Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: OvNGKFWLofWuBGhLbobHlOovlTAbqdVypU5n1beqLFY=
Subject key identifier: 82:EC:48:06:EE:E6:B1:C9:52:BF:A1:A8:F7:AE:13:54:C2:89:7C:2A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6F8D79A8BD117418016E1D043E026EEAF0265209
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
Signing time: Sat 20 Sep 2025 00:05:56 +0000
ROA not before: Sat 20 Sep 2025 00:00:56 +0000
ROA not after: Sat 19 Sep 2026 00:05:56 +0000
asID: 2914
IP address blocks: 46.202.1.0/24 maxlen: 24
46.202.49.0/24 maxlen: 24
46.202.50.0/24 maxlen: 24
46.202.51.0/24 maxlen: 24
46.202.53.0/24 maxlen: 24
46.203.197.0/24 maxlen: 24
46.203.205.0/24 maxlen: 24
46.203.223.0/24 maxlen: 24
46.203.225.0/24 maxlen: 24
91.124.20.0/22 maxlen: 22
92.112.240.0/24 maxlen: 24
92.112.241.0/24 maxlen: 24
92.112.242.0/24 maxlen: 24
92.112.243.0/24 maxlen: 24
92.112.244.0/24 maxlen: 24
92.112.245.0/24 maxlen: 24
92.112.246.0/24 maxlen: 24
92.112.247.0/24 maxlen: 24
95.134.48.0/24 maxlen: 24
95.134.83.0/24 maxlen: 24
95.134.148.0/24 maxlen: 24
95.134.150.0/24 maxlen: 24
95.134.168.0/23 maxlen: 24
95.134.170.0/23 maxlen: 24
95.134.172.0/23 maxlen: 24
95.134.174.0/24 maxlen: 24
95.134.195.0/24 maxlen: 24
95.134.213.0/24 maxlen: 24
95.135.50.0/24 maxlen: 24
95.135.194.0/24 maxlen: 24
95.135.223.0/24 maxlen: 24
178.92.16.0/22 maxlen: 24
178.92.36.0/22 maxlen: 24
178.92.120.0/22 maxlen: 24
178.92.226.0/24 maxlen: 24
178.92.235.0/24 maxlen: 24
178.92.237.0/24 maxlen: 24
178.92.251.0/24 maxlen: 24
178.93.0.0/22 maxlen: 24
178.93.37.0/24 maxlen: 24
178.93.100.0/22 maxlen: 24
178.94.0.0/24 maxlen: 24
178.94.4.0/24 maxlen: 24
178.94.6.0/24 maxlen: 24
178.94.7.0/24 maxlen: 24
178.94.21.0/24 maxlen: 24
178.94.27.0/24 maxlen: 24
178.94.32.0/24 maxlen: 24
178.94.66.0/24 maxlen: 24
178.94.73.0/24 maxlen: 24
178.94.77.0/24 maxlen: 24
178.94.79.0/24 maxlen: 24
178.94.103.0/24 maxlen: 24
178.94.110.0/24 maxlen: 24
178.94.120.0/24 maxlen: 24
178.94.176.0/22 maxlen: 24
178.94.189.0/24 maxlen: 24
178.94.210.0/24 maxlen: 24
178.94.212.0/24 maxlen: 24
178.94.220.0/24 maxlen: 24
178.94.223.0/24 maxlen: 24
178.94.254.0/24 maxlen: 24
178.95.0.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:8d:79:a8:bd:11:74:18:01:6e:1d:04:3e:02:6e:ea:f0:26:52:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 20 00:00:56 2025 GMT
Not After : Sep 19 00:05:56 2026 GMT
Subject: CN=82EC4806EEE6B1C952BFA1A8F7AE1354C2897C2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e4:eb:5b:f1:60:d0:5e:a8:ff:e5:d6:40:13:
86:49:1e:f2:78:da:01:8e:95:a5:2f:b1:c4:b1:bc:
11:6d:95:af:09:14:74:6a:f6:5e:48:b6:fc:e2:e4:
c4:9c:4b:70:df:00:cd:c5:e9:43:5f:a8:f9:00:be:
c7:b0:b6:a3:6a:14:c7:a3:37:ec:de:c8:a5:fe:4a:
c0:62:b1:31:af:c9:5c:aa:f0:1d:a7:d8:dd:a9:18:
b2:50:61:75:60:e6:e3:ee:1b:e1:32:1d:b7:35:79:
7d:ae:b1:41:bf:ba:16:3d:ea:ca:26:8a:0c:35:1b:
9d:eb:f3:39:33:a5:2e:83:48:d8:d0:7d:eb:b7:5b:
f6:6c:59:8e:fd:2c:16:fd:4f:6f:df:84:06:02:e6:
7a:ce:b4:5a:c0:55:8d:8e:59:c3:ff:1a:bd:b0:de:
63:8a:e7:eb:4b:5c:1b:dd:93:aa:ba:f1:85:1b:ba:
80:0b:a2:15:52:96:d5:2b:7c:46:c1:97:e8:b6:5c:
66:15:85:55:ea:9b:4a:78:80:87:ca:28:fd:ef:70:
d4:dd:f8:3d:62:3c:a1:6a:49:51:d6:d2:ea:01:a3:
1d:8e:49:24:59:ee:65:21:5a:97:8e:a7:6e:9c:76:
8b:a7:1b:be:d8:e2:19:e3:ae:c1:c2:88:a6:1d:9f:
e2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:EC:48:06:EE:E6:B1:C9:52:BF:A1:A8:F7:AE:13:54:C2:89:7C:2A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.1.0/24
46.202.49.0-46.202.51.255
46.202.53.0/24
46.203.197.0/24
46.203.205.0/24
46.203.223.0/24
46.203.225.0/24
91.124.20.0/22
92.112.240.0/21
95.134.48.0/24
95.134.83.0/24
95.134.148.0/24
95.134.150.0/24
95.134.168.0-95.134.174.255
95.134.195.0/24
95.134.213.0/24
95.135.50.0/24
95.135.194.0/24
95.135.223.0/24
178.92.16.0/22
178.92.36.0/22
178.92.120.0/22
178.92.226.0/24
178.92.235.0/24
178.92.237.0/24
178.92.251.0/24
178.93.0.0/22
178.93.37.0/24
178.93.100.0/22
178.94.0.0/24
178.94.4.0/24
178.94.6.0/23
178.94.21.0/24
178.94.27.0/24
178.94.32.0/24
178.94.66.0/24
178.94.73.0/24
178.94.77.0/24
178.94.79.0/24
178.94.103.0/24
178.94.110.0/24
178.94.120.0/24
178.94.176.0/22
178.94.189.0/24
178.94.210.0/24
178.94.212.0/24
178.94.220.0/24
178.94.223.0/24
178.94.254.0/24
178.95.0.0/22
Signature Algorithm: sha256WithRSAEncryption
48:b7:4a:98:1e:ff:be:87:4d:b5:d2:c3:c8:cc:ff:57:32:c4:
4c:f2:0f:49:f7:0d:bb:2e:cb:53:ef:aa:7a:2c:71:6e:06:93:
d5:2e:22:d7:32:91:4e:6a:30:4b:0c:bf:10:40:f2:29:b7:73:
01:43:17:4d:70:0e:d0:ea:cf:ac:ef:a2:9d:ba:b1:95:04:12:
7f:3b:4a:c3:6e:b4:f9:20:4e:74:46:26:57:3e:39:80:54:db:
e5:57:cf:c6:81:6e:3f:64:59:c1:2a:5e:b6:34:0b:64:03:e7:
cc:1a:69:d5:85:0a:9c:14:68:e7:05:5f:d7:5e:2a:d1:59:f7:
a4:a0:c2:7c:59:fb:17:3f:ba:8d:1b:25:89:cf:aa:91:76:fd:
08:c9:55:f7:8d:10:0f:47:3d:88:79:0e:64:81:95:c0:ca:44:
ba:3c:aa:40:35:da:bb:98:58:56:5d:03:b4:ca:cc:75:c6:a0:
68:73:ec:e3:6a:08:19:cc:43:53:0c:4e:22:51:c2:65:56:d5:
d7:f4:ce:97:5a:25:9f:2b:93:fc:ef:dc:a9:a9:20:c3:5f:96:
0b:00:b5:7f:18:34:df:1b:da:96:1c:f6:86:9d:96:dc:33:5c:
93:0a:e8:aa:e4:01:19:01:17:77:41:66:0c:76:b0:0b:e2:56:
ba:6d:c7:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:33:32 2025 by rpki-client