Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS207459.roa
File: AS207459.roa (raw, json)
Hash identifier: y2ewHfwAEwSzSWDBER1gV3a2vUPbuuuxJEqsPYFOuHc=
Subject key identifier: B2:B2:16:89:88:A5:11:9C:BD:32:94:93:04:AE:81:C4:34:F4:F6:B4
Certificate issuer: /CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Certificate serial: 5CA033A596A9CEE4A4E550185AEF39F895684028
Authority key identifier: 9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS207459.roa
Signing time: Wed 17 Jun 2026 08:50:20 +0000
ROA not before: Wed 17 Jun 2026 08:45:20 +0000
ROA not after: Wed 16 Jun 2027 08:50:20 +0000
asID: 207459
IP address blocks: 92.249.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 07:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:a0:33:a5:96:a9:ce:e4:a4:e5:50:18:5a:ef:39:f8:95:68:40:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dfbff217105df8877d463f6e9bac28a4084d20c
Validity
Not Before: Jun 17 08:45:20 2026 GMT
Not After : Jun 16 08:50:20 2027 GMT
Subject: CN=B2B2168988A5119CBD32949304AE81C434F4F6B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b4:86:99:b0:fe:33:94:ad:5e:1b:57:1d:6a:
0f:54:e6:96:f1:b0:96:8a:0b:31:44:12:f9:34:7f:
72:7b:8d:f9:55:6a:eb:6b:50:ff:56:3d:20:bf:b0:
0b:21:db:e3:b7:d5:d9:fd:7e:a3:57:a0:1c:47:2d:
29:67:59:4f:71:6c:06:23:5e:3e:b1:c8:73:1e:b8:
0f:dc:ba:c1:08:4e:68:04:81:83:60:bf:b0:60:4b:
25:48:55:03:b0:ad:fc:a8:a3:0f:3f:b0:1f:d0:2e:
dc:45:c7:a2:75:85:65:65:9a:01:f2:a3:9f:53:11:
aa:fe:a8:ca:5b:36:b7:8f:12:ee:e9:2f:95:be:c0:
61:a7:48:57:ca:f6:86:fd:a1:57:0b:17:8a:9f:0a:
1b:4a:b8:f0:21:b6:af:71:55:23:95:b2:23:60:0c:
6f:24:ac:f3:65:1f:4f:f5:5d:48:57:29:ad:5e:43:
cd:e1:6c:67:b9:a0:95:79:6c:af:4a:63:aa:c3:de:
41:58:eb:62:5a:80:d6:10:f7:84:97:81:a7:30:57:
ad:72:fa:a4:bd:92:22:91:e2:5d:7e:bf:6c:f9:c7:
39:f4:f7:67:13:f3:16:bf:a5:85:2f:24:69:d7:24:
ad:ca:e4:73:05:ab:9f:42:36:d0:b9:93:50:94:cd:
4b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B2:16:89:88:A5:11:9C:BD:32:94:93:04:AE:81:C4:34:F4:F6:B4
X509v3 Authority Key Identifier:
keyid:9D:FB:FF:21:71:05:DF:88:77:D4:63:F6:E9:BA:C2:8A:40:84:D2:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/9DFBFF217105DF8877D463F6E9BAC28A4084D20C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfv_IXEF34h31GP26brCikCE0gw.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/55b4d9e8-4111-4394-a3a6-bd8251e7fbbd/0/AS207459.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.249.63.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:ce:91:c2:59:44:0d:54:5d:81:d1:7d:75:b2:81:c9:e1:3f:
81:3f:0b:87:fc:4e:9d:2e:49:22:7b:e5:bc:6b:0b:0b:d4:39:
91:3a:3c:e1:4d:a2:9d:89:ab:cf:a5:8f:f5:2e:7c:bc:36:72:
16:ab:a5:a2:11:21:6f:a5:ac:41:d7:3f:da:dd:00:d5:b3:8b:
8d:ea:c2:67:18:a1:02:71:34:67:56:e7:93:44:1e:fb:04:c4:
44:0d:84:01:2b:e1:c8:22:da:58:89:8b:f2:64:93:2a:80:6a:
60:9f:2b:24:9a:56:8e:5e:2c:00:a4:2c:7a:37:00:aa:1f:e2:
41:3f:e0:e3:46:f1:b5:4d:96:f6:9a:c4:a1:02:9e:dd:97:3e:
b2:b7:86:df:b8:48:14:2a:d4:51:b0:91:82:21:de:69:4b:3f:
b6:91:d6:d6:72:59:0a:ce:da:6b:ba:60:1c:83:cc:69:f4:ef:
73:70:c5:7a:5b:da:19:0a:c8:32:d3:0d:30:b9:a2:58:51:ef:
e2:4e:14:50:f3:24:de:ad:9e:e9:76:bb:5a:21:3e:a9:e3:29:
ea:94:24:2f:e0:af:7d:f6:ff:d0:50:5a:fc:6c:0f:02:87:6e:
7a:16:4c:81:09:89:2e:49:79:f5:a3:bb:cc:72:55:44:79:d5:
c6:b8:72:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 20:32:36 2026 by rpki-client