Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: cybiB0SFbQ1f8X31ObXOwQ73Qx4o5y0TcDY3OfKxSyQ=
Subject key identifier: 08:E8:DD:A4:73:25:41:28:F8:E1:7D:FD:D5:43:81:46:98:58:11:17
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 2D9CE035BBF9C252C05ADBCD300810910584F144
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
Signing time: Mon 08 Sep 2025 07:52:17 +0000
ROA not before: Mon 08 Sep 2025 07:47:17 +0000
ROA not after: Mon 07 Sep 2026 07:52:17 +0000
asID: 64267
IP address blocks: 46.203.72.0/24 maxlen: 24
46.203.81.0/24 maxlen: 24
92.112.5.0/24 maxlen: 24
92.113.11.0/24 maxlen: 24
92.113.170.0/24 maxlen: 24
92.113.171.0/24 maxlen: 24
92.113.175.0/24 maxlen: 24
92.113.196.0/24 maxlen: 24
92.113.198.0/24 maxlen: 24
92.113.208.0/24 maxlen: 24
92.113.211.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
92.113.224.0/24 maxlen: 24
92.113.230.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 13:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:9c:e0:35:bb:f9:c2:52:c0:5a:db:cd:30:08:10:91:05:84:f1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 8 07:47:17 2025 GMT
Not After : Sep 7 07:52:17 2026 GMT
Subject: CN=08E8DDA473254128F8E17DFDD543814698581117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:22:86:4c:74:00:6f:f7:85:80:ee:b8:dd:63:
a4:30:21:61:6a:59:b1:c7:27:98:61:23:a5:a5:13:
e5:75:53:4c:86:4d:43:d3:c2:b6:42:4e:27:40:c7:
4e:1e:9b:2d:51:79:a7:60:b8:1f:84:9e:ba:c7:07:
d3:89:3c:09:7c:83:46:2a:12:de:c0:a7:97:29:00:
4f:f8:94:3f:71:57:de:f7:af:4e:08:bb:6f:5f:80:
e1:0a:2a:c8:b7:77:00:a0:20:df:86:21:ae:7d:f3:
ea:56:e1:c4:d2:ed:a4:7d:ac:87:c3:65:d6:b6:a9:
39:b1:1d:c1:f3:11:23:e8:c0:33:b3:28:ff:4e:d0:
85:19:95:b0:03:72:38:23:83:13:34:e5:a2:00:e4:
59:fb:01:62:6d:fb:57:ef:78:73:bc:e1:07:c1:3d:
c3:57:44:36:09:16:ff:66:ad:21:b5:68:84:0d:df:
ef:db:55:0c:27:c6:1c:e3:fe:56:c0:02:fd:6e:4e:
50:c5:f2:f1:e0:19:74:ef:3d:de:96:1a:cd:15:1f:
e0:a4:2c:a4:2f:c7:e6:e5:bb:17:f0:6b:93:ce:80:
82:df:6d:f6:4e:a7:33:30:6a:5e:da:91:f1:6c:ff:
6f:40:f6:27:ec:7c:e4:44:ce:5e:53:eb:ec:42:5f:
46:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E8:DD:A4:73:25:41:28:F8:E1:7D:FD:D5:43:81:46:98:58:11:17
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.203.72.0/24
46.203.81.0/24
92.112.5.0/24
92.113.11.0/24
92.113.170.0/23
92.113.175.0/24
92.113.196.0/24
92.113.198.0/24
92.113.208.0/24
92.113.211.0/24
92.113.215.0/24
92.113.224.0/24
92.113.230.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e1:45:19:e3:8f:a6:18:6a:2f:88:50:5f:18:0b:b0:ff:fa:
49:92:98:a7:7e:f3:bf:c7:04:a6:9d:62:b7:68:9f:4f:49:e2:
87:bf:57:cf:b5:83:c8:f0:1f:04:85:18:5f:a6:cd:2d:36:f3:
5f:fe:7e:49:17:22:a4:e1:75:5c:84:7b:c9:48:36:12:e8:a9:
87:e2:72:75:74:f1:1b:b6:7c:35:58:89:a3:1e:f3:ae:85:15:
94:30:db:af:d3:d7:07:31:6b:55:17:fd:38:26:81:91:67:c4:
1e:cd:fa:8e:fa:d7:0e:57:45:4c:63:0a:03:bc:88:90:77:19:
dd:de:c6:56:45:23:4b:c1:2c:98:ea:d6:90:6b:f8:92:ad:27:
7f:47:3e:ea:ed:46:0c:62:dd:e8:f2:13:50:4f:ff:2e:dd:61:
9a:b3:55:3a:0f:8d:4e:08:d1:d9:0f:75:d1:87:b9:90:fa:39:
e5:5c:ae:c4:b0:29:b5:e0:15:58:27:7b:ec:56:53:96:bb:61:
8b:2f:bf:3e:32:f6:a3:42:6b:6d:94:e5:ee:82:93:cd:5b:ca:
5a:6b:d2:ed:2c:f0:8f:a2:62:0d:e5:fc:63:f5:8d:aa:02:66:
66:8b:b9:93:7f:96:12:80:36:9e:a8:c8:21:bc:c4:f2:28:05:
18:9f:ad:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 20:35:02 2025 by rpki-client