Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS48266.roa
File: AS48266.roa (raw, json)
Hash identifier: wN58VW25Z+LecojZP+oOAtM/5chfYovrCCO/Cl8gTkE=
Subject key identifier: 05:25:F4:5C:06:F4:99:42:81:B7:A0:90:EE:AA:CB:4A:A4:FC:AF:20
Certificate issuer: /CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Certificate serial: 45737470187C763851B2F1214E514CBA5E3774D1
Authority key identifier: 3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS48266.roa
Signing time: Tue 30 Sep 2025 10:03:14 +0000
ROA not before: Tue 30 Sep 2025 09:58:14 +0000
ROA not after: Tue 29 Sep 2026 10:03:14 +0000
asID: 48266
IP address blocks: 46.236.193.0/24 maxlen: 24
46.236.194.0/24 maxlen: 24
46.236.195.0/24 maxlen: 24
46.236.207.0/24 maxlen: 24
46.236.253.0/24 maxlen: 24
82.139.238.0/24 maxlen: 24
82.139.242.0/24 maxlen: 24
82.139.243.0/24 maxlen: 24
82.139.244.0/24 maxlen: 24
82.139.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.mft
rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 14:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:73:74:70:18:7c:76:38:51:b2:f1:21:4e:51:4c:ba:5e:37:74:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3feccb17be51ee59ec74d64eed917e221ee28a1b
Validity
Not Before: Sep 30 09:58:14 2025 GMT
Not After : Sep 29 10:03:14 2026 GMT
Subject: CN=0525F45C06F4994281B7A090EEAACB4AA4FCAF20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:17:64:99:70:6d:b4:c7:32:7f:61:86:f0:9b:
38:e4:c6:29:31:ca:6e:3e:4b:c3:e7:6f:90:db:77:
4e:23:1a:22:80:46:a6:cf:bd:ea:bc:fc:f7:5a:44:
97:88:63:8e:61:e8:5b:0a:40:1c:9e:f1:1d:56:fd:
7f:ee:be:d8:f1:17:0f:ea:82:4b:6c:5e:13:5e:a3:
27:41:b7:b3:88:b7:cc:48:e2:c1:2f:d9:92:6b:d7:
3a:0b:c4:d0:34:b8:a4:4f:56:7f:cb:e9:3f:53:f7:
52:cb:82:03:c5:36:07:85:01:0e:1f:8a:6d:12:d0:
d9:f1:72:72:2f:f0:3b:66:18:4c:0e:9e:a8:ed:41:
0c:d1:c2:f1:3a:58:95:82:a9:b9:9c:6a:4e:5c:f3:
a8:8f:21:d5:eb:1b:b9:5a:2f:19:82:14:14:33:db:
95:2c:95:f1:7e:9a:ee:61:eb:24:8f:3b:e3:e1:ea:
05:95:9d:88:c8:f7:06:3c:de:9b:02:c6:a3:73:31:
00:35:ae:07:ca:63:43:31:a6:9b:ec:47:2a:3c:f9:
95:38:c9:10:bc:7e:25:da:89:d4:32:ac:20:df:0d:
97:7c:e7:e7:2f:b8:5c:7e:d6:28:33:ca:2f:1a:67:
45:62:11:12:27:3d:d4:92:0f:8a:34:41:ef:5b:6e:
5a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:25:F4:5C:06:F4:99:42:81:B7:A0:90:EE:AA:CB:4A:A4:FC:AF:20
X509v3 Authority Key Identifier:
keyid:3F:EC:CB:17:BE:51:EE:59:EC:74:D6:4E:ED:91:7E:22:1E:E2:8A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/3FECCB17BE51EE59EC74D64EED917E221EE28A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-zLF75R7lnsdNZO7ZF-Ih7iihs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22db7555-9aa4-4983-9316-73809dd354bc/0/AS48266.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.236.193.0-46.236.195.255
46.236.207.0/24
46.236.253.0/24
82.139.238.0/24
82.139.242.0-82.139.244.255
82.139.246.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:f0:95:dc:11:da:0a:36:46:ba:55:7d:ae:a0:91:ff:e6:2f:
58:c5:0c:f1:37:6a:95:bb:d2:1e:96:80:22:74:4f:06:b2:f4:
f5:52:e1:db:18:39:16:8e:6f:77:4c:b0:d4:0d:31:8a:3c:f4:
e5:5d:c7:1a:a7:32:be:ce:08:35:90:cc:58:b1:a9:ec:13:48:
7e:c0:62:1a:d0:9a:f3:6d:e5:6c:2e:f8:be:ea:d2:37:a4:69:
d5:61:e7:de:36:4c:19:8e:ee:bf:30:6d:1f:1c:a2:77:30:b7:
29:fe:93:56:22:54:33:9f:0c:01:3b:54:7f:98:0e:66:59:aa:
d3:cd:33:3e:02:3b:af:75:6a:0c:72:09:d8:d0:f6:44:f2:60:
0f:57:06:80:27:cd:4a:47:65:c8:b2:ec:4e:2a:4a:4c:59:22:
d7:d5:b3:5f:54:98:34:ba:f8:d4:c0:89:54:f2:c9:c1:65:35:
54:14:c2:8d:d3:89:d4:3e:f3:7c:60:8d:13:59:a9:44:fc:d8:
73:90:eb:ad:f3:3e:66:d8:15:47:b1:0b:b6:dd:3c:4f:38:29:
dc:b8:a3:59:a3:36:bb:dd:d7:fb:c6:f1:3b:6b:93:e4:af:75:
70:33:fe:b2:6c:cf:08:95:90:3e:d9:20:a0:c2:32:42:36:85:
ac:66:93:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:22:59 2025 by rpki-client