Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS204464.roa
File: AS204464.roa (raw, json)
Hash identifier: UPl4jTQBRNl+KIHaPedQQCGdAFA1T0Ls7ydncahP/k0=
Subject key identifier: 26:42:C7:A2:CB:B4:EF:0D:78:1A:33:28:94:1D:ED:6F:89:56:D4:4A
Certificate issuer: /CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Certificate serial: 6F4E158151D3A2943793673D7D3CA11531DC2668
Authority key identifier: A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS204464.roa
Signing time: Tue 23 Jun 2026 11:03:25 +0000
ROA not before: Tue 23 Jun 2026 10:58:25 +0000
ROA not after: Tue 22 Jun 2027 11:03:25 +0000
asID: 204464
IP address blocks: 2a14:7580:ec00::/40 maxlen: 40
2a14:7581:5000::/40 maxlen: 40
2a14:7581:5100::/40 maxlen: 40
2a14:7581:5200::/40 maxlen: 40
2a14:7581:5300::/40 maxlen: 40
2a14:7581:5400::/40 maxlen: 40
2a14:7581:5500::/40 maxlen: 40
2a14:7581:5600::/40 maxlen: 40
2a14:7581:5700::/40 maxlen: 40
2a14:7581:e000::/36 maxlen: 48
2a14:7583:e800::/40 maxlen: 40
2a14:7583:ef20::/44 maxlen: 44
2a14:7583:ef70::/44 maxlen: 44
2a14:7584:a000::/36 maxlen: 36
2a14:7584:b000::/36 maxlen: 36
2a14:7587::/32 maxlen: 32
2a14:7587::/36 maxlen: 36
2a14:7587:1000::/36 maxlen: 36
2a14:7587:2000::/36 maxlen: 36
2a14:7587:3000::/36 maxlen: 36
2a14:7587:4000::/36 maxlen: 36
2a14:7587:c000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft
rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:4e:15:81:51:d3:a2:94:37:93:67:3d:7d:3c:a1:15:31:dc:26:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a83d48652f3b2df74f6bf9baa8a9c174ccfd3772
Validity
Not Before: Jun 23 10:58:25 2026 GMT
Not After : Jun 22 11:03:25 2027 GMT
Subject: CN=2642C7A2CBB4EF0D781A3328941DED6F8956D44A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:33:4f:aa:d6:ee:a1:88:79:95:9e:a3:60:f7:
62:12:6f:58:6b:01:c4:11:b2:b1:56:59:5a:0f:a9:
6e:3a:c5:0f:d8:81:e8:84:15:65:23:ae:97:61:39:
28:d9:99:a0:8d:da:b7:18:ce:9a:1b:78:90:36:61:
50:8e:6c:e4:6d:a5:a2:1d:2d:df:f1:c1:0e:e6:27:
04:01:a3:72:c1:46:81:14:a4:13:22:29:e9:8e:68:
3f:0e:eb:d4:24:50:1c:5d:a8:cd:5d:b7:14:00:20:
07:ad:e2:62:53:7b:c5:bc:6c:04:77:37:de:ad:af:
6f:57:d9:74:59:80:c2:c8:6d:c6:c9:89:61:bb:06:
31:cb:1d:58:2d:b2:61:5e:75:9e:33:b7:7f:57:16:
5a:7d:6e:ab:ff:2c:0e:a3:b0:e4:68:e1:0f:00:ed:
fa:06:60:bb:89:3f:cc:38:b4:c5:5f:d5:76:c1:83:
c9:7d:3c:13:c9:2c:dd:08:b2:61:69:73:e5:a2:ae:
4e:d4:37:42:82:38:d1:52:cc:97:96:55:20:51:aa:
2c:a3:d8:e5:46:13:e8:52:68:87:b5:6c:99:c9:31:
ab:38:0d:86:7f:dc:69:78:68:ea:47:66:72:e3:26:
5b:35:71:b3:7d:a1:37:1e:37:6e:c0:bf:ae:57:e5:
6a:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:42:C7:A2:CB:B4:EF:0D:78:1A:33:28:94:1D:ED:6F:89:56:D4:4A
X509v3 Authority Key Identifier:
keyid:A8:3D:48:65:2F:3B:2D:F7:4F:6B:F9:BA:A8:A9:C1:74:CC:FD:37:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AS204464.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7580:ec00::/40
2a14:7581:5000::/37
2a14:7581:e000::/36
2a14:7583:e800::/40
2a14:7583:ef20::/44
2a14:7583:ef70::/44
2a14:7584:a000::/35
2a14:7587::/32
Signature Algorithm: sha256WithRSAEncryption
21:b8:78:e9:5a:bd:4a:34:29:d4:a7:8a:6e:1d:89:36:ce:33:
06:b1:da:1a:57:33:e7:b1:72:03:44:d4:9a:6e:9c:91:57:94:
b3:c4:40:2c:45:22:8d:47:86:83:55:d2:89:80:15:55:e6:d7:
ab:a7:60:c8:50:98:17:5e:37:49:df:98:9b:91:e9:f3:2f:cc:
ee:0a:d7:75:04:29:74:c8:0c:58:ad:f8:55:27:e7:28:7e:0b:
14:5c:e0:be:82:35:9b:27:8a:30:07:c8:02:13:de:bd:d5:df:
1f:3e:06:d0:d2:b8:34:e8:69:59:43:4a:2c:ee:38:5d:71:76:
f9:26:ed:25:3f:99:75:61:94:d6:45:e1:e0:55:aa:92:47:80:
5c:ca:61:4a:4f:20:9c:6f:96:95:50:5b:42:8a:64:fd:e9:10:
ca:d9:f7:3c:86:31:31:44:af:2d:65:68:b8:5a:dc:ef:1d:6d:
5b:0a:49:db:cd:ae:c5:c3:9b:44:d7:d7:83:35:6f:85:f6:6a:
c2:8e:4d:e8:ae:13:a0:36:82:3c:b5:e8:1f:d8:ef:1e:cf:57:
aa:af:bd:56:05:81:91:13:c8:c7:1e:a9:5f:a2:d6:cd:02:0a:
77:72:a3:39:54:04:5d:26:a6:8a:93:0e:a9:56:3e:a5:f4:78:
96:e8:05:d2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 27 23:42:14 2026 by rpki-client