Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
File: AS205886.roa (raw, json)
Hash identifier: LENT/wAYpNm9hLYbiT8DDeUMFW23AJaip1pjDdcLMrE=
Subject key identifier: AC:A9:60:F1:A8:4F:C9:74:CF:86:1F:18:BD:02:CE:3F:49:67:60:95
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 42FD8D183384B1E0F6F52013FBB042305FFE504E
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
Signing time: Tue 21 Oct 2025 07:22:44 +0000
ROA not before: Tue 21 Oct 2025 07:17:44 +0000
ROA not after: Tue 20 Oct 2026 07:22:44 +0000
asID: 205886
IP address blocks: 82.139.192.0/24 maxlen: 24
82.139.207.0/24 maxlen: 24
82.139.218.0/24 maxlen: 24
82.139.231.0/24 maxlen: 24
82.139.236.0/24 maxlen: 24
82.139.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Oct 2025 10:14:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:fd:8d:18:33:84:b1:e0:f6:f5:20:13:fb:b0:42:30:5f:fe:50:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Oct 21 07:17:44 2025 GMT
Not After : Oct 20 07:22:44 2026 GMT
Subject: CN=ACA960F1A84FC974CF861F18BD02CE3F49676095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1d:49:6c:12:38:b3:8f:49:0d:3c:4b:99:d2:
91:9d:94:16:8c:7b:4d:02:14:25:35:7b:88:37:ab:
6c:c6:74:2e:65:1d:a3:8a:d7:75:74:dc:7f:c5:9a:
70:36:46:d5:6f:dd:0f:db:1c:d8:bd:ad:21:67:98:
8a:a1:c4:68:ec:c7:91:4b:33:ca:5f:ec:eb:af:25:
ac:2d:ac:56:18:d3:75:ab:c2:9f:46:66:9e:0d:b8:
f5:cf:b9:43:93:e8:31:79:3a:f1:88:3f:ba:b2:86:
5b:a3:2d:98:7e:82:24:a2:c5:4b:11:da:c5:44:21:
19:a7:c9:f2:d5:1f:46:c6:e0:7a:ed:43:ba:15:63:
f6:eb:1f:e0:52:c1:30:b8:65:60:ee:88:c4:4a:d5:
22:b8:34:c2:d3:13:5c:c6:01:1d:97:38:eb:c1:39:
c2:a9:29:1b:92:60:15:f3:0f:c8:37:20:7e:24:0e:
38:c2:9c:c4:63:2c:b6:3c:96:d7:7b:6d:f7:71:f7:
71:fd:15:a5:af:a9:91:9f:76:6c:31:21:88:d8:62:
ba:87:1a:d4:54:fe:89:c5:5a:d4:8a:ad:0d:86:be:
20:5a:a1:de:f7:01:7c:72:43:f0:e7:e5:22:47:66:
82:0e:d0:6f:3a:d3:84:9b:89:43:83:ac:4c:2e:5b:
1f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A9:60:F1:A8:4F:C9:74:CF:86:1F:18:BD:02:CE:3F:49:67:60:95
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS205886.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.139.192.0/24
82.139.207.0/24
82.139.218.0/24
82.139.231.0/24
82.139.236.0/24
82.139.250.0/24
Signature Algorithm: sha256WithRSAEncryption
07:1f:4d:1c:62:e4:d1:a3:9d:0f:72:e3:da:ff:60:c3:71:78:
d1:df:5a:09:bc:2d:fe:86:b6:c1:59:c3:21:d8:f1:83:23:ef:
c9:d4:40:2a:ef:36:ea:15:82:e7:b7:ab:44:f3:92:c4:6b:b8:
f1:ed:21:11:b3:43:30:b8:83:f7:ed:52:20:35:7d:27:0a:2f:
b9:73:e3:54:13:a2:85:38:27:88:e6:dc:ef:95:ba:3f:28:11:
f0:19:4b:d6:12:a3:ad:bb:f0:16:95:ec:96:78:8c:89:c4:ee:
b5:8b:39:00:11:c6:3b:b6:d4:b6:63:e0:65:60:30:d2:ba:d6:
32:8c:0f:48:db:f3:78:5d:c1:7c:af:f9:bc:06:0b:cb:39:b7:
dc:8e:c4:23:1c:3f:36:4f:ee:9f:79:bc:b7:b4:d7:26:9f:06:
d6:95:ab:cd:41:20:47:f8:b8:de:9d:e4:1d:b6:7f:1b:31:3f:
8e:11:00:b1:1b:0d:89:b0:2a:a5:a9:ff:86:b6:e9:96:64:3d:
68:c2:ee:a3:8b:5c:ef:ed:e8:da:4b:eb:13:fa:c1:b9:56:c7:
70:2d:b2:f6:65:ba:22:49:4b:ac:03:9b:d7:30:4a:e1:02:32:
d7:ac:46:23:68:5e:9f:78:94:d0:7f:45:f2:2f:3a:54:79:a5:
6b:16:48:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 23:30:59 2025 by rpki-client