Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS207343.roa
File: AS207343.roa (raw, json)
Hash identifier: LiTDcGk1Jvx7UzgY3OhrWGTB04r6op+GihD578Ooj/M=
Subject key identifier: FC:CC:F2:A7:A8:57:03:E1:F1:86:61:4C:E4:33:C1:44:F7:4E:B3:7F
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 507149739662CD705E50984102501B48DD168F3B
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS207343.roa
Signing time: Sat 30 May 2026 22:08:16 +0000
ROA not before: Sat 30 May 2026 22:03:16 +0000
ROA not after: Sat 29 May 2027 22:08:16 +0000
asID: 207343
IP address blocks: 188.220.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:71:49:73:96:62:cd:70:5e:50:98:41:02:50:1b:48:dd:16:8f:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: May 30 22:03:16 2026 GMT
Not After : May 29 22:08:16 2027 GMT
Subject: CN=FCCCF2A7A85703E1F186614CE433C144F74EB37F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:66:e4:58:65:c5:ee:af:f6:25:2e:07:4f:ac:
f6:0d:2b:43:55:c7:d5:29:b4:c5:29:4f:89:1b:a6:
be:65:b5:fa:54:af:6d:6f:e3:0f:bc:9b:9c:fd:96:
6a:af:76:50:c8:07:16:20:f7:7f:33:ef:ba:e6:c5:
ed:e0:c7:68:5a:e9:6e:39:2f:38:4b:78:13:fa:38:
86:96:21:47:b4:19:8a:ea:23:fb:25:6e:b0:42:13:
bc:bc:de:87:e6:d2:62:ab:28:9e:9b:0d:be:a8:38:
29:c7:e8:94:f8:3a:d3:0a:a5:3a:33:17:d3:9f:75:
00:4a:1c:78:b5:d4:17:e2:20:09:0b:e1:16:42:bb:
1f:ce:fa:fc:f4:6d:ef:3c:7c:1a:68:d9:a7:58:36:
f9:38:6c:55:10:b7:72:fe:ba:ea:f1:b8:4d:21:ae:
46:24:04:76:d8:cf:74:7a:0c:18:9a:bc:2e:23:1c:
1e:c0:e2:83:53:42:27:17:68:c5:bb:38:ff:6b:4b:
75:09:ad:ef:a7:79:4f:22:75:20:95:ae:75:28:e8:
f4:e9:2c:49:26:0a:7e:13:75:c9:1b:e8:f0:b4:11:
b2:44:e4:40:59:27:3e:01:f0:c1:df:68:2c:80:7a:
66:ac:2d:09:07:96:64:b9:91:96:46:51:23:d3:25:
37:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:CC:F2:A7:A8:57:03:E1:F1:86:61:4C:E4:33:C1:44:F7:4E:B3:7F
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS207343.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.220.213.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ed:95:9f:6b:d1:d7:88:a2:1a:ce:5d:51:fb:48:f5:0d:9d:
11:d9:cf:2f:da:c2:c7:3f:fd:16:7b:ff:08:be:d5:27:e0:b1:
64:75:cc:10:b9:de:4b:b7:ee:21:f8:2f:f3:6d:f1:fa:4b:96:
02:b9:86:23:87:67:d4:a2:c9:9f:79:51:0a:5e:54:0e:74:2c:
fe:a9:2b:ea:66:b1:c3:76:8b:18:b9:2a:cf:53:ea:71:bd:1f:
63:46:d5:da:d4:56:83:46:c6:8d:aa:42:80:66:75:4e:13:fe:
b6:36:15:a5:05:c6:14:77:88:6a:2a:f8:04:61:a2:d5:c4:0c:
7b:2c:6e:79:28:51:1d:13:c8:4a:0e:cf:36:4b:9f:4f:8c:cc:
01:e1:03:19:31:91:dc:9b:77:a0:37:20:90:d4:95:69:91:a5:
45:54:56:b9:b6:6c:45:1b:e7:38:92:3f:6b:36:cb:6f:18:f1:
ac:d6:36:40:ab:d5:be:04:cc:60:51:2e:69:66:d0:ca:f8:5c:
14:d6:ea:f9:4b:13:1e:7c:42:a6:6f:57:16:2d:4f:99:68:c9:
fa:d6:27:12:fc:0a:3f:5c:8d:7a:be:dc:e7:09:b7:8c:9c:51:
1b:13:2c:4c:23:c2:f0:56:55:0d:71:76:e7:ab:ba:5b:8b:e8:
2f:4f:29:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 08:31:13 2026 by rpki-client