Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: kbKgrXA6aaXERf79CDa4pyO80jOoLNtB4ETMixmCotc=
Subject key identifier: 1D:87:51:1D:FD:65:91:28:77:93:04:BA:F0:88:B3:89:CD:F9:FC:29
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3B1412E45541B3C67C10D8DAD8911261F8433FF9
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
Signing time: Fri 19 Jun 2026 04:42:15 +0000
ROA not before: Fri 19 Jun 2026 04:37:15 +0000
ROA not after: Fri 18 Jun 2027 04:42:15 +0000
asID: 64267
IP address blocks: 91.124.43.0/24 maxlen: 24
92.112.141.0/24 maxlen: 24
92.113.106.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
95.135.12.0/24 maxlen: 24
95.135.19.0/24 maxlen: 24
95.135.25.0/24 maxlen: 24
95.135.183.0/24 maxlen: 24
95.135.244.0/24 maxlen: 24
178.92.72.0/24 maxlen: 24
178.92.158.0/24 maxlen: 24
178.92.195.0/24 maxlen: 24
178.92.219.0/24 maxlen: 24
178.92.246.0/24 maxlen: 24
178.93.30.0/24 maxlen: 24
178.95.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 21:41:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:14:12:e4:55:41:b3:c6:7c:10:d8:da:d8:91:12:61:f8:43:3f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 19 04:37:15 2026 GMT
Not After : Jun 18 04:42:15 2027 GMT
Subject: CN=1D87511DFD659128779304BAF088B389CDF9FC29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:5d:b5:5d:d0:59:ac:bb:08:54:64:80:20:
d0:3a:0c:c8:26:a8:71:60:6f:88:88:f0:b1:27:b2:
6d:59:58:ef:44:2c:a9:bc:17:e5:d6:d3:50:81:4a:
cd:20:c7:ba:76:7d:ca:53:4c:d8:82:b7:a0:4c:46:
2c:97:06:cd:74:ec:21:e0:50:06:1a:49:d9:3b:8c:
06:f0:6b:65:59:6a:e7:c1:ec:45:fe:bf:63:30:ab:
48:1f:8e:cc:7c:8b:86:fd:f9:54:b8:6d:e3:7c:ff:
8c:4e:bf:61:a6:b2:8d:9c:38:34:f0:44:16:60:63:
00:d5:83:7d:9d:75:fa:63:ef:49:ea:25:37:53:0c:
20:b7:b5:27:4e:04:36:5b:6b:74:7c:09:2d:d2:18:
fb:ba:a6:21:3b:4c:c2:47:80:db:4c:04:05:3f:08:
c4:b9:d6:44:b6:1a:8b:e6:37:5b:4e:30:0d:f1:8b:
df:23:a4:07:8f:d3:f2:58:de:25:e7:f8:6a:9d:ed:
10:72:dd:be:69:72:a0:6e:16:bc:1f:30:72:75:1e:
c1:5b:8d:9f:e1:ba:4d:b9:a2:64:f3:7a:15:f8:69:
2f:72:75:46:5e:8f:9d:c7:02:80:03:62:7e:7d:32:
42:1c:5c:3e:2b:2a:9b:0d:58:c7:5a:ea:ff:4d:62:
52:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:87:51:1D:FD:65:91:28:77:93:04:BA:F0:88:B3:89:CD:F9:FC:29
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.43.0/24
92.112.141.0/24
92.113.106.0/24
92.113.215.0/24
95.135.12.0/24
95.135.19.0/24
95.135.25.0/24
95.135.183.0/24
95.135.244.0/24
178.92.72.0/24
178.92.158.0/24
178.92.195.0/24
178.92.219.0/24
178.92.246.0/24
178.93.30.0/24
178.95.225.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:71:7f:64:5c:a3:8b:9d:d5:f2:13:67:70:fd:fd:e2:ef:f1:
7b:87:d3:15:9d:56:08:30:78:8e:c8:c4:93:64:7e:42:bc:22:
80:ff:8d:da:6e:20:9f:63:07:35:f7:3b:94:5c:a3:d1:a1:19:
19:22:48:ea:2c:57:98:34:f3:37:59:db:98:7f:e0:59:41:1a:
10:fc:f5:99:68:64:c5:2a:6a:04:5a:f0:61:1e:f4:5f:72:06:
1e:31:68:c1:b8:a6:3e:9b:ea:d0:d1:71:5f:e0:1b:b4:f4:e1:
c5:78:5e:b0:ba:18:ee:9b:59:f0:a9:3d:f6:32:7d:41:c6:18:
07:97:09:38:fa:aa:58:c1:e8:43:71:00:52:7a:43:4a:b2:b6:
28:7c:01:85:a0:70:18:0e:df:5c:5f:4c:d6:5a:3b:0e:13:64:
69:d7:a2:f5:78:e3:2c:36:8d:a8:0d:0f:b6:28:d3:c1:d0:35:
f1:56:23:62:83:d3:43:7a:77:c9:a0:0b:c0:5b:af:a0:3e:45:
ff:42:88:38:cf:a5:84:e1:ef:cb:ee:a3:bc:66:b9:44:c9:8b:
11:e4:88:5b:2e:72:42:6d:cf:c8:7f:d5:6f:94:d4:91:05:4d:
44:82:7c:a7:e3:83:8c:bf:45:47:87:1c:f0:11:87:15:12:05:
16:40:9e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 01:20:17 2026 by rpki-client