Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
File: AS396356.roa (raw, json)
Hash identifier: 9VfpugO3t4xPY2nXeGmywXMYP722dnaQF+Lh/7HfRA8=
Subject key identifier: EC:FE:1E:34:C5:9F:1A:1E:87:9B:CE:70:8B:44:22:F3:21:CF:35:5B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 40E957E9FB02F15B0846112F0DDEC92A4379A576
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
Signing time: Fri 08 May 2026 14:49:11 +0000
ROA not before: Fri 08 May 2026 14:44:11 +0000
ROA not after: Fri 07 May 2027 14:49:11 +0000
asID: 396356
IP address blocks: 46.202.4.0/22 maxlen: 24
46.202.20.0/22 maxlen: 24
46.202.31.0/24 maxlen: 24
46.202.44.0/24 maxlen: 24
46.202.48.0/24 maxlen: 24
46.202.108.0/22 maxlen: 24
46.203.8.0/22 maxlen: 24
46.203.64.0/22 maxlen: 24
46.203.218.0/24 maxlen: 24
46.203.224.0/24 maxlen: 24
46.203.226.0/24 maxlen: 24
46.203.228.0/24 maxlen: 24
46.203.229.0/24 maxlen: 24
46.203.230.0/24 maxlen: 24
46.203.231.0/24 maxlen: 24
46.203.232.0/24 maxlen: 24
91.124.44.0/24 maxlen: 24
91.124.45.0/24 maxlen: 24
91.124.46.0/24 maxlen: 24
91.124.47.0/24 maxlen: 24
91.124.184.0/24 maxlen: 24
92.112.13.0/24 maxlen: 24
92.112.16.0/24 maxlen: 24
92.112.17.0/24 maxlen: 24
92.112.18.0/24 maxlen: 24
92.112.19.0/24 maxlen: 24
92.112.76.0/24 maxlen: 24
92.112.78.0/24 maxlen: 24
92.112.80.0/24 maxlen: 24
92.112.87.0/24 maxlen: 24
92.112.88.0/24 maxlen: 24
92.112.155.0/24 maxlen: 24
92.112.160.0/24 maxlen: 24
92.112.161.0/24 maxlen: 24
92.112.162.0/24 maxlen: 24
92.112.163.0/24 maxlen: 24
92.112.165.0/24 maxlen: 24
92.112.166.0/24 maxlen: 24
92.112.167.0/24 maxlen: 24
92.112.201.0/24 maxlen: 24
92.113.129.0/24 maxlen: 24
92.113.133.0/24 maxlen: 24
92.113.134.0/24 maxlen: 24
92.113.135.0/24 maxlen: 24
92.113.138.0/24 maxlen: 24
92.113.139.0/24 maxlen: 24
92.113.140.0/24 maxlen: 24
92.113.141.0/24 maxlen: 24
92.113.231.0/24 maxlen: 24
92.113.236.0/24 maxlen: 24
92.113.241.0/24 maxlen: 24
92.113.246.0/24 maxlen: 24
95.135.9.0/24 maxlen: 24
95.135.11.0/24 maxlen: 24
95.135.15.0/24 maxlen: 24
95.135.16.0/24 maxlen: 24
95.135.22.0/24 maxlen: 24
95.135.27.0/24 maxlen: 24
95.135.29.0/24 maxlen: 24
95.135.33.0/24 maxlen: 24
95.135.35.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:43:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:e9:57:e9:fb:02:f1:5b:08:46:11:2f:0d:de:c9:2a:43:79:a5:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: May 8 14:44:11 2026 GMT
Not After : May 7 14:49:11 2027 GMT
Subject: CN=ECFE1E34C59F1A1E879BCE708B4422F321CF355B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:92:3c:bb:ca:a7:0f:3b:54:f0:aa:7b:4f:
55:cc:f7:8d:28:c2:c5:d2:c7:c3:c2:47:03:5b:bb:
e9:a3:6f:53:26:34:3c:8a:f4:3a:a6:cb:ce:69:92:
f1:16:6c:ec:21:9b:8f:16:cd:6a:85:56:66:d6:20:
ac:42:3b:9e:e4:44:af:cb:db:9a:1d:1a:d2:81:50:
bd:57:16:a8:48:14:04:bd:54:5e:e3:53:82:f4:1d:
46:5f:fc:b9:2c:ac:4e:27:a4:94:dd:8f:00:4d:8a:
27:61:b4:cc:59:50:83:df:59:26:a6:f2:e5:79:08:
6c:8d:c3:8c:42:09:1a:b7:75:b4:d6:98:69:54:01:
a5:a4:eb:ac:c5:53:93:64:e2:bb:80:a0:4c:6f:e3:
8f:64:3a:a1:fc:9f:41:63:0c:e4:d4:05:5f:3b:90:
e1:86:54:78:bf:db:82:85:ec:bf:15:aa:e0:05:c5:
da:5a:d7:86:ba:fb:92:88:1b:86:86:67:78:53:7d:
4c:21:f3:4f:45:eb:89:ee:ee:d9:b5:4f:a1:0b:9a:
bb:ab:7f:fe:16:fa:45:14:94:8d:7f:5e:f0:0c:61:
19:0a:8e:f4:5f:e3:61:2c:e2:74:71:df:29:e0:ac:
be:da:12:df:67:d8:be:1c:38:4b:6a:bd:07:55:cc:
0d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FE:1E:34:C5:9F:1A:1E:87:9B:CE:70:8B:44:22:F3:21:CF:35:5B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS396356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.4.0/22
46.202.20.0/22
46.202.31.0/24
46.202.44.0/24
46.202.48.0/24
46.202.108.0/22
46.203.8.0/22
46.203.64.0/22
46.203.218.0/24
46.203.224.0/24
46.203.226.0/24
46.203.228.0-46.203.232.255
91.124.44.0/22
91.124.184.0/24
92.112.13.0/24
92.112.16.0/22
92.112.76.0/24
92.112.78.0/24
92.112.80.0/24
92.112.87.0-92.112.88.255
92.112.155.0/24
92.112.160.0/22
92.112.165.0-92.112.167.255
92.112.201.0/24
92.113.129.0/24
92.113.133.0-92.113.135.255
92.113.138.0-92.113.141.255
92.113.231.0/24
92.113.236.0/24
92.113.241.0/24
92.113.246.0/24
95.135.9.0/24
95.135.11.0/24
95.135.15.0-95.135.16.255
95.135.22.0/24
95.135.27.0/24
95.135.29.0/24
95.135.33.0/24
95.135.35.0/24
Signature Algorithm: sha256WithRSAEncryption
53:23:52:17:2f:8d:16:64:68:15:4b:df:15:49:7a:14:33:79:
51:31:65:4b:91:5d:79:aa:a3:83:8c:ab:18:d3:47:f0:ac:7e:
b1:7e:0c:ac:63:7f:78:e4:28:0e:87:96:07:44:53:c1:c0:09:
4d:a4:ee:bf:77:c7:17:39:53:45:96:ed:1d:fd:9d:bc:68:e5:
43:03:76:41:14:e6:27:fc:9f:9b:aa:45:15:a6:0f:e9:bf:74:
12:b6:ac:92:1b:39:90:47:52:5c:57:fd:04:d1:14:3f:c7:e5:
3c:b5:dd:0a:dd:c2:ef:e7:b4:63:cb:52:d9:44:e9:2e:02:67:
0c:12:dc:77:40:f4:de:ce:90:b3:2a:47:1e:83:27:64:5d:75:
1c:08:a0:7a:2f:aa:7f:d8:4a:3c:16:9e:25:bf:9c:c7:f8:ed:
e0:f3:56:39:9e:a5:41:51:fa:dc:2c:ce:b8:8d:ca:22:36:5c:
92:de:87:14:f9:52:7d:88:32:57:ec:0e:de:31:fc:f3:cc:4c:
e2:b8:33:1d:44:0d:6f:f6:3b:f9:ff:e0:a4:be:fd:cf:ab:11:
b5:33:25:fc:79:ea:7c:2f:b2:73:2d:87:f2:43:1d:41:7a:38:
f8:df:a9:1b:eb:39:be:73:be:97:30:f7:2f:c6:1a:57:57:b5:
ce:bf:e1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:41:03 2026 by rpki-client