Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa
File: AS205886.roa (raw, json)
Hash identifier: fssMEOBTwWzseIdx7NakrBQ9ftreE8cSM6JfZAKpOA8=
Subject key identifier: 70:3E:7E:5A:7C:57:F8:A8:BD:7E:0F:8B:71:A8:66:D5:24:8A:63:E3
Certificate issuer: /CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Certificate serial: 259B6BE2CD357E19008A4362FFB067A267770034
Authority key identifier: 70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa
Signing time: Sat 18 Oct 2025 09:16:18 +0000
ROA not before: Sat 18 Oct 2025 09:11:18 +0000
ROA not after: Sat 17 Oct 2026 09:16:18 +0000
asID: 205886
IP address blocks: 188.119.70.0/24 maxlen: 24
194.93.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.mft
rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:54:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:9b:6b:e2:cd:35:7e:19:00:8a:43:62:ff:b0:67:a2:67:77:00:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7051b4c2f7ae9ef80b53000b32ab8f5d2f2f415b
Validity
Not Before: Oct 18 09:11:18 2025 GMT
Not After : Oct 17 09:16:18 2026 GMT
Subject: CN=703E7E5A7C57F8A8BD7E0F8B71A866D5248A63E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:af:0f:d0:89:9e:9e:ae:5d:7e:a2:fe:35:
6f:e0:e4:39:02:51:8f:52:51:00:d1:02:41:0b:16:
f0:66:16:a5:cd:e7:78:7b:99:11:cf:80:54:61:2f:
9a:f4:51:8b:2d:91:ee:81:1e:c7:8c:63:77:fe:65:
55:df:7c:33:01:92:09:18:f9:ed:cf:2d:9d:a8:d9:
3f:cd:92:12:a6:f0:b7:94:f3:b0:f2:5d:72:df:cd:
12:f4:37:7e:40:21:4c:52:55:43:21:fe:ef:fa:96:
05:25:71:05:0f:61:d5:39:fa:ac:d2:df:06:f5:3e:
33:42:6f:90:bb:d5:f4:e7:6d:f8:f2:00:30:0d:74:
e0:50:2b:60:c3:7f:47:cc:aa:98:4f:ff:30:c0:d2:
5d:67:c6:33:e0:89:30:b0:fb:29:af:bc:e1:6a:e3:
ce:73:c9:20:f4:a3:6d:33:03:5a:7e:63:9e:0a:a0:
db:68:6e:c7:09:48:c9:8c:e5:ad:63:bb:03:5b:e0:
8f:94:a5:7c:6a:c5:0b:92:4f:04:57:43:0e:96:2e:
e0:f6:35:a8:1a:60:36:a9:64:ff:1a:f0:85:d1:aa:
2b:b2:8b:bc:b4:24:4d:52:2c:2d:72:85:6e:8d:8f:
7c:76:da:59:fe:c5:8e:94:90:2a:9a:c3:aa:12:bc:
fa:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3E:7E:5A:7C:57:F8:A8:BD:7E:0F:8B:71:A8:66:D5:24:8A:63:E3
X509v3 Authority Key Identifier:
keyid:70:51:B4:C2:F7:AE:9E:F8:0B:53:00:0B:32:AB:8F:5D:2F:2F:41:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/7051B4C2F7AE9EF80B53000B32AB8F5D2F2F415B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFG0wveunvgLUwALMquPXS8vQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c5ce9fa-9a6f-4e0c-9809-7a4788744893/0/AS205886.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.70.0/24
194.93.50.0/24
Signature Algorithm: sha256WithRSAEncryption
45:38:f5:b9:e5:f0:78:49:c4:26:f8:57:0c:b4:95:71:ce:82:
17:41:1b:5a:6a:75:32:f5:b6:47:d6:86:34:60:3a:e3:c6:d5:
96:3e:55:24:0b:8e:a3:1d:26:15:7e:59:17:85:09:a6:4d:9a:
fb:6a:aa:bb:8e:a9:f8:fd:46:21:2c:e0:3a:71:fc:87:ac:be:
c3:ae:68:28:37:b7:0a:25:c1:a0:c5:e0:9d:f0:49:02:37:72:
15:15:b9:77:27:fa:60:37:e6:3f:3a:f4:28:c5:53:0c:1c:6d:
34:08:a8:1f:0b:6c:f2:25:0e:ec:4f:94:48:88:34:03:87:7a:
ae:16:a4:74:6e:d4:e4:d6:bd:8c:8b:4c:2b:8a:74:8e:3a:cc:
2d:ac:70:19:27:a3:3e:c4:62:21:2b:7f:b5:98:09:31:a0:39:
fb:f9:3a:61:9b:5c:f4:ea:62:cf:02:a0:4b:4b:65:7e:48:2a:
e1:9e:44:c6:bc:26:ae:02:8e:c5:f1:32:4c:37:8b:97:1a:00:
ee:93:89:1b:81:31:67:72:47:11:40:48:c5:5b:3e:b4:f3:d6:
0d:12:5a:de:01:bc:10:24:78:c9:74:92:06:0b:59:80:47:cb:
43:63:ac:b0:71:8e:fb:7b:cc:cd:8d:3e:1b:f8:17:86:1d:58:
19:c8:42:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:18:18 2025 by rpki-client