Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200975.roa
File: AS200975.roa (raw, json)
Hash identifier: YspXIeozo83ypansgdg6AslxMvKcF2imsfY0Z1FnOCg=
Subject key identifier: 05:83:CF:E5:2A:41:14:DC:F1:C7:3D:94:6B:B2:B1:46:6B:AA:0D:A9
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 7F551203015FD7AF8CADBAF1CD5F0C3B79CAD2D4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200975.roa
Signing time: Fri 03 Apr 2026 12:08:51 +0000
ROA not before: Fri 03 Apr 2026 12:03:51 +0000
ROA not after: Fri 02 Apr 2027 12:08:51 +0000
asID: 200975
IP address blocks: 82.23.143.0/24 maxlen: 24
178.83.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:55:12:03:01:5f:d7:af:8c:ad:ba:f1:cd:5f:0c:3b:79:ca:d2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 3 12:03:51 2026 GMT
Not After : Apr 2 12:08:51 2027 GMT
Subject: CN=0583CFE52A4114DCF1C73D946BB2B1466BAA0DA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:93:dd:c2:63:9a:e9:b7:e9:44:15:bb:19:2e:
5a:f8:d1:5b:be:a4:b7:a8:59:0e:94:5e:7d:a0:90:
b4:5a:bf:26:2f:81:2b:f3:a6:3e:3f:9f:e3:75:74:
98:ff:c2:ed:0a:7f:66:4f:84:fa:fa:87:3d:bb:c3:
08:f4:2e:86:22:a1:dc:95:5b:26:60:4b:5a:a2:3c:
c0:8c:0c:66:d3:51:c3:dc:c1:1f:29:58:c0:49:fd:
6f:d8:78:38:8d:d6:51:00:ee:ba:21:32:5e:cf:ea:
b5:cc:4c:9d:b0:e7:22:55:59:f1:05:97:3c:1e:5f:
ad:79:ee:cb:55:1f:b5:f1:bd:5d:81:2c:1f:1a:0c:
09:8b:76:fc:48:aa:d3:70:73:ec:8d:70:8f:49:d6:
c3:c3:0c:fe:02:23:6c:be:ad:f6:bd:ae:4d:5f:eb:
8f:03:d1:54:2a:85:a7:08:64:10:ba:58:df:6a:2e:
40:72:79:58:d3:f5:b2:3f:e6:06:8e:2a:73:f2:ad:
f3:24:f1:90:5e:67:8d:2b:7e:c7:b9:4e:5e:25:a0:
a3:6d:09:02:35:74:e2:0a:db:64:ca:be:3a:2f:4a:
aa:b4:be:cb:f0:02:c3:f4:4b:b8:c6:46:57:68:91:
2a:8d:87:c6:3b:9c:56:a8:c7:64:3e:f7:e5:e8:fb:
6b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:83:CF:E5:2A:41:14:DC:F1:C7:3D:94:6B:B2:B1:46:6B:AA:0D:A9
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS200975.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.23.143.0/24
178.83.70.0/24
Signature Algorithm: sha256WithRSAEncryption
16:50:d9:a7:c3:ac:be:5b:9f:da:f6:71:a6:61:cf:1c:9f:a4:
a6:fc:a3:c0:e4:e3:4a:22:ca:e4:80:06:22:40:33:c6:6d:0f:
ba:68:45:20:22:53:82:c5:af:b1:2e:ab:76:d0:fa:2c:e4:fa:
25:67:71:55:10:8e:9b:2a:75:1b:24:29:8a:fd:50:d6:64:ba:
42:8c:c4:2f:95:48:3c:e0:e8:e8:fc:46:b2:9c:97:4d:db:39:
3a:5c:77:78:0d:e4:ce:97:72:55:46:46:c5:30:f3:73:42:c9:
ec:9e:ca:e5:9d:e7:38:8e:92:7a:e6:a3:3b:9e:be:c9:85:e1:
35:81:33:14:3b:08:c9:4c:ea:8b:24:94:12:91:e7:e9:03:bf:
6a:74:b1:d4:f7:d3:0c:cf:e6:49:4e:92:7b:79:9c:dd:d3:ec:
b9:d9:ff:ea:97:00:31:45:43:9b:fd:5d:08:f6:55:84:c1:b4:
05:cc:d6:f6:70:c4:42:f5:d5:b3:78:5f:ce:2c:9e:b4:62:15:
de:d9:e9:27:a0:f0:b9:b7:5d:3b:a0:2b:9e:ee:14:b2:ab:c4:
08:27:36:72:83:63:e1:4f:e3:d6:4f:54:bc:5e:3d:b6:79:20:
4d:2b:21:06:7b:9d:0f:ec:4a:57:5a:6d:01:c7:ce:e9:23:64:
15:b1:b5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 11 11:43:39 2026 by rpki-client