
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa
File: AS9304.roa (raw, json)
Hash identifier: FP69lEg7xzFidTqxxu6WGmlkFDDiTJDw6qESU76rq+k=
Subject key identifier: 43:03:99:1F:1D:99:CF:54:88:44:B6:BE:76:7C:5D:C5:14:A1:44:5F
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 2E5C962626E525BDE230532CC05B6A840595E5C3
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa
Signing time: Tue 14 Jul 2026 00:04:31 +0000
ROA not before: Mon 13 Jul 2026 23:59:31 +0000
ROA not after: Tue 13 Jul 2027 00:04:31 +0000
asID: 9304
IP address blocks: 82.22.14.0/24 maxlen: 24
82.23.144.0/24 maxlen: 24
82.23.147.0/24 maxlen: 24
82.24.0.0/22 maxlen: 23
82.24.108.0/24 maxlen: 24
82.26.115.0/24 maxlen: 24
82.26.118.0/24 maxlen: 24
82.26.125.0/24 maxlen: 24
82.26.130.0/24 maxlen: 24
82.27.131.0/24 maxlen: 24
82.38.38.0/23 maxlen: 24
82.38.76.0/22 maxlen: 24
82.39.194.0/23 maxlen: 24
82.40.52.0/24 maxlen: 24
82.40.53.0/24 maxlen: 24
82.40.54.0/24 maxlen: 24
82.41.128.0/23 maxlen: 24
82.47.23.0/24 maxlen: 24
82.47.26.0/24 maxlen: 24
82.47.28.0/24 maxlen: 24
82.47.31.0/24 maxlen: 24
82.47.52.0/24 maxlen: 24
82.47.56.0/24 maxlen: 24
82.47.96.0/24 maxlen: 24
82.47.100.0/24 maxlen: 24
82.47.103.0/24 maxlen: 24
82.47.109.0/24 maxlen: 24
82.47.123.0/24 maxlen: 24
84.75.151.0/24 maxlen: 24
178.83.146.0/23 maxlen: 24
178.83.167.0/24 maxlen: 24
178.83.197.0/24 maxlen: 24
178.83.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 16:14:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:5c:96:26:26:e5:25:bd:e2:30:53:2c:c0:5b:6a:84:05:95:e5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jul 13 23:59:31 2026 GMT
Not After : Jul 13 00:04:31 2027 GMT
Subject: CN=4303991F1D99CF548844B6BE767C5DC514A1445F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:22:58:6c:c0:08:f5:85:dc:7d:8d:1c:d7:18:
3f:58:42:23:a4:c9:1c:8a:80:d8:9c:b9:2c:82:fe:
2d:94:a7:6c:7b:a8:82:2f:62:47:07:ca:f6:7f:b2:
c8:83:8a:ef:4b:84:7d:bf:f2:de:47:c5:d6:18:99:
01:ef:1f:33:23:aa:d5:93:e4:9b:21:28:87:fb:08:
c7:63:cc:1e:d6:37:f6:a9:91:9a:6a:65:c0:ca:5c:
3b:50:b1:70:d8:5a:62:b8:99:c6:e4:28:8e:ec:ff:
65:d9:81:5c:3b:be:a1:c5:3a:df:5b:69:a1:3a:a5:
35:6d:5a:ab:30:06:58:e4:be:71:b4:5d:fe:3d:55:
f8:40:9d:08:2d:7f:8c:c0:23:62:89:fe:89:49:13:
fa:1d:d5:6c:2c:8d:7a:d0:4e:03:3a:86:21:6e:4d:
2e:34:e0:68:fb:bf:55:3f:23:09:9d:2a:de:db:17:
ad:7c:7a:6f:1e:d0:07:ba:77:b3:02:4d:f2:97:c6:
47:90:74:91:1c:cc:ff:7e:81:31:05:0b:21:2d:04:
33:b8:16:f1:f0:95:07:8f:23:37:20:f2:63:03:23:
f7:c3:21:9d:ca:30:22:08:ef:8f:b9:45:e5:cc:ce:
8a:77:ef:45:45:83:69:0a:9f:2a:40:b2:58:67:34:
84:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:03:99:1F:1D:99:CF:54:88:44:B6:BE:76:7C:5D:C5:14:A1:44:5F
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS9304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.22.14.0/24
82.23.144.0/24
82.23.147.0/24
82.24.0.0/22
82.24.108.0/24
82.26.115.0/24
82.26.118.0/24
82.26.125.0/24
82.26.130.0/24
82.27.131.0/24
82.38.38.0/23
82.38.76.0/22
82.39.194.0/23
82.40.52.0-82.40.54.255
82.41.128.0/23
82.47.23.0/24
82.47.26.0/24
82.47.28.0/24
82.47.31.0/24
82.47.52.0/24
82.47.56.0/24
82.47.96.0/24
82.47.100.0/24
82.47.103.0/24
82.47.109.0/24
82.47.123.0/24
84.75.151.0/24
178.83.146.0/23
178.83.167.0/24
178.83.197.0-178.83.198.255
Signature Algorithm: sha256WithRSAEncryption
74:80:c0:16:d1:a9:1e:41:1f:65:01:65:9c:37:ef:ae:bc:38:
36:32:eb:de:2f:2d:f3:8a:59:59:14:5d:f1:51:6c:c4:d2:6e:
f3:68:72:3d:87:a0:13:b5:c2:96:55:33:84:0d:f9:17:52:f3:
71:59:ff:3c:ab:08:dc:3a:76:c5:17:c2:72:bf:0b:c9:e7:3f:
06:92:b9:cf:d6:e8:4c:69:69:a5:e6:3d:00:bf:15:c7:c7:75:
48:af:28:3b:f5:1a:87:9a:87:63:92:73:3e:dc:a9:4f:b2:11:
71:74:94:a0:94:f7:34:37:ca:83:e4:70:b0:97:3b:db:09:7d:
19:df:52:a5:cf:20:1e:fe:a4:0e:5c:ea:e2:99:f4:12:e7:02:
05:90:41:2e:ea:0a:4c:30:d0:0e:84:f5:2d:7a:f4:3e:0b:02:
82:91:27:08:84:9e:72:2d:c9:26:91:ac:2c:4f:e9:13:2c:ef:
4e:52:52:c0:70:84:d3:06:14:9c:d4:96:39:fe:2a:58:7e:50:
67:62:61:ba:2a:74:0b:b7:59:64:65:32:4c:32:c5:ba:8a:d2:
ef:d0:f7:03:11:ee:86:3a:9f:0d:8d:7c:d3:31:49:9c:4f:32:
ce:7a:17:7b:01:2b:99:5c:72:15:fa:77:35:f0:ba:c2:65:46:
6e:37:3f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 23:06:37 2026 by rpki-client