Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200660.roa
File: AS200660.roa (raw, json)
Hash identifier: 9kwYh7njC0W6G0RBuKwfzUsdyMvtVl3CSd0aOU5QWVk=
Subject key identifier: 8A:56:97:77:99:03:2D:0E:9B:DB:19:6A:68:C7:EE:8A:B4:3D:13:00
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 0A7524D3D1A6C2303D3CE3D7390E0AD745E4EF99
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200660.roa
Signing time: Wed 04 Mar 2026 15:47:59 +0000
ROA not before: Wed 04 Mar 2026 15:42:59 +0000
ROA not after: Wed 03 Mar 2027 15:47:59 +0000
asID: 200660
IP address blocks: 82.25.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:75:24:d3:d1:a6:c2:30:3d:3c:e3:d7:39:0e:0a:d7:45:e4:ef:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 4 15:42:59 2026 GMT
Not After : Mar 3 15:47:59 2027 GMT
Subject: CN=8A56977799032D0E9BDB196A68C7EE8AB43D1300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9e:87:a7:95:1d:e6:12:df:4e:65:f0:b1:15:
8e:1c:5c:e6:eb:f8:52:8d:e0:e3:9c:bb:e1:9e:ab:
aa:b3:dc:b4:4a:7e:71:48:40:a7:9c:e1:90:a5:7b:
aa:fb:36:3d:25:65:a8:79:a2:7f:d9:88:a2:19:e5:
62:45:48:b6:b6:14:dc:ee:80:bc:dc:1c:82:ae:1a:
bd:30:02:53:22:80:f5:34:09:d3:99:97:ab:8c:0a:
9c:2d:76:b7:ca:a5:c5:ed:e2:0c:90:12:99:e8:b8:
72:48:ae:94:df:89:d6:66:48:6e:95:40:b7:5c:22:
49:61:7d:8d:3a:71:d6:e4:a4:ff:2c:03:23:4e:b8:
e7:dc:06:86:1f:3a:1c:ea:3e:2c:7b:64:aa:64:f3:
69:2b:44:7c:ac:1a:41:bc:41:d3:32:76:8a:81:ef:
c6:0a:40:58:08:84:9e:52:2e:df:a6:0b:75:3c:06:
e0:d4:31:12:d6:30:83:f7:f7:bc:44:05:0f:a2:65:
74:a4:45:e2:33:c7:71:31:d7:ab:2a:c1:f1:47:2d:
c1:f3:8a:06:bf:30:ac:80:9a:bf:0b:1a:cc:aa:37:
a3:3e:83:e9:aa:90:db:0e:61:10:0e:1c:1b:ba:01:
ad:52:73:32:58:ce:64:2b:9d:fa:50:26:b6:18:54:
5c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:56:97:77:99:03:2D:0E:9B:DB:19:6A:68:C7:EE:8A:B4:3D:13:00
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200660.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.25.36.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:1a:c7:29:23:7d:bb:77:21:0a:61:ea:ea:66:24:25:ef:21:
f1:71:f9:80:0c:2f:32:73:4b:2d:b4:3c:a9:b7:f1:f2:d0:7f:
55:ee:01:12:fe:a7:ce:35:52:5e:87:52:94:38:6c:d1:74:5e:
c3:fb:ca:76:8d:ef:06:4d:40:64:f7:a7:43:73:0e:de:7a:e4:
a2:e5:aa:2b:63:09:d5:46:1f:86:a4:4e:c0:4e:d8:40:bd:99:
e1:09:5b:12:86:4a:43:c6:e1:0c:75:e1:e9:a0:61:26:9b:d0:
2e:e0:5e:54:9f:c8:18:28:83:5b:7b:2c:7b:43:e7:11:e5:f9:
b3:45:13:7e:4f:1b:e7:2a:66:c4:ff:43:ec:fa:a2:e7:94:ec:
2d:f3:6f:b6:21:fc:2a:6c:db:28:62:f9:11:f0:86:de:c8:ae:
1a:4a:fd:b5:5e:41:b6:0b:10:1b:79:20:a5:dd:6e:87:24:6b:
6e:78:a0:52:f6:6d:dc:ee:36:93:80:3e:04:a5:c8:2b:09:32:
77:24:46:65:b4:4f:d9:e8:39:3f:a3:c4:6a:e6:3e:e9:46:ba:
d6:05:a7:d9:33:21:99:3a:a3:5b:69:1a:58:e7:a6:a0:1b:b1:
35:ab:13:94:e3:e5:8f:bd:5c:4e:a2:ad:92:32:b9:ee:60:e6:
22:6d:a6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 02:01:44 2026 by rpki-client