
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9304.roa
File: AS9304.roa (raw, json)
Hash identifier: 1PUW/h9KuDRi9QK9onIRl/PITcbSMe5My7sgqu2I57E=
Subject key identifier: 1B:BD:47:0E:13:DF:F3:4F:18:95:90:9D:BA:73:97:64:60:5E:59:15
Certificate issuer: /CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Certificate serial: 815D65B9F05EAC63A7CCBF00EF6751C0D4EE62
Authority key identifier: 0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9304.roa
Signing time: Thu 09 Jul 2026 05:18:05 +0000
ROA not before: Thu 09 Jul 2026 05:13:05 +0000
ROA not after: Thu 08 Jul 2027 05:18:05 +0000
asID: 9304
IP address blocks: 51.146.65.0/24 maxlen: 24
51.194.154.0/24 maxlen: 24
51.194.160.0/23 maxlen: 24
51.194.162.0/24 maxlen: 24
51.194.167.0/24 maxlen: 24
51.194.188.0/23 maxlen: 24
51.241.16.0/23 maxlen: 24
51.241.60.0/23 maxlen: 24
51.241.148.0/23 maxlen: 24
78.105.100.0/24 maxlen: 24
78.105.103.0/24 maxlen: 24
188.220.4.0/24 maxlen: 24
188.220.6.0/24 maxlen: 24
188.220.9.0/24 maxlen: 24
188.220.18.0/23 maxlen: 24
188.220.58.0/24 maxlen: 24
188.220.60.0/23 maxlen: 24
188.220.98.0/23 maxlen: 24
188.221.12.0/24 maxlen: 24
188.221.18.0/24 maxlen: 24
188.221.21.0/24 maxlen: 24
188.221.60.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.mft
rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 13:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
81:5d:65:b9:f0:5e:ac:63:a7:cc:bf:00:ef:67:51:c0:d4:ee:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e20ccf5083a63b9f5887e3ea39d04e2d62b3da5
Validity
Not Before: Jul 9 05:13:05 2026 GMT
Not After : Jul 8 05:18:05 2027 GMT
Subject: CN=1BBD470E13DFF34F1895909DBA739764605E5915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f0:af:e7:cd:5a:70:f7:70:30:04:0a:43:49:
21:ed:8b:29:5f:7d:31:47:55:99:c0:60:01:f1:6a:
59:15:99:6b:f9:57:6c:7a:19:e7:82:2a:9e:fa:6d:
90:20:b8:d8:74:32:5d:14:29:f4:d9:f2:6f:09:d5:
6d:3e:52:03:ea:4a:a8:f0:0e:3d:a7:98:88:ca:a5:
16:e0:01:0e:ad:8e:db:d0:68:c5:0e:c6:23:e3:e2:
1c:bb:c0:f8:d4:ad:96:4d:7d:f7:74:bc:4a:63:a0:
49:ae:ca:a4:14:f8:48:6a:d4:84:bf:20:61:3b:72:
21:de:38:b9:60:70:58:48:8c:fd:98:1d:81:55:51:
63:db:e7:d6:41:06:54:e9:79:b4:37:98:ec:f4:6c:
5e:a8:f4:81:a0:b9:76:70:d7:53:70:e5:52:e5:ff:
bd:4b:da:2a:96:9b:2f:f7:75:85:42:fd:fb:2a:d3:
33:9b:0e:7b:37:e2:91:41:df:de:19:51:85:5f:82:
75:87:90:3c:73:5b:84:24:8e:b6:78:01:83:d9:fa:
9b:bf:82:ee:25:52:c5:13:6e:9a:1f:1e:fc:da:77:
f3:2f:b5:2c:5d:7a:1c:52:d3:1e:64:ef:7e:71:8b:
50:35:b3:46:f6:8a:b8:8e:28:31:89:ea:ec:d8:f1:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BD:47:0E:13:DF:F3:4F:18:95:90:9D:BA:73:97:64:60:5E:59:15
X509v3 Authority Key Identifier:
keyid:0E:20:CC:F5:08:3A:63:B9:F5:88:7E:3E:A3:9D:04:E2:D6:2B:3D:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/0E20CCF5083A63B9F5887E3EA39D04E2D62B3DA5.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DiDM9Qg6Y7n1iH4-o50E4tYrPaU.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/96e4ac86-1803-494d-8a7b-c051a6310752/0/AS9304.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.146.65.0/24
51.194.154.0/24
51.194.160.0-51.194.162.255
51.194.167.0/24
51.194.188.0/23
51.241.16.0/23
51.241.60.0/23
51.241.148.0/23
78.105.100.0/24
78.105.103.0/24
188.220.4.0/24
188.220.6.0/24
188.220.9.0/24
188.220.18.0/23
188.220.58.0/24
188.220.60.0/23
188.220.98.0/23
188.221.12.0/24
188.221.18.0/24
188.221.21.0/24
188.221.60.0/23
Signature Algorithm: sha256WithRSAEncryption
37:4b:d8:10:57:fb:b8:81:2c:49:a6:76:a5:10:75:e0:b8:c2:
00:db:84:38:99:49:14:03:2b:b8:78:fc:2c:f4:fe:f6:5a:d8:
5e:70:94:98:d0:2e:36:61:1a:2f:d2:b5:c7:78:0c:39:50:18:
52:61:2d:bc:dd:0b:7c:23:af:43:ca:71:7a:2d:7d:3c:fc:02:
35:93:0e:23:88:82:1f:d4:da:f3:53:e1:85:ed:d7:8b:37:80:
a0:a4:f2:1a:a3:64:a2:0f:be:bd:5b:9a:6f:3e:ef:f0:2f:78:
10:42:6a:e6:fa:dc:1f:af:3d:38:31:d6:bc:8c:72:ca:9b:36:
f3:6a:f8:eb:ac:ed:dd:eb:d9:23:e2:37:f9:ff:c9:96:e4:56:
4a:04:2e:13:35:4e:f1:42:73:00:50:62:aa:2a:f1:5c:b0:f3:
5d:6f:80:15:5f:5c:c2:99:ea:53:69:64:1f:a7:d5:e8:ea:37:
f8:ce:b6:dd:9e:1d:02:6e:67:5e:3b:bb:5e:aa:67:6e:6c:1c:
82:50:7c:98:15:da:6c:66:67:82:cd:27:5f:f5:20:c5:6f:44:
1d:0a:6c:20:43:ac:19:47:c1:6d:02:e5:ea:af:35:0b:9b:42:
0e:54:15:f8:ef:56:e5:f5:29:3f:8b:01:5e:4c:9b:6b:ff:1c:
f3:16:78:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:48:44 2026 by rpki-client