Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS207836.roa
File: AS207836.roa (raw, json)
Hash identifier: W8VKI2rEznRgaIRa5hVNybpWm4WfDpeNTL03OJGal00=
Subject key identifier: 68:10:BB:A0:88:A4:87:C0:8C:CD:5A:33:F9:9B:75:96:73:CA:B2:D5
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 57B661230F7BB7E92EF5EEB0F8877193398FC895
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS207836.roa
Signing time: Tue 05 May 2026 02:15:50 +0000
ROA not before: Tue 05 May 2026 02:10:50 +0000
ROA not after: Tue 04 May 2027 02:15:50 +0000
asID: 207836
IP address blocks: 2a14:7580:400::/40 maxlen: 48
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 08:48:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:b6:61:23:0f:7b:b7:e9:2e:f5:ee:b0:f8:87:71:93:39:8f:c8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: May 5 02:10:50 2026 GMT
Not After : May 4 02:15:50 2027 GMT
Subject: CN=6810BBA088A487C08CCD5A33F99B759673CAB2D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ad:c9:36:49:8d:e7:d1:c9:75:cc:bd:34:67:
85:dc:13:91:57:f9:2b:91:69:68:af:cf:90:4a:e2:
3d:af:b0:e5:6d:93:2f:cf:c3:1b:43:02:0a:eb:2e:
d3:28:71:63:d6:f6:7c:c1:11:d5:0b:55:68:c2:7a:
3d:ed:ae:7e:f2:df:55:58:03:a4:e2:6f:e0:ec:d6:
b2:ce:31:d4:bd:5a:ac:51:0a:40:51:c8:66:75:8a:
94:d4:ab:96:d8:d5:78:83:6e:e2:ee:b7:af:00:71:
f9:2b:80:cb:84:19:7a:b4:aa:26:a8:21:e9:19:64:
8c:bf:05:c8:f7:45:d1:c6:9c:26:01:54:ce:c3:0b:
db:c9:b3:04:55:b5:d5:01:bb:f4:f2:b1:b2:22:ba:
f1:5a:45:43:f3:67:e6:49:b1:25:84:b9:4f:d8:f4:
68:2b:ef:97:c3:2e:9e:02:47:58:4b:bf:04:38:93:
61:fc:c7:5a:60:97:46:d4:59:1b:5f:ed:8f:68:2c:
0d:9e:fe:ea:60:8a:dd:ec:eb:3f:78:22:d4:e6:9c:
97:82:9d:6f:38:d9:5c:ac:aa:9c:20:f4:0e:ff:82:
71:46:32:c3:7e:27:b2:c7:6c:90:98:86:ec:24:c3:
de:73:cf:0a:9d:e5:1b:49:86:12:0c:67:a6:e6:67:
1b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:10:BB:A0:88:A4:87:C0:8C:CD:5A:33:F9:9B:75:96:73:CA:B2:D5
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS207836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:400::/40
Signature Algorithm: sha256WithRSAEncryption
9b:52:de:15:55:ad:2d:f5:c1:85:59:33:99:24:f6:3d:69:37:
9f:13:51:55:ac:b4:6f:18:c0:8c:7d:96:b7:af:d8:36:e4:f2:
3d:da:1a:27:08:a8:62:d3:57:4e:d1:e0:ac:79:04:76:86:0f:
b4:84:fb:eb:88:c2:c2:ee:b3:0c:53:0b:54:19:fd:d2:70:7b:
f9:42:5e:86:3f:f9:95:a7:fb:a9:6c:bc:39:9f:b5:62:d1:e2:
4b:6a:01:1b:23:96:c4:04:02:91:1d:aa:22:6b:b1:ec:d3:69:
65:cc:cc:1c:28:31:a0:7a:5f:d8:31:99:3d:22:23:dd:89:b3:
8c:4a:60:83:27:b5:2d:5d:8b:85:bf:f6:26:06:2e:e0:77:eb:
69:46:e3:6d:39:4c:7c:9c:67:7a:41:de:79:3d:7b:a8:f6:46:
52:47:8c:8b:14:b3:1f:26:f8:de:1d:e7:e0:27:dd:38:bc:ad:
0e:6d:4d:63:10:33:84:d0:a7:93:1a:36:90:02:a6:df:57:01:
4a:3c:8a:f5:7c:f2:a2:b2:c4:25:40:89:f8:0c:0e:e5:76:2c:
75:fe:64:41:ee:ed:ce:b9:63:92:e8:41:78:bc:b7:c8:93:b4:
f8:00:36:f6:b3:7c:56:d9:aa:ef:91:ea:bd:d9:e8:28:74:9a:
13:ce:a2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:33:02 2026 by rpki-client