Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: W9zGqrJ8UZqGq0iex8cinQ6uCIi3IT8hAW+hxoLo2Sg=
Subject key identifier: B3:74:6B:71:3A:28:F2:83:2E:0E:2B:C3:B0:13:9E:07:D5:94:D0:A8
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7C8A3C93A9FCDE3F1283969D0B409CBA0D89F745
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
Signing time: Mon 04 May 2026 00:47:07 +0000
ROA not before: Mon 04 May 2026 00:42:07 +0000
ROA not after: Mon 03 May 2027 00:47:07 +0000
asID: 7018
IP address blocks: 96.62.0.0/19 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.37.0/24 maxlen: 24
96.62.45.0/24 maxlen: 24
96.62.47.0/24 maxlen: 24
96.62.48.0/23 maxlen: 24
96.62.50.0/23 maxlen: 24
96.62.52.0/23 maxlen: 24
96.62.54.0/24 maxlen: 24
96.62.55.0/24 maxlen: 24
96.62.56.0/24 maxlen: 24
96.62.57.0/24 maxlen: 24
96.62.58.0/24 maxlen: 24
96.62.60.0/23 maxlen: 24
96.62.62.0/23 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.79.0/24 maxlen: 24
96.62.80.0/23 maxlen: 24
96.62.82.0/23 maxlen: 24
96.62.85.0/24 maxlen: 24
96.62.86.0/23 maxlen: 24
96.62.88.0/24 maxlen: 24
96.62.90.0/23 maxlen: 24
96.62.92.0/23 maxlen: 24
96.62.94.0/23 maxlen: 24
96.62.98.0/23 maxlen: 24
96.62.135.0/24 maxlen: 24
96.62.149.0/24 maxlen: 24
96.62.150.0/24 maxlen: 24
96.62.151.0/24 maxlen: 24
140.233.192.0/18 maxlen: 24
148.135.216.0/23 maxlen: 23
148.135.218.0/23 maxlen: 23
148.135.224.0/23 maxlen: 23
148.135.226.0/23 maxlen: 23
148.135.232.0/23 maxlen: 23
148.135.234.0/23 maxlen: 23
148.135.240.0/23 maxlen: 23
148.135.242.0/23 maxlen: 23
148.135.248.0/23 maxlen: 23
148.135.250.0/23 maxlen: 23
150.241.146.0/23 maxlen: 24
150.241.148.0/23 maxlen: 24
150.241.150.0/23 maxlen: 24
150.241.152.0/23 maxlen: 24
150.241.154.0/23 maxlen: 24
150.241.156.0/23 maxlen: 24
150.241.158.0/23 maxlen: 24
150.241.160.0/23 maxlen: 24
150.241.162.0/23 maxlen: 24
150.241.164.0/23 maxlen: 24
150.241.166.0/23 maxlen: 24
150.241.168.0/23 maxlen: 24
150.241.170.0/23 maxlen: 24
150.241.172.0/23 maxlen: 24
150.241.176.0/23 maxlen: 24
150.241.178.0/23 maxlen: 24
150.241.180.0/23 maxlen: 24
150.241.182.0/23 maxlen: 24
150.241.184.0/23 maxlen: 24
150.241.186.0/23 maxlen: 24
150.241.188.0/23 maxlen: 24
150.241.190.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:8a:3c:93:a9:fc:de:3f:12:83:96:9d:0b:40:9c:ba:0d:89:f7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 4 00:42:07 2026 GMT
Not After : May 3 00:47:07 2027 GMT
Subject: CN=B3746B713A28F2832E0E2BC3B0139E07D594D0A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:48:e2:0d:19:08:87:bd:11:8a:7f:92:6d:29:
ac:72:6a:95:89:29:b3:cd:8e:f8:f8:fa:02:e0:f2:
d4:40:c7:7b:a2:d4:75:62:cf:d6:b5:3d:58:da:34:
61:c2:5b:f2:ff:7a:fc:e8:c0:08:01:b8:78:fb:ba:
b2:2e:8d:32:8e:22:07:5d:33:18:5a:11:97:9b:77:
07:53:2f:51:c9:09:75:fd:d4:a8:ea:49:01:a7:07:
72:5f:fd:bd:f9:1b:ce:a9:41:fc:9e:53:ce:ac:97:
67:ba:b0:04:8d:a8:b6:9a:d1:18:df:f9:d7:39:08:
09:b7:7c:f7:26:46:da:76:10:cf:2f:ed:19:d2:aa:
05:ef:19:35:b5:0b:8d:41:ac:4b:c7:23:f6:48:c6:
2c:c3:f7:22:0e:96:91:ff:5d:54:a6:99:60:64:97:
10:55:4f:45:89:df:fa:2e:46:b6:b6:34:87:43:d0:
53:0d:78:b0:c7:7b:8a:89:49:de:fc:bf:2a:42:a4:
a1:95:b6:d4:1e:e8:16:63:16:ef:5c:c0:ff:69:c4:
fc:50:d7:c3:b1:24:25:86:2a:63:1e:d7:04:e7:8c:
e2:4c:74:71:90:75:d2:d6:85:5a:15:1c:d2:d1:46:
31:40:1f:35:fb:eb:24:d8:e2:99:98:bd:ee:bb:2c:
69:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:74:6B:71:3A:28:F2:83:2E:0E:2B:C3:B0:13:9E:07:D5:94:D0:A8
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.0.0/19
96.62.33.0-96.62.37.255
96.62.45.0/24
96.62.47.0-96.62.58.255
96.62.60.0-96.62.67.255
96.62.79.0-96.62.83.255
96.62.85.0-96.62.88.255
96.62.90.0-96.62.95.255
96.62.98.0/23
96.62.135.0/24
96.62.149.0-96.62.151.255
140.233.192.0/18
148.135.216.0/22
148.135.224.0/22
148.135.232.0/22
148.135.240.0/22
148.135.248.0/22
150.241.146.0-150.241.173.255
150.241.176.0/20
Signature Algorithm: sha256WithRSAEncryption
02:cf:35:9e:cb:8d:a8:05:7d:23:1f:34:85:89:59:7e:df:79:
93:ed:07:f6:23:68:b3:da:d4:44:10:d5:4b:5f:54:7e:f5:e0:
a2:68:82:8f:d8:fd:bc:a8:00:bc:82:3d:21:41:17:c0:87:57:
a2:40:72:d9:7f:46:b3:2c:24:fe:ac:27:23:ed:ae:cc:6c:6f:
32:27:e8:00:a6:3e:db:4e:50:29:0e:6c:a0:0d:4d:d8:63:dc:
2d:4d:64:1a:c9:52:86:18:5a:69:0d:5b:fe:ca:f2:19:99:a4:
8f:26:66:5b:88:b1:7b:6e:42:ec:81:ae:18:f1:6a:b9:e4:99:
d0:24:76:94:c4:d6:61:9a:6c:f4:e3:31:55:7e:1a:a4:d2:8e:
78:60:78:79:38:bb:bf:b7:4a:c6:c5:ad:29:4c:54:2b:47:24:
52:a7:91:f6:66:bb:42:df:09:0a:52:e4:3c:27:68:39:73:73:
89:5c:f6:f0:dc:6e:4e:23:22:cb:58:2a:31:83:ba:4a:b5:1a:
01:50:84:d5:de:6b:20:3f:54:c3:99:e2:51:13:93:1f:af:05:
fb:f6:9c:a4:04:39:61:91:aa:71:6f:60:30:07:fb:fa:0c:ab:
99:ce:b9:3d:84:4a:da:54:e6:3b:79:fc:2f:38:9b:47:ea:8b:
e6:35:04:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:50:05 2026 by rpki-client