
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS206286.roa
File: AS206286.roa (raw, json)
Hash identifier: uvkOThr+G4RgOpTt4cJznd45uz5NiKpdJOockBxqg+4=
Subject key identifier: 5D:09:31:31:74:06:FF:C5:E7:F1:0D:D6:11:6E:26:3C:5D:12:7B:3C
Certificate issuer: /CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Certificate serial: 2B44FF0D6B60C6F3F8C385C57A2A924747F05BC9
Authority key identifier: 88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS206286.roa
Signing time: Fri 26 Jun 2026 22:48:42 +0000
ROA not before: Fri 26 Jun 2026 22:43:42 +0000
ROA not after: Fri 25 Jun 2027 22:48:42 +0000
asID: 206286
IP address blocks: 143.20.58.0/24 maxlen: 24
143.20.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl
rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.mft
rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Jul 2026 04:58:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:44:ff:0d:6b:60:c6:f3:f8:c3:85:c5:7a:2a:92:47:47:f0:5b:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c14ec02adbf083138eddd47871176ddeb93d9d
Validity
Not Before: Jun 26 22:43:42 2026 GMT
Not After : Jun 25 22:48:42 2027 GMT
Subject: CN=5D0931317406FFC5E7F10DD6116E263C5D127B3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:92:99:9b:39:84:1b:a7:2b:c3:00:22:af:5f:
b2:4c:db:c6:7a:22:e1:d6:3a:ae:e9:54:12:14:9d:
10:b6:2d:e9:12:26:37:77:14:25:bc:e9:5d:f0:f0:
e2:d4:10:53:43:42:1d:80:9e:cc:ee:e6:a7:3a:33:
f1:0f:cd:a4:d0:14:80:3f:6d:9a:66:1c:81:b6:75:
16:62:ba:a0:29:1a:bb:9c:75:d5:c5:d1:8a:c1:5e:
2a:53:b7:b3:69:75:6c:32:d5:53:ce:da:12:5f:1a:
c3:d8:6a:13:63:a8:ac:06:91:df:a4:95:bd:c0:e1:
6c:33:52:01:d3:58:81:27:dc:f5:7f:d5:50:9d:3d:
94:1d:6b:88:1c:a4:37:f1:05:1b:b4:5d:e5:13:f7:
9e:be:d1:01:18:09:4e:17:d3:df:45:ca:53:18:3c:
05:0d:ae:3e:90:75:1d:e3:08:6e:92:66:9d:ce:f5:
f6:a2:05:89:51:0d:65:5e:8f:e7:5f:af:65:e2:e8:
6c:8b:dc:e1:05:3a:a3:20:81:a1:40:65:dc:72:5e:
58:fc:f1:61:62:41:d8:bf:af:9f:8a:5c:49:91:c5:
62:e5:2e:a0:dd:21:ba:2b:2d:30:7d:62:e2:3d:18:
b9:af:0e:7c:bd:58:78:99:70:6e:d1:6b:89:da:d6:
c6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:09:31:31:74:06:FF:C5:E7:F1:0D:D6:11:6E:26:3C:5D:12:7B:3C
X509v3 Authority Key Identifier:
keyid:88:C1:4E:C0:2A:DB:F0:83:13:8E:DD:D4:78:71:17:6D:DE:B9:3D:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/88C14EC02ADBF083138EDDD47871176DDEB93D9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMFOwCrb8IMTjt3UeHEXbd65PZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c409d7b2-ee64-49f1-ad81-8e4a107d62e0/0/AS206286.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.20.58.0/24
143.20.184.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:d7:64:60:ad:9b:16:54:8a:0b:f4:7a:42:26:aa:34:4a:c5:
b7:09:4d:ab:e2:ac:13:59:3c:57:de:8e:a1:0f:93:32:34:b5:
99:dc:57:02:fe:72:ba:8f:da:9b:df:6a:dd:d2:cd:a9:48:49:
38:16:8f:a7:5a:3e:a7:69:04:d0:52:b2:ed:d0:18:03:1a:57:
4b:18:11:97:f1:64:11:d2:3b:52:61:f7:7c:06:b4:28:8a:a6:
82:1b:61:6f:e8:cf:d9:d4:9e:d4:bf:2d:47:59:2c:58:97:9e:
d7:6c:e8:79:01:ba:1d:a5:ef:69:38:01:8d:1e:a2:7c:5e:c6:
53:2e:08:69:2c:a0:50:1d:12:3d:d5:07:a2:b9:ab:be:d8:2c:
fc:68:22:ba:83:56:b1:be:5c:58:87:08:26:31:0a:c9:bd:3a:
7b:30:65:69:59:09:36:37:48:50:da:90:fe:07:71:36:3a:d0:
0d:74:03:76:f0:df:f6:49:3c:f7:1d:3c:0b:57:3d:e3:39:f4:
78:f5:48:d3:c4:f4:11:20:d7:6a:99:91:c4:55:58:36:75:55:
a8:71:d2:60:36:29:fe:8f:d7:a1:0f:1c:95:14:1f:05:64:da:
fb:b4:ab:cb:6c:f5:97:87:ad:eb:5c:7a:a5:73:c8:3d:f1:7f:
c9:7f:24:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 15:37:08 2026 by rpki-client