Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: aZaK2wGHljyNY5YNUuO9AvjOZv1yUY0/8OQURUynWiQ=
Subject key identifier: 7F:E5:D6:B6:49:CD:6A:30:2B:03:90:93:DF:5A:DA:B7:69:8A:DC:45
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7A6B60C734C01C6D8F6A803B80D69EE76DE45329
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
Signing time: Sat 01 Nov 2025 00:15:38 +0000
ROA not before: Sat 01 Nov 2025 00:10:38 +0000
ROA not after: Sat 31 Oct 2026 00:15:38 +0000
asID: 7018
IP address blocks: 46.202.51.0/24 maxlen: 24
46.202.53.0/24 maxlen: 24
46.202.87.0/24 maxlen: 24
46.202.96.0/24 maxlen: 24
46.202.97.0/24 maxlen: 24
46.202.98.0/24 maxlen: 24
46.202.99.0/24 maxlen: 24
46.202.124.0/24 maxlen: 24
46.202.125.0/24 maxlen: 24
46.202.126.0/24 maxlen: 24
46.202.127.0/24 maxlen: 24
46.202.201.0/24 maxlen: 24
46.202.202.0/24 maxlen: 24
46.202.203.0/24 maxlen: 24
46.202.207.0/24 maxlen: 24
46.202.216.0/24 maxlen: 24
46.202.217.0/24 maxlen: 24
46.202.219.0/24 maxlen: 24
46.202.220.0/24 maxlen: 24
46.202.221.0/24 maxlen: 24
46.202.222.0/24 maxlen: 24
46.202.223.0/24 maxlen: 24
46.203.3.0/24 maxlen: 24
46.203.5.0/24 maxlen: 24
46.203.13.0/24 maxlen: 24
46.203.14.0/24 maxlen: 24
46.203.21.0/24 maxlen: 24
46.203.22.0/24 maxlen: 24
46.203.29.0/24 maxlen: 24
46.203.32.0/24 maxlen: 24
46.203.43.0/24 maxlen: 24
46.203.44.0/24 maxlen: 24
46.203.47.0/24 maxlen: 24
46.203.54.0/24 maxlen: 24
46.203.56.0/24 maxlen: 24
46.203.58.0/24 maxlen: 24
46.203.62.0/24 maxlen: 24
46.203.74.0/24 maxlen: 24
46.203.80.0/24 maxlen: 24
46.203.91.0/24 maxlen: 24
46.203.92.0/24 maxlen: 24
46.203.104.0/24 maxlen: 24
46.203.113.0/24 maxlen: 24
46.203.121.0/24 maxlen: 24
46.203.137.0/24 maxlen: 24
46.203.161.0/24 maxlen: 24
46.203.223.0/24 maxlen: 24
46.203.225.0/24 maxlen: 24
46.203.249.0/24 maxlen: 24
91.124.0.0/24 maxlen: 24
91.124.2.0/24 maxlen: 24
91.124.3.0/24 maxlen: 24
91.124.16.0/24 maxlen: 24
91.124.59.0/24 maxlen: 24
91.124.82.0/24 maxlen: 24
91.124.90.0/24 maxlen: 24
91.124.134.0/24 maxlen: 24
91.124.208.0/24 maxlen: 24
91.124.242.0/24 maxlen: 24
92.112.56.0/24 maxlen: 24
92.112.62.0/24 maxlen: 24
92.112.111.0/24 maxlen: 24
92.112.112.0/24 maxlen: 24
92.112.113.0/24 maxlen: 24
92.112.114.0/24 maxlen: 24
92.112.115.0/24 maxlen: 24
92.112.116.0/24 maxlen: 24
92.112.117.0/24 maxlen: 24
92.112.118.0/24 maxlen: 24
92.112.144.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:6b:60:c7:34:c0:1c:6d:8f:6a:80:3b:80:d6:9e:e7:6d:e4:53:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Nov 1 00:10:38 2025 GMT
Not After : Oct 31 00:15:38 2026 GMT
Subject: CN=7FE5D6B649CD6A302B039093DF5ADAB7698ADC45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:4e:cd:4a:78:72:1a:47:07:61:05:f9:fe:
82:07:a4:6a:65:ef:ed:e1:1e:97:ff:03:97:e6:d0:
29:5d:0a:24:3d:a7:c8:4b:6b:1a:72:10:2a:8f:e0:
d8:c0:07:78:09:82:b0:e3:9d:42:2a:ef:fe:09:d2:
4c:37:1b:d3:e5:45:af:99:76:84:a7:5b:cf:8b:f0:
17:07:38:ae:ed:28:5f:04:f0:41:9b:4a:72:ac:b5:
fd:c4:21:6e:d3:7d:9d:2d:98:e4:c8:c9:3e:4f:a8:
19:42:0c:63:f0:f9:6f:c8:cb:17:8b:5e:f7:0e:8b:
8d:ac:68:9f:4e:e5:7a:e2:02:e1:9d:35:61:81:4d:
61:b2:05:00:ab:a6:32:11:9a:03:78:bc:71:91:c1:
e6:d3:de:70:e3:ca:e9:63:2c:7b:78:92:13:26:9e:
f9:b1:63:ed:8e:0a:ba:fd:03:17:61:cc:ec:6e:df:
75:93:e7:c5:10:bb:87:a7:4e:18:38:41:b3:11:0a:
16:24:36:ac:25:e2:63:c3:87:cb:b5:2b:87:fe:cb:
cd:3c:54:6a:97:da:7d:44:96:db:70:ff:0f:1e:af:
ac:a0:b2:77:16:dc:88:26:f5:27:a8:67:07:66:14:
2f:72:4f:23:cc:0d:50:41:a1:cc:0c:95:ce:45:fd:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E5:D6:B6:49:CD:6A:30:2B:03:90:93:DF:5A:DA:B7:69:8A:DC:45
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.51.0/24
46.202.53.0/24
46.202.87.0/24
46.202.96.0/22
46.202.124.0/22
46.202.201.0-46.202.203.255
46.202.207.0/24
46.202.216.0/23
46.202.219.0-46.202.223.255
46.203.3.0/24
46.203.5.0/24
46.203.13.0-46.203.14.255
46.203.21.0-46.203.22.255
46.203.29.0/24
46.203.32.0/24
46.203.43.0-46.203.44.255
46.203.47.0/24
46.203.54.0/24
46.203.56.0/24
46.203.58.0/24
46.203.62.0/24
46.203.74.0/24
46.203.80.0/24
46.203.91.0-46.203.92.255
46.203.104.0/24
46.203.113.0/24
46.203.121.0/24
46.203.137.0/24
46.203.161.0/24
46.203.223.0/24
46.203.225.0/24
46.203.249.0/24
91.124.0.0/24
91.124.2.0/23
91.124.16.0/24
91.124.59.0/24
91.124.82.0/24
91.124.90.0/24
91.124.134.0/24
91.124.208.0/24
91.124.242.0/24
92.112.56.0/24
92.112.62.0/24
92.112.111.0-92.112.118.255
92.112.144.0/24
92.113.6.0/24
92.113.15.0/24
92.113.40.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e5:c0:c2:c6:05:e1:79:e7:30:6e:5f:b1:a2:08:53:50:68:
27:dd:c2:06:32:40:5f:6c:79:44:fc:39:34:70:58:77:84:6f:
dc:08:72:cc:8a:57:ad:9d:f0:67:9d:a6:b4:bd:07:d4:b2:a4:
9f:27:e7:50:53:8e:40:6c:13:8c:e1:eb:fe:41:7c:0b:88:12:
64:38:fa:02:1c:75:45:73:c7:9a:e6:fc:9a:55:7f:76:61:0d:
f9:65:c0:ce:db:b3:4a:f4:b3:b3:1b:41:f9:47:82:38:08:ff:
71:a9:14:78:dd:5f:8d:af:42:bf:3e:72:83:6f:24:7d:e0:70:
be:de:b0:11:66:b0:70:de:ed:2c:6e:98:cf:30:2b:4f:8d:86:
0b:74:56:0e:72:1a:ce:90:c6:4b:2f:9c:f7:1c:33:ff:ae:7c:
79:3a:3a:84:0a:1e:19:22:19:64:6a:00:7b:d1:96:30:87:93:
3d:88:c6:ff:0b:1d:18:45:cd:b6:c9:37:d3:88:49:e9:16:fe:
d1:4d:7d:0d:50:67:de:a1:5b:fa:79:e2:28:cb:91:a9:67:f4:
6f:33:4e:29:b1:ab:3d:ec:f5:ce:3f:60:3e:9c:92:89:50:42:
3f:d1:df:50:1e:89:df:9e:2c:54:d0:fd:df:fc:fc:7d:65:ee:
9f:32:10:72
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:51:27 2025 by rpki-client