Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
File: AS9304.roa (raw, json)
Hash identifier: 6RfsuT5pr4hZPGLHitsv2PWqUpjAdqaqTI/s7OT2j5s=
Subject key identifier: 8D:6F:D2:F0:05:D6:D5:1B:7E:A1:E6:27:B2:E7:20:67:4B:D7:48:2A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 26871ED5C3CA1FE20358E9058A332816D24049B6
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
Signing time: Sun 01 Mar 2026 00:18:23 +0000
ROA not before: Sun 01 Mar 2026 00:13:23 +0000
ROA not after: Sun 28 Feb 2027 00:18:23 +0000
asID: 9304
IP address blocks: 46.202.41.0/24 maxlen: 24
46.202.45.0/24 maxlen: 24
46.202.46.0/24 maxlen: 24
46.202.49.0/24 maxlen: 24
46.202.50.0/24 maxlen: 24
46.202.81.0/24 maxlen: 24
46.202.84.0/24 maxlen: 24
46.203.83.0/24 maxlen: 24
46.203.84.0/24 maxlen: 24
46.203.126.0/24 maxlen: 24
46.203.149.0/24 maxlen: 24
46.203.172.0/24 maxlen: 24
46.203.176.0/24 maxlen: 24
46.203.189.0/24 maxlen: 24
46.203.200.0/24 maxlen: 24
46.203.204.0/24 maxlen: 24
46.203.250.0/24 maxlen: 24
46.203.251.0/24 maxlen: 24
91.124.9.0/24 maxlen: 24
91.124.10.0/24 maxlen: 24
91.124.11.0/24 maxlen: 24
91.124.13.0/24 maxlen: 24
91.124.24.0/24 maxlen: 24
91.124.64.0/24 maxlen: 24
91.124.80.0/24 maxlen: 24
91.124.168.0/24 maxlen: 24
91.124.241.0/24 maxlen: 24
92.112.5.0/24 maxlen: 24
92.112.20.0/24 maxlen: 24
92.112.21.0/24 maxlen: 24
92.112.36.0/24 maxlen: 24
92.112.38.0/24 maxlen: 24
92.112.43.0/24 maxlen: 24
92.112.44.0/24 maxlen: 24
92.112.47.0/24 maxlen: 24
92.112.65.0/24 maxlen: 24
92.112.66.0/24 maxlen: 24
92.112.104.0/24 maxlen: 24
92.112.105.0/24 maxlen: 24
92.113.172.0/24 maxlen: 24
92.113.193.0/24 maxlen: 24
92.113.249.0/24 maxlen: 24
95.134.0.0/24 maxlen: 24
95.134.1.0/24 maxlen: 24
95.134.68.0/24 maxlen: 24
95.134.84.0/24 maxlen: 24
95.134.85.0/24 maxlen: 24
95.134.108.0/24 maxlen: 24
95.134.109.0/24 maxlen: 24
95.134.110.0/24 maxlen: 24
95.134.111.0/24 maxlen: 24
95.134.116.0/24 maxlen: 24
95.134.118.0/24 maxlen: 24
95.134.119.0/24 maxlen: 24
95.134.133.0/24 maxlen: 24
95.134.140.0/24 maxlen: 24
95.134.200.0/24 maxlen: 24
95.134.207.0/24 maxlen: 24
95.134.214.0/24 maxlen: 24
95.134.215.0/24 maxlen: 24
95.134.222.0/24 maxlen: 24
95.135.6.0/24 maxlen: 24
95.135.40.0/24 maxlen: 24
95.135.63.0/24 maxlen: 24
95.135.70.0/24 maxlen: 24
95.135.165.0/24 maxlen: 24
95.135.166.0/24 maxlen: 24
95.135.167.0/24 maxlen: 24
95.135.173.0/24 maxlen: 24
95.135.222.0/24 maxlen: 24
178.92.15.0/24 maxlen: 24
178.92.21.0/24 maxlen: 24
178.92.28.0/24 maxlen: 24
178.92.99.0/24 maxlen: 24
178.92.134.0/24 maxlen: 24
178.92.138.0/23 maxlen: 24
178.92.141.0/24 maxlen: 24
178.92.150.0/24 maxlen: 24
178.92.152.0/24 maxlen: 24
178.92.160.0/24 maxlen: 24
178.92.164.0/24 maxlen: 24
178.92.176.0/24 maxlen: 24
178.92.206.0/24 maxlen: 24
178.92.212.0/24 maxlen: 24
178.92.214.0/24 maxlen: 24
178.92.221.0/24 maxlen: 24
178.92.232.0/24 maxlen: 24
178.92.238.0/24 maxlen: 24
178.92.240.0/24 maxlen: 24
178.92.242.0/24 maxlen: 24
178.92.244.0/24 maxlen: 24
178.92.254.0/24 maxlen: 24
178.93.0.0/22 maxlen: 24
178.93.109.0/24 maxlen: 24
178.93.111.0/24 maxlen: 24
178.93.149.0/24 maxlen: 24
178.93.151.0/24 maxlen: 24
178.93.153.0/24 maxlen: 24
178.93.154.0/24 maxlen: 24
178.93.156.0/24 maxlen: 24
178.93.157.0/24 maxlen: 24
178.93.158.0/24 maxlen: 24
178.93.159.0/24 maxlen: 24
178.93.168.0/24 maxlen: 24
178.93.181.0/24 maxlen: 24
178.93.189.0/24 maxlen: 24
178.93.190.0/24 maxlen: 24
178.93.197.0/24 maxlen: 24
178.93.199.0/24 maxlen: 24
178.93.215.0/24 maxlen: 24
178.93.227.0/24 maxlen: 24
178.93.229.0/24 maxlen: 24
178.93.230.0/24 maxlen: 24
178.93.232.0/24 maxlen: 24
178.93.241.0/24 maxlen: 24
178.93.242.0/24 maxlen: 24
178.94.1.0/24 maxlen: 24
178.94.17.0/24 maxlen: 24
178.94.45.0/24 maxlen: 24
178.94.46.0/24 maxlen: 24
178.94.169.0/24 maxlen: 24
178.94.190.0/24 maxlen: 24
178.94.228.0/24 maxlen: 24
178.94.230.0/24 maxlen: 24
178.94.237.0/24 maxlen: 24
178.95.20.0/24 maxlen: 24
178.95.96.0/22 maxlen: 24
178.95.137.0/24 maxlen: 24
178.95.168.0/24 maxlen: 24
178.95.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 08:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:87:1e:d5:c3:ca:1f:e2:03:58:e9:05:8a:33:28:16:d2:40:49:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 1 00:13:23 2026 GMT
Not After : Feb 28 00:18:23 2027 GMT
Subject: CN=8D6FD2F005D6D51B7EA1E627B2E720674BD7482A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7f:7e:48:bd:e7:8a:4b:6f:4c:51:64:1d:53:
7e:86:07:2a:ab:1a:7e:4f:9a:c5:04:45:c4:d5:61:
82:7f:cc:6e:9f:9d:d7:dd:4b:54:00:9e:a1:26:07:
f7:88:a9:c9:f4:af:88:91:d4:9e:0e:1b:46:a4:43:
ea:84:cc:29:d6:ca:22:d3:d0:75:08:81:0a:e2:21:
57:8f:30:98:92:f5:36:ce:ea:e1:f2:8f:a6:4c:71:
c5:d0:27:9d:dc:a6:1e:2f:d6:d6:aa:2d:ee:bd:c8:
2e:70:58:48:b3:c1:8f:3f:99:a5:9f:b2:cf:c1:e8:
07:30:e7:df:8a:ea:67:b3:f1:90:cf:f1:fc:c2:47:
09:19:ce:f7:6a:80:04:67:c3:ef:dd:6b:ce:a8:da:
be:80:0a:19:c9:2e:8c:9b:79:a9:b9:a4:ab:d3:fe:
45:39:bf:e8:f6:c0:3e:44:de:0b:22:ee:8b:f2:3e:
0e:6e:c5:8f:37:d4:60:a2:2e:57:4a:6b:b4:d8:47:
3b:0b:66:ee:d8:3f:1e:c7:ee:7a:92:1b:0a:b5:db:
2d:2c:76:d6:59:96:9a:07:17:2b:6e:dc:89:46:19:
50:56:cb:6a:00:12:c2:73:7c:0e:c9:15:3d:6a:83:
5b:38:95:bb:43:b8:79:cd:dd:00:7d:3b:0b:df:51:
07:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:6F:D2:F0:05:D6:D5:1B:7E:A1:E6:27:B2:E7:20:67:4B:D7:48:2A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.41.0/24
46.202.45.0-46.202.46.255
46.202.49.0-46.202.50.255
46.202.81.0/24
46.202.84.0/24
46.203.83.0-46.203.84.255
46.203.126.0/24
46.203.149.0/24
46.203.172.0/24
46.203.176.0/24
46.203.189.0/24
46.203.200.0/24
46.203.204.0/24
46.203.250.0/23
91.124.9.0-91.124.11.255
91.124.13.0/24
91.124.24.0/24
91.124.64.0/24
91.124.80.0/24
91.124.168.0/24
91.124.241.0/24
92.112.5.0/24
92.112.20.0/23
92.112.36.0/24
92.112.38.0/24
92.112.43.0-92.112.44.255
92.112.47.0/24
92.112.65.0-92.112.66.255
92.112.104.0/23
92.113.172.0/24
92.113.193.0/24
92.113.249.0/24
95.134.0.0/23
95.134.68.0/24
95.134.84.0/23
95.134.108.0/22
95.134.116.0/24
95.134.118.0/23
95.134.133.0/24
95.134.140.0/24
95.134.200.0/24
95.134.207.0/24
95.134.214.0/23
95.134.222.0/24
95.135.6.0/24
95.135.40.0/24
95.135.63.0/24
95.135.70.0/24
95.135.165.0-95.135.167.255
95.135.173.0/24
95.135.222.0/24
178.92.15.0/24
178.92.21.0/24
178.92.28.0/24
178.92.99.0/24
178.92.134.0/24
178.92.138.0/23
178.92.141.0/24
178.92.150.0/24
178.92.152.0/24
178.92.160.0/24
178.92.164.0/24
178.92.176.0/24
178.92.206.0/24
178.92.212.0/24
178.92.214.0/24
178.92.221.0/24
178.92.232.0/24
178.92.238.0/24
178.92.240.0/24
178.92.242.0/24
178.92.244.0/24
178.92.254.0/24
178.93.0.0/22
178.93.109.0/24
178.93.111.0/24
178.93.149.0/24
178.93.151.0/24
178.93.153.0-178.93.154.255
178.93.156.0/22
178.93.168.0/24
178.93.181.0/24
178.93.189.0-178.93.190.255
178.93.197.0/24
178.93.199.0/24
178.93.215.0/24
178.93.227.0/24
178.93.229.0-178.93.230.255
178.93.232.0/24
178.93.241.0-178.93.242.255
178.94.1.0/24
178.94.17.0/24
178.94.45.0-178.94.46.255
178.94.169.0/24
178.94.190.0/24
178.94.228.0/24
178.94.230.0/24
178.94.237.0/24
178.95.20.0/24
178.95.96.0/22
178.95.137.0/24
178.95.168.0/24
178.95.198.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b9:d8:65:c9:d1:23:a2:76:44:d6:ad:de:bd:74:01:17:90:
de:ad:77:f9:b7:2d:91:e1:17:1a:5d:ee:f7:08:75:c8:6e:35:
a2:31:bb:3c:9d:95:7c:0e:aa:36:cc:4f:9d:85:49:d0:2d:54:
45:8f:ba:4e:c3:ee:7a:c8:98:26:62:50:40:47:05:1c:bb:df:
7d:bf:23:dd:43:8d:93:61:66:6a:e1:81:c6:d6:bf:46:9a:13:
b1:24:ff:37:f4:ea:fb:e0:bf:c4:ba:f7:7b:8b:b4:bf:6a:d9:
63:fb:f1:29:77:73:d3:df:dc:34:e2:b9:2d:52:c5:80:fc:23:
e7:8c:90:19:66:a3:80:bf:f5:9a:b7:a1:91:a6:92:2e:10:f2:
b0:46:5f:d8:f2:b2:34:e6:14:71:db:2c:25:eb:56:81:75:d1:
e0:fd:98:bc:f9:a6:52:b4:97:60:4c:cf:6e:12:01:b2:fd:b4:
fb:32:31:9c:72:7f:d8:44:1a:aa:c9:42:3f:fa:cd:0f:8f:ee:
f8:7d:bc:60:5e:64:79:ba:40:e6:3a:1c:f5:6f:07:54:e1:71:
76:ed:1c:38:37:59:f0:27:e0:2b:fb:2c:4d:a7:a6:ef:31:64:
ba:57:71:d0:ac:11:63:a7:94:f8:b8:8d:d5:70:a2:42:7a:f9:
21:88:ff:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:11:05 2026 by rpki-client