Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS207550.roa
File: AS207550.roa (raw, json)
Hash identifier: WTXBztR97pq1TTIJunjjWuLOn10FBf5RgDj5tDduJ54=
Subject key identifier: 14:C9:BC:53:2B:A2:76:31:62:CD:2C:7A:9D:17:7D:CA:1C:6B:0B:59
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 259F6C43AF1209045F957BC178290B38B8009AE4
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS207550.roa
Signing time: Tue 14 Apr 2026 06:22:06 +0000
ROA not before: Tue 14 Apr 2026 06:17:06 +0000
ROA not after: Tue 13 Apr 2027 06:22:06 +0000
asID: 207550
IP address blocks: 82.47.13.0/24 maxlen: 24
82.47.32.0/22 maxlen: 24
82.47.226.0/23 maxlen: 24
84.75.149.0/24 maxlen: 24
84.75.166.0/24 maxlen: 24
84.75.197.0/24 maxlen: 24
84.75.207.0/24 maxlen: 24
84.75.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:9f:6c:43:af:12:09:04:5f:95:7b:c1:78:29:0b:38:b8:00:9a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Apr 14 06:17:06 2026 GMT
Not After : Apr 13 06:22:06 2027 GMT
Subject: CN=14C9BC532BA2763162CD2C7A9D177DCA1C6B0B59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:06:3c:e5:51:be:95:b4:28:84:7f:81:3c:37:
c2:ab:03:00:26:05:96:27:f5:07:f8:b2:7f:15:c8:
44:2c:b8:5c:52:26:dc:15:7d:6a:73:72:71:9c:52:
9b:78:4c:1f:54:3c:7f:47:17:3d:6f:a2:8b:92:91:
46:4a:07:42:a8:ea:5f:cc:b6:2b:90:87:38:32:2d:
cd:92:af:c4:8d:08:f7:ce:a5:12:12:b3:4d:5b:15:
31:8b:32:5f:12:df:30:71:7c:63:c6:5f:d6:b4:b8:
cf:df:d8:c5:c6:40:e1:6c:bc:f1:b1:5a:6b:19:82:
31:35:15:03:d5:b2:11:4e:bd:b4:19:4b:70:75:50:
da:91:b6:f0:38:02:0f:c5:32:f0:49:12:7b:bf:87:
a3:d1:57:b2:18:bf:65:75:44:d8:41:2d:7f:aa:2b:
10:11:80:e5:a2:56:21:dc:9f:84:2a:63:fe:49:fc:
45:0a:d5:0b:59:f6:4c:43:45:a6:cc:5c:9d:3d:c4:
68:48:39:ec:0a:74:1b:77:2b:a4:86:b4:94:03:d0:
11:81:c1:d1:fa:1e:4b:21:de:3d:1c:fc:7e:44:dd:
44:c8:12:19:40:73:48:2a:b7:91:ae:fe:bb:dc:34:
c3:1e:92:b8:af:14:85:1a:cb:4c:97:15:6d:5b:36:
2e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C9:BC:53:2B:A2:76:31:62:CD:2C:7A:9D:17:7D:CA:1C:6B:0B:59
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS207550.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.47.13.0/24
82.47.32.0/22
82.47.226.0/23
84.75.149.0/24
84.75.166.0/24
84.75.197.0/24
84.75.207.0/24
84.75.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:84:d9:4a:81:ce:b8:66:37:9f:24:a4:ef:c1:2b:1c:93:7f:
30:b9:f6:a4:e0:af:a9:e7:32:5f:ac:86:30:ee:50:46:11:5e:
0c:41:df:93:13:de:78:8f:8c:68:27:ea:52:da:33:25:50:03:
48:14:b5:d6:49:c1:13:73:aa:a5:8f:e1:ff:81:51:0f:ad:c8:
32:47:09:e2:77:36:d5:5a:1f:d5:d1:bc:d1:3a:82:00:67:2f:
35:24:54:89:aa:3f:bc:77:86:e0:5b:fd:27:86:cf:f5:1e:66:
8a:40:69:65:ea:e4:be:b3:3c:c3:2b:fc:37:13:fd:3a:0e:d0:
d0:c3:81:e1:d8:2a:94:42:f5:4f:63:ed:77:c1:0c:e8:3a:ba:
28:d8:9b:3d:bc:7f:53:c5:1e:79:5f:2d:6e:6a:c3:65:62:3d:
46:cb:5b:29:9d:60:c6:c4:12:89:25:fa:bb:e0:51:ba:58:84:
84:2d:05:5d:62:71:36:64:fc:db:8a:98:5a:6e:02:d5:cf:65:
96:34:a7:8f:7f:ed:a1:49:c9:a5:86:0a:34:e9:af:30:80:2d:
2b:c6:dc:83:be:8b:7a:35:e1:8b:bc:3f:5d:85:e6:22:64:d4:
43:4c:11:b8:24:54:6a:47:45:f5:3e:50:ef:a7:df:d6:4f:c2:
0e:fe:d5:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:00:06 2026 by rpki-client