Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205886.roa
File: AS205886.roa (raw, json)
Hash identifier: U8Mp11O7zCxjGRwmNPeSpEprU3a+sKYpiAxywpF+SfM=
Subject key identifier: 08:7E:FC:9A:46:EF:7B:87:F9:72:89:99:81:3B:A9:29:E5:48:8D:8E
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 671750F45AE809D34B9C0AA850788C609F464D9F
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205886.roa
Signing time: Sun 01 Mar 2026 05:41:56 +0000
ROA not before: Sun 01 Mar 2026 05:36:56 +0000
ROA not after: Sun 28 Feb 2027 05:41:56 +0000
asID: 205886
IP address blocks: 82.22.54.0/24 maxlen: 24
82.22.205.0/24 maxlen: 24
82.29.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:17:50:f4:5a:e8:09:d3:4b:9c:0a:a8:50:78:8c:60:9f:46:4d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Mar 1 05:36:56 2026 GMT
Not After : Feb 28 05:41:56 2027 GMT
Subject: CN=087EFC9A46EF7B87F9728999813BA929E5488D8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e6:36:1f:13:47:5b:61:55:ff:7d:c2:f3:b1:
8e:8e:51:c7:ac:68:32:7c:3c:05:13:17:3f:63:88:
ce:df:c1:ef:17:18:28:6c:55:77:2b:d0:b8:72:c7:
28:65:a5:88:a2:14:65:f0:a6:20:bf:b1:b8:26:eb:
53:b7:0a:71:6d:dd:3d:63:81:d4:40:9c:6d:ee:2b:
da:6f:61:36:43:a3:f7:37:2a:ba:e2:ea:8b:be:aa:
7a:60:92:b9:73:f7:81:f4:15:ea:9d:77:08:31:d1:
33:fb:41:de:f8:69:18:4f:d4:b3:77:be:41:7c:9a:
ff:cd:01:5e:bd:0f:90:88:bf:f0:e5:bb:77:de:ce:
f8:7d:a5:2f:93:0e:b8:f6:5a:62:3c:27:f4:5b:d8:
e5:2f:2f:bb:28:69:e2:da:15:8c:a7:74:63:7f:11:
5f:8d:92:4e:19:d5:e1:e6:60:dc:77:a9:3a:db:87:
e4:1b:1a:f9:23:36:97:9f:73:c3:ab:c5:73:56:d5:
9c:46:3f:9c:43:7a:5d:06:57:65:8f:2e:bd:2a:14:
bb:39:7c:12:ec:66:d0:f4:27:5e:b0:c0:24:d3:25:
f0:17:3f:51:a6:75:2d:50:7c:5a:64:b3:26:cf:c7:
ac:70:ba:0a:0d:83:ed:58:59:ef:fa:20:da:ee:9b:
8f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7E:FC:9A:46:EF:7B:87:F9:72:89:99:81:3B:A9:29:E5:48:8D:8E
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS205886.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.54.0/24
82.22.205.0/24
82.29.48.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:27:5e:c2:25:ec:c7:5f:22:8b:ec:6d:fe:7b:a7:aa:24:28:
83:ee:5d:1e:8b:24:2d:1a:3f:63:71:8d:c7:a8:ad:09:b5:7a:
23:87:39:83:a0:31:21:df:1b:72:4d:c6:45:80:88:35:df:d9:
2e:b6:32:50:5b:d0:73:de:66:86:83:ee:ef:97:23:55:f9:e1:
49:d3:05:d3:25:56:7e:81:7b:8f:ad:a9:94:6e:8d:a8:26:3d:
e7:54:e4:cc:32:01:90:2b:cf:31:95:95:e6:2e:49:f1:50:06:
7b:ff:cf:bb:da:73:3a:4e:44:54:5a:06:fa:b7:cd:84:f5:f5:
8e:3e:77:20:f0:01:02:e9:94:d7:15:00:89:d1:98:da:ff:bf:
81:53:4e:33:43:d8:0d:f6:fc:da:ea:b7:64:6e:25:51:61:a7:
8d:92:ef:9e:c5:4d:45:53:96:0b:be:03:f7:21:1a:fa:f4:ae:
78:4c:a9:61:80:4f:72:9d:cd:03:0a:a2:44:5b:1b:97:62:c9:
42:2e:44:34:33:de:e1:2a:8c:35:f2:b1:c0:b9:91:24:a1:13:
64:cb:3f:47:07:35:56:04:d2:21:de:ef:20:51:18:be:8f:7d:
6a:e9:cf:21:7f:b4:61:fa:67:3e:12:4d:b8:7f:ee:b9:98:1b:
17:a4:f1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:13:13 2026 by rpki-client