Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: pvtyMxFfhKt2qL3FKSlftAWaR75XqYsaTOi2BS2A2W8=
Subject key identifier: 6D:B3:39:83:CA:E6:AF:DB:58:66:10:F8:C1:04:31:3A:6B:75:68:AB
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 25BB987F9BF98ED9324A9029C754DE7393E220B1
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
Signing time: Fri 02 May 2025 15:52:25 +0000
ROA not before: Fri 02 May 2025 15:47:25 +0000
ROA not after: Fri 01 May 2026 15:52:25 +0000
asID: 7018
IP address blocks: 96.62.0.0/19 maxlen: 24
96.62.33.0/24 maxlen: 24
96.62.34.0/24 maxlen: 24
96.62.35.0/24 maxlen: 24
96.62.36.0/24 maxlen: 24
96.62.37.0/24 maxlen: 24
96.62.45.0/24 maxlen: 24
96.62.47.0/24 maxlen: 24
96.62.48.0/23 maxlen: 24
96.62.50.0/23 maxlen: 24
96.62.52.0/23 maxlen: 24
96.62.54.0/24 maxlen: 24
96.62.55.0/24 maxlen: 24
96.62.56.0/24 maxlen: 24
96.62.57.0/24 maxlen: 24
96.62.58.0/24 maxlen: 24
96.62.60.0/23 maxlen: 24
96.62.62.0/23 maxlen: 24
96.62.64.0/24 maxlen: 24
96.62.65.0/24 maxlen: 24
96.62.66.0/24 maxlen: 24
96.62.67.0/24 maxlen: 24
96.62.79.0/24 maxlen: 24
96.62.80.0/23 maxlen: 24
96.62.82.0/23 maxlen: 24
96.62.85.0/24 maxlen: 24
96.62.86.0/23 maxlen: 24
96.62.88.0/24 maxlen: 24
96.62.90.0/23 maxlen: 24
96.62.92.0/23 maxlen: 24
96.62.94.0/23 maxlen: 24
96.62.98.0/23 maxlen: 24
96.62.135.0/24 maxlen: 24
96.62.149.0/24 maxlen: 24
96.62.150.0/24 maxlen: 24
96.62.151.0/24 maxlen: 24
140.233.192.0/18 maxlen: 24
143.14.69.0/24 maxlen: 24
148.135.216.0/23 maxlen: 23
148.135.218.0/23 maxlen: 23
148.135.224.0/23 maxlen: 23
148.135.226.0/23 maxlen: 23
148.135.232.0/23 maxlen: 23
148.135.234.0/23 maxlen: 23
148.135.240.0/23 maxlen: 23
148.135.242.0/23 maxlen: 23
148.135.248.0/23 maxlen: 23
148.135.250.0/23 maxlen: 23
150.241.146.0/23 maxlen: 24
150.241.148.0/23 maxlen: 24
150.241.150.0/23 maxlen: 24
150.241.152.0/23 maxlen: 24
150.241.154.0/23 maxlen: 24
150.241.156.0/23 maxlen: 24
150.241.158.0/23 maxlen: 24
150.241.160.0/23 maxlen: 24
150.241.162.0/23 maxlen: 24
150.241.164.0/23 maxlen: 24
150.241.166.0/23 maxlen: 24
150.241.168.0/23 maxlen: 24
150.241.170.0/23 maxlen: 24
150.241.172.0/23 maxlen: 24
150.241.176.0/23 maxlen: 24
150.241.178.0/23 maxlen: 24
150.241.180.0/23 maxlen: 24
150.241.182.0/23 maxlen: 24
150.241.184.0/23 maxlen: 24
150.241.186.0/23 maxlen: 24
150.241.188.0/23 maxlen: 24
150.241.190.0/23 maxlen: 24
155.117.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 16:09:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:bb:98:7f:9b:f9:8e:d9:32:4a:90:29:c7:54:de:73:93:e2:20:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 2 15:47:25 2025 GMT
Not After : May 1 15:52:25 2026 GMT
Subject: CN=6DB33983CAE6AFDB586610F8C104313A6B7568AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:bd:a6:b5:c3:6e:88:1c:1d:8b:5e:4d:df:
6a:19:ee:5d:6a:c1:4f:72:67:1b:d7:68:2f:b1:7d:
cc:22:b3:a4:33:88:59:7b:b0:98:e8:18:13:4f:53:
ae:da:22:d2:2f:e7:d4:03:f1:6f:ed:af:20:07:f2:
df:74:05:b7:c9:c4:6e:c2:61:ea:fe:e8:b3:d9:1f:
d0:6a:ab:54:16:1e:37:e1:df:76:29:ed:3e:7a:31:
23:59:88:f0:29:06:a4:84:a8:56:75:c1:30:d2:a6:
fc:17:0e:cc:cd:9a:fb:27:88:10:d7:93:b1:d9:bc:
d2:2f:f4:e1:2c:81:d8:f1:dc:7d:fb:7b:be:99:46:
7a:dc:3d:3c:bd:87:ca:57:36:9b:eb:15:83:46:5f:
fa:cc:db:0a:23:01:ab:9f:86:8b:2e:51:80:f0:5c:
fd:de:80:29:09:f9:57:c2:77:a4:f4:cc:19:ed:9b:
5b:e5:3d:fa:ca:c8:64:9f:d5:fe:e2:ed:34:7f:6c:
42:d1:53:53:bb:2c:2f:5d:89:d7:4b:d6:89:50:fd:
c5:a3:c7:bf:95:c4:bf:da:1b:d7:fb:2a:9c:fc:e9:
4c:40:38:7d:fe:17:7f:34:fd:06:67:2c:ff:3c:36:
5d:9f:15:e5:3d:1c:92:a9:db:76:fa:64:9e:6e:1f:
a2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B3:39:83:CA:E6:AF:DB:58:66:10:F8:C1:04:31:3A:6B:75:68:AB
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
96.62.0.0/19
96.62.33.0-96.62.37.255
96.62.45.0/24
96.62.47.0-96.62.58.255
96.62.60.0-96.62.67.255
96.62.79.0-96.62.83.255
96.62.85.0-96.62.88.255
96.62.90.0-96.62.95.255
96.62.98.0/23
96.62.135.0/24
96.62.149.0-96.62.151.255
140.233.192.0/18
143.14.69.0/24
148.135.216.0/22
148.135.224.0/22
148.135.232.0/22
148.135.240.0/22
148.135.248.0/22
150.241.146.0-150.241.173.255
150.241.176.0/20
155.117.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:32:08:b0:36:2c:53:87:3d:f6:5b:11:47:a8:dd:f1:f1:81:
cc:72:9b:92:52:c2:54:37:fc:cf:d9:40:39:85:0d:3b:de:13:
5f:8c:46:93:d5:00:95:7f:f6:fb:dd:95:89:17:6d:7c:cb:56:
1a:36:5b:2b:fb:e3:e6:34:32:38:b2:1f:04:a9:34:77:73:77:
cf:84:54:a3:6e:ac:50:49:ed:22:f2:6f:5e:c0:1c:6e:26:8e:
44:97:ec:a4:80:cb:47:81:2e:6d:24:dc:5c:42:27:e0:bb:ee:
e1:d1:58:0b:6c:11:10:57:5f:12:eb:fb:36:77:e6:15:e0:f8:
da:4b:a3:a4:9e:c1:32:08:9e:88:b5:14:f2:73:bf:93:40:3c:
84:5e:50:f2:ec:f1:1f:a2:89:86:48:b1:5a:b0:8c:0b:29:9c:
d4:95:f1:28:6f:35:f1:a3:2b:a6:08:21:94:cc:cb:3a:fd:75:
aa:fd:b8:f4:8d:c3:17:b9:ac:23:eb:b9:8d:8b:5f:35:53:3b:
07:68:65:91:81:b6:6f:6c:dd:5f:4d:78:79:bc:f7:a7:9b:c6:
3d:92:91:3f:b9:d4:69:8d:d8:5f:08:98:e9:77:1b:38:a7:1f:
65:f1:e8:82:bd:ea:49:88:ea:72:37:2c:3a:2f:b6:30:59:40:
e0:69:be:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 08:21:01 2025 by rpki-client