Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS205987.roa
File: AS205987.roa (raw, json)
Hash identifier: CqKpet6bN3naPzvPOSA8PVHbot0AAq4uZdn89+Ygf2w=
Subject key identifier: 1B:4A:0E:7B:63:A7:16:2F:B4:D8:27:17:2D:A4:15:C7:90:70:DA:DB
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 2BED5019EBC8B717E163BB2AF902A95E86BFB659
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS205987.roa
Signing time: Wed 06 May 2026 13:47:27 +0000
ROA not before: Wed 06 May 2026 13:42:27 +0000
ROA not after: Wed 05 May 2027 13:47:27 +0000
asID: 205987
IP address blocks: 51.194.76.0/24 maxlen: 24
51.194.193.0/24 maxlen: 24
51.194.197.0/24 maxlen: 24
51.194.237.0/24 maxlen: 24
78.105.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ed:50:19:eb:c8:b7:17:e1:63:bb:2a:f9:02:a9:5e:86:bf:b6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 6 13:42:27 2026 GMT
Not After : May 5 13:47:27 2027 GMT
Subject: CN=1B4A0E7B63A7162FB4D827172DA415C79070DADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d3:e9:07:68:c6:fd:4b:90:c2:e7:60:a4:eb:
20:dc:eb:71:77:25:f6:af:ac:6c:d7:bd:8e:db:ae:
87:71:18:a8:af:7c:0c:32:54:b5:4f:11:06:be:8f:
bd:2e:66:af:8e:11:74:aa:48:4a:71:d5:0a:d5:a1:
55:6e:df:90:a5:02:cf:6d:dd:06:ba:84:55:03:23:
40:7d:1e:a8:ab:96:49:a1:8e:74:b5:67:55:22:ec:
63:00:39:d2:ca:9f:e3:f8:97:cd:12:fa:a6:c7:bc:
ac:c1:3e:50:2d:2c:30:a5:56:dd:99:2d:ac:dd:15:
7e:16:52:08:56:7c:b0:0e:91:ee:1b:e6:e7:98:ee:
2f:8f:46:cb:e4:e1:02:0c:27:b9:73:a7:86:17:6b:
d7:af:8e:1f:e9:c5:b6:fa:c4:5a:ab:3a:8d:9b:49:
85:08:a9:d7:49:0c:f6:59:12:98:8f:73:d4:80:40:
6f:c6:ce:4d:c3:59:f0:26:79:fd:15:ee:15:97:ef:
78:c4:83:f9:e4:a7:1f:76:84:31:18:ff:7e:0c:6b:
c2:67:b2:87:fc:f7:34:74:fd:01:88:9e:ff:78:ac:
b6:bd:b0:67:99:ee:f7:e0:2a:4b:c9:4b:5a:fd:bd:
01:d6:49:2a:34:d4:16:07:22:13:a9:e6:86:0f:8a:
a9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:4A:0E:7B:63:A7:16:2F:B4:D8:27:17:2D:A4:15:C7:90:70:DA:DB
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS205987.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.194.76.0/24
51.194.193.0/24
51.194.197.0/24
51.194.237.0/24
78.105.166.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:51:32:d5:39:58:78:a7:d0:5a:03:e2:00:d4:f3:76:a2:f8:
f0:ab:4b:77:4c:3d:09:ed:56:39:8c:ee:09:02:2d:fb:ce:80:
b5:7c:8e:64:1b:8a:4e:6a:5a:ba:9c:cd:1d:c0:4f:9f:80:85:
41:99:82:e8:d5:4f:ce:58:b5:8b:6b:a7:85:09:2b:d9:15:a6:
d2:ca:30:ec:96:db:8d:02:d1:23:db:26:5c:5b:5a:7c:8a:39:
bb:2f:88:db:ee:d3:a6:29:30:b1:c7:b3:5f:bc:9f:08:d8:e6:
b7:9f:fd:88:48:2a:6d:42:96:82:1a:df:16:87:7a:41:ac:cc:
44:6e:44:9b:d0:32:29:19:8c:1c:0a:79:40:01:36:76:89:f5:
47:88:d7:4e:c3:da:4c:2f:e0:ff:af:36:2e:dc:50:43:53:16:
62:e8:f9:06:e1:75:ca:a5:91:f7:58:97:eb:e5:b5:d8:0b:28:
cb:97:9c:09:64:9e:65:a1:9f:20:e8:52:4d:04:47:7d:ab:f3:
44:22:1f:8e:a6:59:0f:6c:1e:9a:8c:49:db:1b:75:d1:06:39:
58:38:6f:92:ee:46:94:74:db:22:08:65:00:e5:52:ab:c3:4f:
1a:2e:9a:2d:39:87:9f:60:09:0f:07:d3:1e:24:4f:02:ea:35:
43:3b:c7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:17:19 2026 by rpki-client