
Subject key identifier: E6:62:F8:33:44:03:FE:D6:AE:3A:C1:94:88:01:2D:D2:4E:9F:55:31
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 737D8F75E9F2DDFFDEF717245470F458DDB12DF8
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS200464.roa
Signing time: Tue 10 Mar 2026 11:47:44 +0000
ROA not before: Tue 10 Mar 2026 11:42:44 +0000
ROA not after: Tue 09 Mar 2027 11:47:44 +0000
asID: 200464
IP address blocks: 2a14:7581:ffa::/48 maxlen: 48
2a14:7583:e700::/40 maxlen: 48
2a14:7583:e700::/41 maxlen: 48
2a14:7583:e700::/48 maxlen: 48
2a14:7583:e780::/41 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:06:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:7d:8f:75:e9:f2:dd:ff:de:f7:17:24:54:70:f4:58:dd:b1:2d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Mar 10 11:42:44 2026 GMT
Not After : Mar 9 11:47:44 2027 GMT
Subject: CN=E662F8334403FED6AE3AC19488012DD24E9F5531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ac:66:59:ca:45:be:11:5f:81:08:93:c8:85:
ec:9e:8d:bb:0d:57:e2:71:e8:bf:c4:91:29:f3:f4:
47:8c:9c:3d:1e:d1:2f:29:6a:f7:95:db:3e:8e:5f:
43:ef:e6:4f:25:ef:17:75:97:e0:95:8d:26:94:6a:
89:2c:eb:5a:76:96:4b:c1:29:d7:22:b4:a0:21:51:
fb:14:28:9a:ae:03:77:da:53:16:cb:d7:91:1a:8a:
88:61:08:8d:e5:1c:03:b1:18:5f:10:ea:f2:fd:c8:
96:27:bf:74:94:c4:39:68:84:3b:0c:18:1d:01:79:
76:55:2a:2e:79:c1:01:bf:de:f6:59:13:5b:d8:64:
cd:6b:08:e9:e5:02:04:cf:2b:19:5c:c9:ed:ad:dd:
6c:b1:e4:c5:c5:2a:7e:28:63:21:c8:d1:e8:90:8e:
fe:17:7b:49:0e:91:0e:ef:e8:1c:77:db:65:05:05:
bf:d4:56:be:75:9e:be:bc:f8:71:f2:1d:ab:dc:85:
2f:dc:60:0f:e9:f5:32:d0:ba:6c:e8:95:7e:56:fb:
a3:0e:2e:c0:ae:9f:1b:a4:d2:34:2d:e5:57:51:53:
33:48:93:da:85:40:59:4f:7d:fa:b3:eb:f2:9a:e3:
b1:79:f1:35:a6:77:8c:ad:93:88:f7:f1:c2:8b:d2:
95:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:62:F8:33:44:03:FE:D6:AE:3A:C1:94:88:01:2D:D2:4E:9F:55:31
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS200464.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7581:ffa::/48
2a14:7583:e700::/40
Signature Algorithm: sha256WithRSAEncryption
3a:0b:4a:4f:d5:05:dc:15:48:ba:33:b2:cc:a1:21:22:08:18:
c7:69:63:8a:c3:1f:a0:08:04:5d:0a:1e:3c:2b:d5:5a:69:68:
1e:6e:c7:16:a1:ae:a2:01:8e:c7:a8:33:3f:94:b6:11:81:83:
a3:be:ff:8c:a5:72:0b:69:f7:eb:cf:b0:ec:77:2c:f7:3f:60:
43:bf:96:19:bc:e3:be:df:1e:c4:dd:16:75:18:aa:4e:3c:f1:
e7:8c:13:61:a3:72:68:ae:5d:c2:03:5b:41:f6:bd:d2:4f:5d:
5e:6c:e4:87:31:32:05:18:9d:43:64:30:26:4f:1c:54:0b:1a:
e8:0b:b7:0f:f3:9c:c1:67:d4:20:71:41:ef:b7:1c:8e:b0:c9:
77:5b:7a:ee:b3:6f:76:43:f2:56:48:51:f6:18:b2:7d:06:03:
cb:b7:f4:51:dc:22:bb:15:ce:be:30:4a:63:4d:a8:6e:0a:de:
2c:79:34:65:a0:9a:83:ce:b5:4c:0a:fd:49:6b:ad:5b:eb:a6:
56:19:93:43:3b:58:c1:55:d8:fd:bd:36:78:4a:40:03:09:80:
e3:ad:b6:7a:ba:4f:f7:26:34:38:b3:f5:60:cb:00:82:f2:cb:
35:d9:8b:96:3f:96:a8:86:66:14:8e:dc:3c:5a:d5:c0:a6:4f:
4f:fc:1b:0a
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIUc32Pdeny3f/e9xckVHD0WN2xLfgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYTgzZDQ4NjUyZjNiMmRmNzRmNmJmOWJhYThhOWMxNzRj
Y2ZkMzc3MjAeFw0yNjAzMTAxMTQyNDRaFw0yNzAzMDkxMTQ3NDRaMDMxMTAvBgNV
BAMTKEU2NjJGODMzNDQwM0ZFRDZBRTNBQzE5NDg4MDEyREQyNEU5RjU1MzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPrGZZykW+EV+BCJPIheyejbsN
V+Jx6L/EkSnz9EeMnD0e0S8paveV2z6OX0Pv5k8l7xd1l+CVjSaUaoks61p2lkvB
KdcitKAhUfsUKJquA3faUxbL15EaiohhCI3lHAOxGF8Q6vL9yJYnv3SUxDlohDsM
GB0BeXZVKi55wQG/3vZZE1vYZM1rCOnlAgTPKxlcye2t3Wyx5MXFKn4oYyHI0eiQ
jv4Xe0kOkQ7v6Bx322UFBb/UVr51nr68+HHyHavchS/cYA/p9TLQumzolX5W+6MO
LsCunxuk0jQt5VdRUzNIk9qFQFlPffqz6/Ka47F58TWmd4ytk4j38cKL0pV7AgMB
AAGjggIVMIICETAdBgNVHQ4EFgQU5mL4M0QD/tauOsGUiAEt0k6fVTEwHwYDVR0j
BBgwFoAUqD1IZS87LfdPa/m6qKnBdMz9N3IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODkyNzBmNmMtYTNmZS00Mjk5LWIwNzktMzA5ZWQ5N2Yz
ODI0LzAvQTgzRDQ4NjUyRjNCMkRGNzRGNkJGOUJBQThBOUMxNzRDQ0ZEMzc3Mi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3FEMUlaUzg3TGZkUGFfbTZxS25CZE16
OU4zSS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5Lzg5MjcwZjZjLWEzZmUt
NDI5OS1iMDc5LTMwOWVkOTdmMzgyNC8wL0FTMjAwNDY0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARAwcAKhR1
gQ/6AwYAKhR1g+cwDQYJKoZIhvcNAQELBQADggEBADoLSk/VBdwVSLozssyhISII
GMdpY4rDH6AIBF0KHjwr1VppaB5uxxahrqIBjseoMz+UthGBg6O+/4ylcgtp9+vP
sOx3LPc/YEO/lhm8477fHsTdFnUYqk488eeME2GjcmiuXcIDW0H2vdJPXV5s5Icx
MgUYnUNkMCZPHFQLGugLtw/znMFn1CBxQe+3HI6wyXdbeu6zb3ZD8lZIUfYYsn0G
A8u39FHcIrsVzr4wSmNNqG4K3ix5NGWgmoPOtUwK/UlrrVvrplYZk0M7WMFV2P29
NnhKQAMJgOOttnq6T/cmNDiz9WDLAILyyzXZi5Y/lqiGZhSO3Dxa1cCmT0/8Gwo=
-----END CERTIFICATE-----
Generated at Thu Mar 26 14:04:31 2026 by rpki-client