Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
File: AS9304.roa (raw, json)
Hash identifier: 28AwpcMmut8lyrqKd4NFudy4NioIp7lA6YA4//B/ydY=
Subject key identifier: F7:06:E1:EB:6D:A0:25:E0:21:4E:86:3C:8A:9F:69:8A:DF:66:08:A3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 62189B5583E5152112053F713E03D644C77AD549
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
Signing time: Mon 08 Jun 2026 19:57:02 +0000
ROA not before: Mon 08 Jun 2026 19:52:02 +0000
ROA not after: Mon 07 Jun 2027 19:57:02 +0000
asID: 9304
IP address blocks: 46.203.83.0/24 maxlen: 24
46.203.84.0/24 maxlen: 24
46.203.126.0/24 maxlen: 24
46.203.172.0/24 maxlen: 24
46.203.176.0/24 maxlen: 24
46.203.200.0/24 maxlen: 24
91.124.64.0/24 maxlen: 24
91.124.84.0/23 maxlen: 24
91.124.124.0/23 maxlen: 24
91.124.168.0/24 maxlen: 24
91.124.196.0/24 maxlen: 24
92.112.104.0/24 maxlen: 24
92.113.249.0/24 maxlen: 24
95.134.0.0/24 maxlen: 24
95.134.1.0/24 maxlen: 24
95.134.68.0/24 maxlen: 24
95.134.84.0/24 maxlen: 24
95.134.85.0/24 maxlen: 24
95.134.116.0/24 maxlen: 24
95.134.118.0/24 maxlen: 24
95.134.119.0/24 maxlen: 24
95.134.133.0/24 maxlen: 24
95.134.140.0/24 maxlen: 24
95.134.158.0/23 maxlen: 24
95.134.200.0/24 maxlen: 24
95.134.207.0/24 maxlen: 24
95.134.214.0/24 maxlen: 24
95.134.215.0/24 maxlen: 24
95.134.222.0/24 maxlen: 24
95.135.6.0/24 maxlen: 24
95.135.40.0/24 maxlen: 24
95.135.63.0/24 maxlen: 24
95.135.70.0/24 maxlen: 24
95.135.165.0/24 maxlen: 24
178.92.5.0/24 maxlen: 24
178.92.15.0/24 maxlen: 24
178.92.21.0/24 maxlen: 24
178.92.99.0/24 maxlen: 24
178.92.134.0/24 maxlen: 24
178.92.141.0/24 maxlen: 24
178.92.142.0/24 maxlen: 24
178.92.150.0/24 maxlen: 24
178.92.152.0/24 maxlen: 24
178.92.160.0/24 maxlen: 24
178.92.164.0/24 maxlen: 24
178.92.176.0/24 maxlen: 24
178.92.206.0/24 maxlen: 24
178.92.254.0/24 maxlen: 24
178.93.109.0/24 maxlen: 24
178.93.111.0/24 maxlen: 24
178.93.149.0/24 maxlen: 24
178.93.151.0/24 maxlen: 24
178.93.153.0/24 maxlen: 24
178.93.157.0/24 maxlen: 24
178.93.158.0/24 maxlen: 24
178.93.168.0/24 maxlen: 24
178.93.181.0/24 maxlen: 24
178.93.182.0/24 maxlen: 24
178.93.189.0/24 maxlen: 24
178.93.190.0/24 maxlen: 24
178.93.197.0/24 maxlen: 24
178.93.199.0/24 maxlen: 24
178.93.215.0/24 maxlen: 24
178.93.241.0/24 maxlen: 24
178.94.1.0/24 maxlen: 24
178.94.17.0/24 maxlen: 24
178.94.45.0/24 maxlen: 24
178.94.46.0/24 maxlen: 24
178.94.169.0/24 maxlen: 24
178.94.190.0/24 maxlen: 24
178.94.228.0/24 maxlen: 24
178.94.230.0/24 maxlen: 24
178.95.16.0/22 maxlen: 24
178.95.20.0/24 maxlen: 24
178.95.96.0/22 maxlen: 24
178.95.137.0/24 maxlen: 24
178.95.168.0/24 maxlen: 24
178.95.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:18:9b:55:83:e5:15:21:12:05:3f:71:3e:03:d6:44:c7:7a:d5:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 8 19:52:02 2026 GMT
Not After : Jun 7 19:57:02 2027 GMT
Subject: CN=F706E1EB6DA025E0214E863C8A9F698ADF6608A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:33:57:bd:f2:ea:88:5d:70:d5:8e:9e:03:b1:
08:0b:fb:8b:58:10:4e:8f:09:1b:34:b9:b8:88:91:
25:35:8b:2f:fa:0f:1d:50:f1:ca:85:56:4f:66:82:
5f:ba:54:0f:4a:4f:9b:30:9f:59:19:6c:f5:1d:cf:
5e:4d:96:4d:8e:2e:c9:73:54:4e:44:0b:be:9f:05:
40:cd:d6:a9:7d:e8:1b:f1:c4:f7:2b:ce:2f:d6:60:
d7:e0:8b:38:01:27:91:cf:b0:3a:59:94:ae:60:41:
63:9e:dc:83:b6:20:a2:bd:20:80:86:6f:4d:4e:4d:
5f:99:9e:41:fd:7c:16:3e:03:fe:00:96:25:12:a6:
09:2d:ef:08:bb:81:ba:69:84:68:fe:0a:c7:1f:03:
7e:1a:4b:12:9a:fb:83:22:d2:29:19:57:57:d1:34:
f7:b5:33:5b:28:b0:cd:08:a6:6d:15:29:83:db:4d:
02:95:e8:bc:5c:5a:28:91:3c:4c:57:f0:f2:0b:18:
f7:6d:20:d1:6c:05:d2:7f:7a:32:62:3b:11:67:b0:
aa:fd:12:db:9b:e3:3f:7e:54:79:ba:9f:60:03:55:
c8:83:c6:9c:38:25:10:83:2f:68:22:47:3f:4a:7f:
5d:97:87:d4:55:dd:90:44:e9:6a:ee:06:47:20:54:
1f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:06:E1:EB:6D:A0:25:E0:21:4E:86:3C:8A:9F:69:8A:DF:66:08:A3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.83.0-46.203.84.255
46.203.126.0/24
46.203.172.0/24
46.203.176.0/24
46.203.200.0/24
91.124.64.0/24
91.124.84.0/23
91.124.124.0/23
91.124.168.0/24
91.124.196.0/24
92.112.104.0/24
92.113.249.0/24
95.134.0.0/23
95.134.68.0/24
95.134.84.0/23
95.134.116.0/24
95.134.118.0/23
95.134.133.0/24
95.134.140.0/24
95.134.158.0/23
95.134.200.0/24
95.134.207.0/24
95.134.214.0/23
95.134.222.0/24
95.135.6.0/24
95.135.40.0/24
95.135.63.0/24
95.135.70.0/24
95.135.165.0/24
178.92.5.0/24
178.92.15.0/24
178.92.21.0/24
178.92.99.0/24
178.92.134.0/24
178.92.141.0-178.92.142.255
178.92.150.0/24
178.92.152.0/24
178.92.160.0/24
178.92.164.0/24
178.92.176.0/24
178.92.206.0/24
178.92.254.0/24
178.93.109.0/24
178.93.111.0/24
178.93.149.0/24
178.93.151.0/24
178.93.153.0/24
178.93.157.0-178.93.158.255
178.93.168.0/24
178.93.181.0-178.93.182.255
178.93.189.0-178.93.190.255
178.93.197.0/24
178.93.199.0/24
178.93.215.0/24
178.93.241.0/24
178.94.1.0/24
178.94.17.0/24
178.94.45.0-178.94.46.255
178.94.169.0/24
178.94.190.0/24
178.94.228.0/24
178.94.230.0/24
178.95.16.0-178.95.20.255
178.95.96.0/22
178.95.137.0/24
178.95.168.0/24
178.95.198.0/24
Signature Algorithm: sha256WithRSAEncryption
42:f8:6a:5d:97:5c:90:ee:ae:40:ae:3b:92:82:71:16:ca:e1:
93:82:35:f0:0b:35:1d:af:e4:79:d0:4b:ae:6e:69:98:d2:27:
6e:da:ae:d7:49:5c:b7:f9:98:28:a2:44:99:19:5c:82:7f:25:
70:56:ac:a4:d0:38:b8:e5:55:5e:7d:8e:91:0b:a5:a8:af:87:
4d:29:1a:fc:19:b3:0e:9d:69:b6:18:16:f1:1c:8c:ce:2e:29:
f6:57:4c:48:27:c2:ff:28:2f:39:65:45:3d:1d:39:bc:20:44:
20:ac:ef:1a:92:e2:d5:b4:b7:d4:02:04:88:1a:db:aa:93:10:
fb:69:ca:06:ef:db:ef:24:16:3a:75:b0:1c:95:88:59:a2:d6:
e3:66:26:2d:92:e5:8c:48:a6:b8:10:be:41:b2:5e:0f:db:de:
8a:3c:64:88:b2:af:6d:3d:12:66:08:98:06:47:fc:f1:79:72:
5c:4c:e4:f5:3b:61:45:49:43:a2:d3:ec:c2:48:92:9d:a0:8d:
ed:22:74:82:19:e8:d1:8c:fa:02:55:69:3c:3c:85:5d:15:ee:
40:be:13:32:99:1b:f2:f9:c0:e9:53:ac:68:bc:ef:97:74:6b:
e3:db:3d:f0:b0:db:fd:6b:49:39:aa:f1:75:a2:86:76:be:69:
a5:f9:46:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:26:46 2026 by rpki-client