Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9318.roa
File: AS9318.roa (raw, json)
Hash identifier: eRh9gNMOaWrhUliSp62QaXSI+bXF0MupAUWij5O+vOM=
Subject key identifier: 63:EC:92:2B:FE:04:D4:B4:A9:F6:4C:DA:5D:D4:2A:03:76:C6:38:99
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 2217A2335A6962B096B17EEB71C5C206C234F230
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9318.roa
Signing time: Sat 23 May 2026 03:49:32 +0000
ROA not before: Sat 23 May 2026 03:44:32 +0000
ROA not after: Sat 22 May 2027 03:49:32 +0000
asID: 9318
IP address blocks: 167.148.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 15:08:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:17:a2:33:5a:69:62:b0:96:b1:7e:eb:71:c5:c2:06:c2:34:f2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: May 23 03:44:32 2026 GMT
Not After : May 22 03:49:32 2027 GMT
Subject: CN=63EC922BFE04D4B4A9F64CDA5DD42A0376C63899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f3:ee:67:f7:f6:a5:1e:ac:00:6e:d8:76:4a:
17:0d:f2:c7:64:af:c2:b1:2b:86:37:12:00:67:3d:
5d:92:91:d8:b0:a7:a2:7f:75:5d:81:1a:f2:a6:af:
88:a6:31:7f:46:d8:fc:eb:f6:57:97:69:81:43:13:
9f:85:40:79:35:28:a0:84:b7:7e:41:a1:7f:0b:04:
27:86:b2:7c:4c:63:74:15:dd:8f:d8:f7:43:e9:5f:
92:eb:f9:9a:51:37:f0:cd:2f:17:62:b4:c9:ca:68:
a1:b5:ff:42:ca:27:7e:70:68:ad:47:b8:7c:ac:0c:
e0:ce:33:49:19:da:2a:0a:c6:f2:b1:f9:d8:6b:9a:
b5:36:b5:09:d5:02:d8:7a:67:08:3d:16:e0:a7:ce:
c6:2c:5f:61:6f:19:d6:98:e7:86:96:3b:d7:e7:13:
4c:06:49:35:b9:d6:24:9d:c8:be:74:93:e4:64:af:
ce:8f:d5:a8:17:ee:7e:02:86:84:6b:2b:5b:ec:d7:
40:b9:1d:ae:61:b2:61:48:72:18:80:5a:a3:3a:00:
74:6d:a9:78:eb:47:48:7c:7d:4f:ed:81:b0:cd:91:
4e:a9:01:d7:7a:72:2a:a2:28:96:3d:65:57:d5:44:
91:3a:03:8c:fd:f5:63:c1:5f:28:80:a8:60:6c:83:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:EC:92:2B:FE:04:D4:B4:A9:F6:4C:DA:5D:D4:2A:03:76:C6:38:99
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9318.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.148.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ad:6e:d2:bd:0c:b0:29:83:c1:a8:4f:0a:f7:6f:09:d7:c1:
4c:8c:cd:42:30:7b:bf:ad:cf:07:30:e2:32:41:71:1f:f4:1c:
7e:45:38:76:a5:e9:ee:ca:cf:3b:79:ee:c2:b4:71:f1:90:c2:
2b:0a:02:cf:9b:f0:dd:fb:84:3f:ef:71:70:c0:25:9e:29:99:
0b:bc:97:3c:67:46:a6:86:04:3c:f2:aa:99:b5:a8:63:df:52:
79:bf:65:18:7d:93:b1:2e:49:fb:be:83:38:d2:e2:32:62:d5:
cc:40:da:7a:2b:34:d5:66:1d:45:64:f9:4e:52:34:a4:ce:d9:
72:9b:63:3c:2a:37:18:d0:84:78:6a:73:ab:aa:b2:d8:90:7b:
54:c2:89:22:1e:db:aa:ba:8d:90:03:8a:7f:4b:a4:e3:e7:bf:
0f:78:5b:43:73:f1:6f:7b:b4:31:03:6b:56:7e:ac:af:a4:ef:
6b:0a:43:50:f8:cf:2e:a6:76:5c:d0:a1:86:3c:ca:1f:0b:49:
1d:28:9a:a0:69:96:f5:f8:ef:9e:dc:5a:0b:1c:7e:8d:1a:05:
d1:e4:a3:27:9f:e6:f2:67:83:dd:43:b7:13:d2:1b:1b:3a:0d:
56:41:49:d5:9c:6c:90:95:a5:8b:b4:a9:61:a5:bf:a5:5c:6c:
de:46:41:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 01:16:27 2026 by rpki-client