Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: ImjFva/4wLaYX1zz9IjiW+zuuA1atPS+a+BBkwUmb7U=
Subject key identifier: 02:0F:CE:09:BB:DD:EA:8A:DF:17:B2:37:93:41:C0:5C:B6:88:AA:FC
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4D26D51C70248ED57980B61C3A8BC59AFCBBC5A2
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
Signing time: Sat 04 Apr 2026 00:04:32 +0000
ROA not before: Fri 03 Apr 2026 23:59:32 +0000
ROA not after: Sat 03 Apr 2027 00:04:32 +0000
asID: 7018
IP address blocks: 46.202.53.0/24 maxlen: 24
46.202.87.0/24 maxlen: 24
46.202.96.0/24 maxlen: 24
46.202.97.0/24 maxlen: 24
46.202.98.0/24 maxlen: 24
46.202.99.0/24 maxlen: 24
46.202.124.0/24 maxlen: 24
46.202.125.0/24 maxlen: 24
46.202.126.0/24 maxlen: 24
46.202.127.0/24 maxlen: 24
46.202.201.0/24 maxlen: 24
46.202.202.0/24 maxlen: 24
46.202.203.0/24 maxlen: 24
46.202.207.0/24 maxlen: 24
46.202.216.0/24 maxlen: 24
46.202.217.0/24 maxlen: 24
46.202.219.0/24 maxlen: 24
46.202.220.0/24 maxlen: 24
46.202.221.0/24 maxlen: 24
46.202.222.0/24 maxlen: 24
46.202.223.0/24 maxlen: 24
46.203.3.0/24 maxlen: 24
46.203.5.0/24 maxlen: 24
46.203.13.0/24 maxlen: 24
46.203.14.0/24 maxlen: 24
46.203.21.0/24 maxlen: 24
46.203.22.0/24 maxlen: 24
46.203.29.0/24 maxlen: 24
46.203.32.0/24 maxlen: 24
46.203.43.0/24 maxlen: 24
46.203.44.0/24 maxlen: 24
46.203.47.0/24 maxlen: 24
46.203.54.0/24 maxlen: 24
46.203.56.0/24 maxlen: 24
46.203.58.0/24 maxlen: 24
46.203.62.0/24 maxlen: 24
46.203.74.0/24 maxlen: 24
46.203.80.0/24 maxlen: 24
46.203.91.0/24 maxlen: 24
46.203.92.0/24 maxlen: 24
46.203.104.0/24 maxlen: 24
46.203.113.0/24 maxlen: 24
46.203.121.0/24 maxlen: 24
46.203.137.0/24 maxlen: 24
46.203.161.0/24 maxlen: 24
46.203.223.0/24 maxlen: 24
46.203.225.0/24 maxlen: 24
91.124.0.0/24 maxlen: 24
91.124.2.0/24 maxlen: 24
91.124.3.0/24 maxlen: 24
91.124.16.0/24 maxlen: 24
91.124.59.0/24 maxlen: 24
91.124.82.0/24 maxlen: 24
91.124.90.0/24 maxlen: 24
91.124.134.0/24 maxlen: 24
91.124.208.0/24 maxlen: 24
91.124.242.0/24 maxlen: 24
92.112.62.0/24 maxlen: 24
92.112.111.0/24 maxlen: 24
92.112.112.0/24 maxlen: 24
92.112.113.0/24 maxlen: 24
92.112.114.0/24 maxlen: 24
92.112.115.0/24 maxlen: 24
92.112.116.0/24 maxlen: 24
92.112.117.0/24 maxlen: 24
92.112.118.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:26:d5:1c:70:24:8e:d5:79:80:b6:1c:3a:8b:c5:9a:fc:bb:c5:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 3 23:59:32 2026 GMT
Not After : Apr 3 00:04:32 2027 GMT
Subject: CN=020FCE09BBDDEA8ADF17B2379341C05CB688AAFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b4:76:d4:7a:50:9e:f3:75:5d:aa:33:76:a6:
c9:30:89:1c:6c:ad:4d:07:a1:40:89:cb:8d:4d:c7:
88:85:ab:04:d0:f0:30:84:68:02:71:15:f1:f8:a2:
88:70:e9:8f:59:af:70:0e:fb:00:09:df:4a:ea:67:
e6:e4:ec:fb:8f:a6:84:27:a3:10:37:94:24:53:f3:
ad:ce:d7:d2:e4:73:d3:e4:33:f9:52:33:d7:52:40:
35:ff:7f:7e:ea:3a:55:4e:8b:56:82:08:7b:0a:a8:
e7:ec:44:15:1e:50:24:09:de:6c:bd:2d:6a:2e:47:
f1:4b:3b:0f:f0:43:87:f0:55:34:7f:ae:3b:1c:85:
b0:bd:ab:25:e2:65:a4:48:c8:46:2d:e3:34:6b:ca:
51:44:e2:f6:f5:37:44:98:87:da:48:b9:fa:3d:7a:
9e:fd:cf:fb:d2:fc:2c:b2:aa:c0:52:67:a5:ce:7c:
03:47:50:de:e2:07:70:dc:d8:5b:2e:79:18:41:8e:
c3:68:e6:52:da:91:92:a1:c7:49:ea:e9:62:4b:b9:
d6:cb:c3:24:fb:dc:23:2a:2d:21:75:23:48:a1:0e:
05:50:ac:51:39:7a:ed:c7:15:39:b0:53:11:2a:65:
dc:89:06:85:89:c9:e6:b5:80:67:57:4a:66:e8:33:
34:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0F:CE:09:BB:DD:EA:8A:DF:17:B2:37:93:41:C0:5C:B6:88:AA:FC
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.53.0/24
46.202.87.0/24
46.202.96.0/22
46.202.124.0/22
46.202.201.0-46.202.203.255
46.202.207.0/24
46.202.216.0/23
46.202.219.0-46.202.223.255
46.203.3.0/24
46.203.5.0/24
46.203.13.0-46.203.14.255
46.203.21.0-46.203.22.255
46.203.29.0/24
46.203.32.0/24
46.203.43.0-46.203.44.255
46.203.47.0/24
46.203.54.0/24
46.203.56.0/24
46.203.58.0/24
46.203.62.0/24
46.203.74.0/24
46.203.80.0/24
46.203.91.0-46.203.92.255
46.203.104.0/24
46.203.113.0/24
46.203.121.0/24
46.203.137.0/24
46.203.161.0/24
46.203.223.0/24
46.203.225.0/24
91.124.0.0/24
91.124.2.0/23
91.124.16.0/24
91.124.59.0/24
91.124.82.0/24
91.124.90.0/24
91.124.134.0/24
91.124.208.0/24
91.124.242.0/24
92.112.62.0/24
92.112.111.0-92.112.118.255
92.113.6.0/24
92.113.15.0/24
92.113.40.0/24
Signature Algorithm: sha256WithRSAEncryption
85:f7:ae:64:c7:37:a2:49:fb:ed:b1:a4:1a:ca:54:da:86:56:
bf:98:8f:26:cc:4f:03:ef:62:51:f6:9f:34:b6:ce:53:60:05:
d7:e9:72:f1:46:09:55:1d:7b:81:db:7b:07:ec:b3:ca:db:ec:
25:0b:81:96:19:aa:1b:4a:27:2c:bd:09:07:49:1b:45:b1:5e:
8b:ca:e8:5f:ee:ca:5e:cf:58:27:35:52:ec:5c:ee:1d:ec:77:
cc:8a:bb:41:bc:0d:83:48:59:07:0a:c0:7e:3c:38:b3:20:94:
d1:9b:30:2c:b2:a1:24:0c:ec:0b:67:56:61:f9:08:35:dc:0b:
2d:20:cb:e6:3b:b5:4c:88:56:38:62:31:6d:25:d9:e6:6e:bf:
ab:37:a7:90:dc:59:d1:36:67:02:50:f2:4b:a8:b4:16:f3:19:
db:37:04:5f:a9:c6:8e:18:9d:5d:7c:28:3a:5a:7b:d2:96:c4:
2c:85:f6:97:ea:14:ef:8a:45:fe:5c:c9:77:a3:47:36:c6:2e:
0d:f7:71:ad:ee:15:8d:5c:e3:fd:9f:bd:c1:06:2a:07:d6:c2:
02:26:c0:64:e5:5d:e6:70:f2:a1:e8:59:aa:9e:39:82:26:96:
fa:1e:f1:cb:73:e3:a3:58:e7:76:f6:c2:84:37:23:f4:dd:52:
ea:df:7d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:47:40 2026 by rpki-client