Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: zqjYj2jyr4QfQ6B6tboDWJHg9hBBXlHx6qHQ4F/MdtI=
Subject key identifier: CD:1C:46:8A:BD:21:45:D2:0A:41:35:29:72:55:98:99:13:38:7D:C1
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 1316A628EAAA0FD1BC405ED96D098C5510FE1B6B
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
Signing time: Wed 14 May 2025 02:50:06 +0000
ROA not before: Wed 14 May 2025 02:45:06 +0000
ROA not after: Wed 13 May 2026 02:50:06 +0000
asID: 7018
IP address blocks: 46.202.1.0/24 maxlen: 24
46.202.49.0/24 maxlen: 24
46.202.50.0/24 maxlen: 24
46.202.51.0/24 maxlen: 24
46.202.53.0/24 maxlen: 24
46.202.87.0/24 maxlen: 24
46.202.96.0/24 maxlen: 24
46.202.97.0/24 maxlen: 24
46.202.98.0/24 maxlen: 24
46.202.99.0/24 maxlen: 24
46.202.124.0/24 maxlen: 24
46.202.125.0/24 maxlen: 24
46.202.126.0/24 maxlen: 24
46.202.127.0/24 maxlen: 24
46.202.201.0/24 maxlen: 24
46.202.202.0/24 maxlen: 24
46.202.203.0/24 maxlen: 24
46.202.207.0/24 maxlen: 24
46.202.216.0/24 maxlen: 24
46.202.217.0/24 maxlen: 24
46.202.219.0/24 maxlen: 24
46.202.220.0/24 maxlen: 24
46.202.221.0/24 maxlen: 24
46.202.222.0/24 maxlen: 24
46.202.223.0/24 maxlen: 24
46.203.3.0/24 maxlen: 24
46.203.5.0/24 maxlen: 24
46.203.13.0/24 maxlen: 24
46.203.14.0/24 maxlen: 24
46.203.21.0/24 maxlen: 24
46.203.22.0/24 maxlen: 24
46.203.29.0/24 maxlen: 24
46.203.32.0/24 maxlen: 24
46.203.43.0/24 maxlen: 24
46.203.44.0/24 maxlen: 24
46.203.47.0/24 maxlen: 24
46.203.54.0/24 maxlen: 24
46.203.56.0/24 maxlen: 24
46.203.58.0/24 maxlen: 24
46.203.62.0/24 maxlen: 24
46.203.74.0/24 maxlen: 24
46.203.80.0/24 maxlen: 24
46.203.91.0/24 maxlen: 24
46.203.92.0/24 maxlen: 24
46.203.104.0/24 maxlen: 24
46.203.113.0/24 maxlen: 24
46.203.121.0/24 maxlen: 24
46.203.137.0/24 maxlen: 24
46.203.150.0/24 maxlen: 24
46.203.161.0/24 maxlen: 24
46.203.214.0/24 maxlen: 24
46.203.223.0/24 maxlen: 24
46.203.225.0/24 maxlen: 24
46.203.249.0/24 maxlen: 24
91.124.0.0/24 maxlen: 24
91.124.2.0/24 maxlen: 24
91.124.3.0/24 maxlen: 24
91.124.16.0/24 maxlen: 24
91.124.59.0/24 maxlen: 24
91.124.82.0/24 maxlen: 24
91.124.90.0/24 maxlen: 24
91.124.134.0/24 maxlen: 24
91.124.208.0/24 maxlen: 24
91.124.242.0/24 maxlen: 24
92.112.56.0/24 maxlen: 24
92.112.62.0/24 maxlen: 24
92.112.111.0/24 maxlen: 24
92.112.112.0/24 maxlen: 24
92.112.113.0/24 maxlen: 24
92.112.114.0/24 maxlen: 24
92.112.115.0/24 maxlen: 24
92.112.116.0/24 maxlen: 24
92.112.117.0/24 maxlen: 24
92.112.118.0/24 maxlen: 24
92.112.144.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:16:a6:28:ea:aa:0f:d1:bc:40:5e:d9:6d:09:8c:55:10:fe:1b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 14 02:45:06 2025 GMT
Not After : May 13 02:50:06 2026 GMT
Subject: CN=CD1C468ABD2145D20A4135297255989913387DC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:fa:d7:93:b1:c7:06:a4:ff:c1:08:1d:d5:
fe:1b:48:2f:1c:8f:19:1f:d3:da:a8:76:92:ca:43:
de:19:56:61:03:8a:e6:ee:88:d1:32:20:ec:6d:81:
16:5d:02:2b:1c:4e:68:a8:d2:6c:9d:0d:81:2b:ca:
a8:e4:44:81:c0:a5:9a:32:94:1c:c8:c9:ce:e0:b9:
d0:52:24:12:b8:d0:cc:e5:ad:cf:79:46:d6:0f:39:
34:0d:f4:7a:09:d2:e1:87:e0:77:be:18:22:92:07:
61:35:3e:85:00:c9:06:d7:24:39:8c:6d:a1:79:33:
69:df:11:aa:40:73:f2:77:f4:34:ec:ad:b2:06:b1:
f7:20:99:1e:2b:b0:60:8f:9f:72:55:ee:75:5a:cc:
74:cc:42:14:a0:5f:15:8b:ab:d0:b9:00:e2:00:0a:
a2:9c:ff:d6:16:cc:e4:20:6c:4c:27:ab:65:33:b9:
d1:e6:a5:48:bd:47:03:8d:c0:89:a1:30:f5:fe:60:
b2:73:8e:78:35:af:32:7b:c3:56:e7:86:3b:0e:c6:
8c:c7:23:9c:1d:d3:38:80:a7:f9:41:25:f3:47:5a:
c7:d4:2d:8e:11:f0:38:b7:c3:5d:dd:bf:83:a3:f4:
d6:77:aa:09:6c:b4:e7:13:1e:b1:d3:91:8d:85:74:
e5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1C:46:8A:BD:21:45:D2:0A:41:35:29:72:55:98:99:13:38:7D:C1
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.1.0/24
46.202.49.0-46.202.51.255
46.202.53.0/24
46.202.87.0/24
46.202.96.0/22
46.202.124.0/22
46.202.201.0-46.202.203.255
46.202.207.0/24
46.202.216.0/23
46.202.219.0-46.202.223.255
46.203.3.0/24
46.203.5.0/24
46.203.13.0-46.203.14.255
46.203.21.0-46.203.22.255
46.203.29.0/24
46.203.32.0/24
46.203.43.0-46.203.44.255
46.203.47.0/24
46.203.54.0/24
46.203.56.0/24
46.203.58.0/24
46.203.62.0/24
46.203.74.0/24
46.203.80.0/24
46.203.91.0-46.203.92.255
46.203.104.0/24
46.203.113.0/24
46.203.121.0/24
46.203.137.0/24
46.203.150.0/24
46.203.161.0/24
46.203.214.0/24
46.203.223.0/24
46.203.225.0/24
46.203.249.0/24
91.124.0.0/24
91.124.2.0/23
91.124.16.0/24
91.124.59.0/24
91.124.82.0/24
91.124.90.0/24
91.124.134.0/24
91.124.208.0/24
91.124.242.0/24
92.112.56.0/24
92.112.62.0/24
92.112.111.0-92.112.118.255
92.112.144.0/24
92.113.6.0/24
92.113.15.0/24
92.113.40.0/24
Signature Algorithm: sha256WithRSAEncryption
25:2d:14:eb:53:41:fc:ef:c2:b8:9a:90:b6:4c:86:96:38:cc:
d1:8a:cd:46:8f:b4:5d:81:73:aa:7c:56:bf:77:7c:c6:de:55:
4f:31:d6:ce:ac:7d:16:68:be:4c:c0:35:ac:14:d9:89:4e:91:
07:88:9e:23:cc:5f:3a:5f:2f:db:27:ad:01:70:f4:e4:6e:aa:
76:0c:55:89:50:e5:dd:00:57:cb:c5:31:29:eb:81:83:50:54:
fa:d4:d3:0c:50:9b:dc:f0:36:b5:86:d9:81:a6:ca:65:ea:fe:
30:ae:da:68:9e:63:95:78:4f:b7:da:43:16:36:ee:6d:70:54:
bd:68:5f:dc:ba:39:d0:76:c0:89:d0:ba:10:e4:5d:b7:29:2f:
a9:a0:39:ae:f2:e6:cb:92:68:2a:cf:60:43:f4:df:3d:4a:36:
e1:b3:1f:d3:41:50:c4:38:df:ff:c6:98:7f:78:bf:a9:6d:db:
82:9f:33:73:06:d4:de:04:5c:d4:03:60:0b:e3:19:6e:55:20:
cd:81:12:5c:a5:c6:2a:d3:1c:0c:d1:f4:87:51:de:b0:dd:98:
d3:3f:5d:f9:12:6a:1c:a0:d9:5b:aa:94:95:ee:36:7b:b7:8e:
6f:cb:a8:12:4c:99:65:df:d6:a7:ce:36:a9:09:54:04:55:6d:
16:69:c5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:00:10 2025 by rpki-client