Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: cNrisa8RY/4Zh3nEfGbvXDPhVdRgtcPyDSkWZH7QBpQ=
Subject key identifier: B8:98:83:ED:54:5D:34:DD:EF:84:9F:2A:F0:85:10:82:60:92:93:FA
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 53580FF475B8E345A83EBD5E22CC1F62777E70AE
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
Signing time: Mon 13 Apr 2026 11:41:13 +0000
ROA not before: Mon 13 Apr 2026 11:36:13 +0000
ROA not after: Mon 12 Apr 2027 11:41:13 +0000
asID: 64267
IP address blocks: 91.124.36.0/24 maxlen: 24
92.112.141.0/24 maxlen: 24
92.113.106.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
95.135.12.0/24 maxlen: 24
95.135.19.0/24 maxlen: 24
95.135.25.0/24 maxlen: 24
95.135.183.0/24 maxlen: 24
178.92.158.0/24 maxlen: 24
178.92.195.0/24 maxlen: 24
178.92.219.0/24 maxlen: 24
178.92.246.0/24 maxlen: 24
178.93.30.0/24 maxlen: 24
178.94.149.0/24 maxlen: 24
178.95.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:58:0f:f4:75:b8:e3:45:a8:3e:bd:5e:22:cc:1f:62:77:7e:70:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 13 11:36:13 2026 GMT
Not After : Apr 12 11:41:13 2027 GMT
Subject: CN=B89883ED545D34DDEF849F2AF0851082609293FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:62:c4:b3:32:87:a5:cb:9b:6c:de:83:d6:b8:
1e:dc:25:3e:32:8b:d8:96:e5:2d:9d:06:04:86:9a:
85:90:f2:8e:b3:51:38:84:df:9b:87:77:5e:e5:11:
bf:eb:f8:73:df:53:e1:4e:90:f0:d8:3b:9e:e9:3f:
2f:e6:c7:5f:4b:fa:2d:25:ab:87:de:ac:47:80:b5:
03:dd:e6:4e:99:64:3d:ee:22:6d:0f:14:5f:96:52:
24:26:c9:63:63:e3:0e:63:ca:a4:b0:16:5f:6a:4c:
a1:81:69:41:74:18:49:a4:2c:a8:41:cb:24:8b:23:
af:17:9f:33:bd:98:d4:74:14:31:6f:40:ee:05:f4:
6a:2b:31:14:8f:cb:6f:76:ad:9f:45:03:e3:0c:b1:
73:bf:77:a4:04:a6:ea:11:4c:24:c3:57:c9:37:16:
3b:5a:b7:00:d8:b9:49:c8:55:e9:6e:b8:04:eb:18:
0f:58:81:78:4d:5f:5c:35:9e:52:6c:97:d6:92:69:
46:78:04:82:8a:70:1c:8f:53:26:28:52:34:88:22:
8a:ab:0e:ac:bd:51:72:21:1a:44:c0:59:ab:76:53:
a6:e0:1a:d0:10:ad:27:b6:20:9e:7e:90:63:cd:73:
04:86:95:b7:ec:37:0e:42:6a:82:6e:85:87:48:2f:
ad:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:98:83:ED:54:5D:34:DD:EF:84:9F:2A:F0:85:10:82:60:92:93:FA
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.36.0/24
92.112.141.0/24
92.113.106.0/24
92.113.215.0/24
95.135.12.0/24
95.135.19.0/24
95.135.25.0/24
95.135.183.0/24
178.92.158.0/24
178.92.195.0/24
178.92.219.0/24
178.92.246.0/24
178.93.30.0/24
178.94.149.0/24
178.95.225.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:a5:18:73:3c:a8:5b:95:74:1f:fa:8b:ac:db:5b:8c:9c:48:
9f:b3:21:1c:4c:86:a3:85:6f:d9:c6:7a:ee:18:88:8f:60:19:
d3:99:d3:08:d4:4d:3b:ea:3e:26:3c:1a:81:60:20:4d:a7:45:
a0:c1:2d:4e:49:84:39:f0:0d:89:f8:28:1d:85:7e:c7:d9:b4:
c9:86:ae:2d:18:96:e2:75:be:c7:c0:e0:67:39:03:93:58:76:
57:89:37:44:4a:7e:5a:f5:fe:e0:d1:99:1a:e3:9e:58:a4:75:
75:e5:9c:8a:14:89:86:62:ed:f8:cd:52:fd:58:6b:20:16:33:
b4:7f:c8:06:05:4f:b1:99:51:da:de:f6:6e:db:f8:2b:11:6c:
ce:2f:1a:b4:0e:cd:64:7b:2b:20:fb:a8:44:19:d6:fc:97:44:
ed:d4:5d:78:7b:5b:19:15:93:5d:7a:bd:43:57:0e:e1:55:2f:
ca:4a:75:94:9c:6b:b7:ed:15:9e:46:89:b8:51:af:23:48:1d:
56:e5:70:2e:d5:37:8c:26:37:d4:1e:5e:1a:86:79:51:b2:0b:
7e:c2:fd:d7:35:cb:fc:75:d2:a3:f9:c6:4e:d5:3b:70:b7:e2:
13:d0:93:d4:6b:45:54:ad:20:a9:3d:6d:62:d3:bf:84:2f:f1:
fd:74:b4:20
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgIUU1gP9HW440WoPr1eIswfYnd+cK4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA0MTMxMTM2MTNaFw0yNzA0MTIxMTQxMTNaMDMxMTAvBgNV
BAMTKEI4OTg4M0VENTQ1RDM0RERFRjg0OUYyQUYwODUxMDgyNjA5MjkzRkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUYsSzMoely5ts3oPWuB7cJT4y
i9iW5S2dBgSGmoWQ8o6zUTiE35uHd17lEb/r+HPfU+FOkPDYO57pPy/mx19L+i0l
q4ferEeAtQPd5k6ZZD3uIm0PFF+WUiQmyWNj4w5jyqSwFl9qTKGBaUF0GEmkLKhB
yySLI68XnzO9mNR0FDFvQO4F9GorMRSPy292rZ9FA+MMsXO/d6QEpuoRTCTDV8k3
FjtatwDYuUnIVeluuATrGA9YgXhNX1w1nlJsl9aSaUZ4BIKKcByPUyYoUjSIIoqr
Dqy9UXIhGkTAWat2U6bgGtAQrSe2IJ5+kGPNcwSGlbfsNw5CaoJuhYdIL633AgMB
AAGjggJdMIICWTAdBgNVHQ4EFgQUuJiD7VRdNN3vhJ8q8IUQgmCSk/owHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNjQyNjcucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwcwYIKwYBBQUHAQcBAf8EZDBiMGAEAgABMFoDBABbfCQD
BABccI0DBABccWoDBABccdcDBABfhwwDBABfhxMDBABfhxkDBABfh7cDBACyXJ4D
BACyXMMDBACyXNsDBACyXPYDBACyXR4DBACyXpUDBACyX+EwDQYJKoZIhvcNAQEL
BQADggEBAAylGHM8qFuVdB/6i6zbW4ycSJ+zIRxMhqOFb9nGeu4YiI9gGdOZ0wjU
TTvqPiY8GoFgIE2nRaDBLU5JhDnwDYn4KB2FfsfZtMmGri0YluJ1vsfA4Gc5A5NY
dleJN0RKflr1/uDRmRrjnlikdXXlnIoUiYZi7fjNUv1YayAWM7R/yAYFT7GZUdre
9m7b+CsRbM4vGrQOzWR7KyD7qEQZ1vyXRO3UXXh7WxkVk116vUNXDuFVL8pKdZSc
a7ftFZ5GibhRryNIHVblcC7VN4wmN9QeXhqGeVGyC37C/dc1y/x10qP5xk7VO3C3
4hPQk9RrRVStIKk9bWLTv4Qv8f10tCA=
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:51:44 2026 by rpki-client