Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS200590.roa
File: AS200590.roa (raw, json)
Hash identifier: tdcNkI/+mMtabjeMdw5H6T/yvsqwOPJQtGrFQq3fM5o=
Subject key identifier: AA:D6:B6:03:BE:8A:EE:F3:D5:6E:EE:D1:23:57:56:64:A3:A0:D1:84
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1B244E6A522D0BB7A9877F3732F4A6BD6DDB8AF9
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS200590.roa
Signing time: Thu 26 Feb 2026 08:27:19 +0000
ROA not before: Thu 26 Feb 2026 08:22:19 +0000
ROA not after: Thu 25 Feb 2027 08:27:19 +0000
asID: 200590
IP address blocks: 178.95.0.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:24:4e:6a:52:2d:0b:b7:a9:87:7f:37:32:f4:a6:bd:6d:db:8a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 26 08:22:19 2026 GMT
Not After : Feb 25 08:27:19 2027 GMT
Subject: CN=AAD6B603BE8AEEF3D56EEED123575664A3A0D184
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9e:2c:06:b9:5c:48:1e:47:e2:b1:df:08:10:
53:a2:63:a0:1e:27:56:b3:e3:f7:74:cf:b8:ea:cc:
d1:12:0a:90:ac:cb:59:c4:70:32:fd:56:85:df:70:
cf:40:40:a2:98:a9:cd:3a:9b:95:5d:02:a3:08:cb:
44:93:48:eb:95:60:e6:da:70:f4:32:3b:b6:e9:73:
7c:8d:c5:86:db:a2:2d:e5:3a:10:97:36:ac:f3:d3:
fb:49:a1:f2:dd:ff:35:dd:1a:f1:49:0e:da:b4:f7:
87:16:0a:ba:e6:30:8a:7e:49:ee:aa:5c:d8:9a:ba:
ab:4b:80:42:6a:c1:c0:f8:51:7b:74:5d:f4:9d:53:
a0:af:6c:fc:45:2e:16:bf:33:44:65:92:64:21:cf:
58:ea:e7:06:10:d3:5d:66:70:8e:f6:f0:82:72:fd:
11:ca:fb:8a:c6:4d:b0:5b:a4:5b:3f:cd:7c:69:fe:
e3:5e:72:89:2d:e1:46:ee:8b:37:e8:d2:82:b5:06:
ba:db:96:1e:97:7a:eb:88:e4:2e:ed:60:4b:da:a4:
ab:bc:d9:fa:25:5a:7b:c9:fc:8e:fd:36:62:69:7e:
82:14:c9:c3:d1:0f:36:d1:21:77:2b:b9:6e:6b:dd:
d0:d3:94:5f:d5:a1:b7:a7:72:ac:25:86:ea:1a:16:
d8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D6:B6:03:BE:8A:EE:F3:D5:6E:EE:D1:23:57:56:64:A3:A0:D1:84
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS200590.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.95.0.0/22
Signature Algorithm: sha256WithRSAEncryption
73:c6:af:40:86:07:db:ad:21:ac:54:a6:55:d4:2b:39:17:e6:
36:1f:51:32:7c:9c:fa:2c:88:ec:5c:35:aa:42:f3:e0:22:27:
38:54:aa:3d:7d:17:ab:d5:1e:77:eb:3b:3a:a7:83:32:9a:f5:
60:fc:24:a7:de:1a:fb:44:31:3a:f9:71:2f:22:bd:a2:e1:e1:
26:db:b1:99:ed:a8:e2:aa:87:c8:07:67:0c:12:26:8d:ec:04:
36:a4:d5:97:1a:0e:4e:d8:27:e8:58:5c:ea:be:b4:87:97:3c:
ab:2c:81:4d:3e:10:29:94:e7:c6:da:67:5b:f9:a1:c6:a0:8b:
42:16:30:de:aa:f0:d3:ea:80:7d:d4:7d:71:a2:fd:53:07:b4:
7a:e1:2e:45:f4:07:98:b7:64:e9:49:6d:03:b1:2b:fd:49:d6:
39:80:5c:da:c7:e5:94:cb:8f:3d:52:5a:22:1c:c1:4c:23:a1:
ff:d0:e1:5e:b7:1f:3e:11:e4:5d:da:a0:2c:08:ac:21:bb:f4:
46:c9:af:a9:0c:dd:af:d9:1c:11:d8:29:68:ea:c7:1c:44:62:
eb:01:e6:66:af:cb:16:84:58:96:97:42:bc:f5:4d:9e:06:93:
e3:0b:da:11:17:07:f9:74:61:00:b4:14:79:24:44:d4:b0:b6:
f9:96:37:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 21:37:57 2026 by rpki-client