Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
File: AS7018.roa (raw, json)
Hash identifier: A6SX7he3LfMm2WegSR6r22cKexEs1t8qG5KqNVRyt1c=
Subject key identifier: FB:AF:DB:B5:B3:09:B2:A8:05:2B:5C:5D:AE:D3:DA:F1:3F:F0:BF:42
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 375CD121CB1657557A611EC3BAA1426A465E2187
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
Signing time: Thu 13 Feb 2025 00:01:05 +0000
ROA not before: Wed 12 Feb 2025 23:56:05 +0000
ROA not after: Thu 12 Feb 2026 00:01:05 +0000
asID: 7018
IP address blocks: 46.202.1.0/24 maxlen: 24
46.202.49.0/24 maxlen: 24
46.202.50.0/24 maxlen: 24
46.202.51.0/24 maxlen: 24
46.202.53.0/24 maxlen: 24
46.202.87.0/24 maxlen: 24
46.202.96.0/24 maxlen: 24
46.202.97.0/24 maxlen: 24
46.202.98.0/24 maxlen: 24
46.202.99.0/24 maxlen: 24
46.202.124.0/24 maxlen: 24
46.202.125.0/24 maxlen: 24
46.202.126.0/24 maxlen: 24
46.202.127.0/24 maxlen: 24
46.202.201.0/24 maxlen: 24
46.202.202.0/24 maxlen: 24
46.202.203.0/24 maxlen: 24
46.202.207.0/24 maxlen: 24
46.202.216.0/24 maxlen: 24
46.202.217.0/24 maxlen: 24
46.202.219.0/24 maxlen: 24
46.202.220.0/24 maxlen: 24
46.202.221.0/24 maxlen: 24
46.202.222.0/24 maxlen: 24
46.202.223.0/24 maxlen: 24
46.203.3.0/24 maxlen: 24
46.203.5.0/24 maxlen: 24
46.203.13.0/24 maxlen: 24
46.203.14.0/24 maxlen: 24
46.203.21.0/24 maxlen: 24
46.203.22.0/24 maxlen: 24
46.203.29.0/24 maxlen: 24
46.203.32.0/24 maxlen: 24
46.203.43.0/24 maxlen: 24
46.203.44.0/24 maxlen: 24
46.203.47.0/24 maxlen: 24
46.203.54.0/24 maxlen: 24
46.203.56.0/24 maxlen: 24
46.203.58.0/24 maxlen: 24
46.203.62.0/24 maxlen: 24
46.203.74.0/24 maxlen: 24
46.203.80.0/24 maxlen: 24
46.203.91.0/24 maxlen: 24
46.203.92.0/24 maxlen: 24
46.203.104.0/24 maxlen: 24
46.203.107.0/24 maxlen: 24
46.203.113.0/24 maxlen: 24
46.203.114.0/24 maxlen: 24
46.203.121.0/24 maxlen: 24
46.203.137.0/24 maxlen: 24
46.203.148.0/24 maxlen: 24
46.203.150.0/24 maxlen: 24
46.203.151.0/24 maxlen: 24
46.203.161.0/24 maxlen: 24
46.203.208.0/24 maxlen: 24
46.203.214.0/24 maxlen: 24
46.203.223.0/24 maxlen: 24
46.203.225.0/24 maxlen: 24
46.203.249.0/24 maxlen: 24
91.124.0.0/24 maxlen: 24
91.124.2.0/24 maxlen: 24
91.124.3.0/24 maxlen: 24
91.124.16.0/24 maxlen: 24
91.124.17.0/24 maxlen: 24
91.124.59.0/24 maxlen: 24
91.124.82.0/24 maxlen: 24
91.124.90.0/24 maxlen: 24
91.124.134.0/24 maxlen: 24
91.124.208.0/24 maxlen: 24
91.124.242.0/24 maxlen: 24
92.112.56.0/24 maxlen: 24
92.112.62.0/24 maxlen: 24
92.112.111.0/24 maxlen: 24
92.112.112.0/24 maxlen: 24
92.112.113.0/24 maxlen: 24
92.112.114.0/24 maxlen: 24
92.112.115.0/24 maxlen: 24
92.112.116.0/24 maxlen: 24
92.112.117.0/24 maxlen: 24
92.112.118.0/24 maxlen: 24
92.112.131.0/24 maxlen: 24
92.112.144.0/24 maxlen: 24
92.112.154.0/24 maxlen: 24
92.113.6.0/24 maxlen: 24
92.113.15.0/24 maxlen: 24
92.113.40.0/24 maxlen: 24
92.113.56.0/21 maxlen: 21
92.113.169.0/24 maxlen: 24
92.113.170.0/24 maxlen: 24
92.113.171.0/24 maxlen: 24
92.113.172.0/24 maxlen: 24
92.113.173.0/24 maxlen: 24
92.113.174.0/24 maxlen: 24
92.113.175.0/24 maxlen: 24
92.113.176.0/24 maxlen: 24
92.113.177.0/24 maxlen: 24
92.113.178.0/24 maxlen: 24
92.113.179.0/24 maxlen: 24
92.113.180.0/24 maxlen: 24
92.113.181.0/24 maxlen: 24
92.113.182.0/24 maxlen: 24
92.113.183.0/24 maxlen: 24
92.113.184.0/24 maxlen: 24
92.113.185.0/24 maxlen: 24
92.113.186.0/24 maxlen: 24
92.113.187.0/24 maxlen: 24
92.113.188.0/24 maxlen: 24
92.113.189.0/24 maxlen: 24
92.113.190.0/24 maxlen: 24
92.113.191.0/24 maxlen: 24
92.113.192.0/24 maxlen: 24
92.113.193.0/24 maxlen: 24
92.113.194.0/24 maxlen: 24
92.113.195.0/24 maxlen: 24
92.113.196.0/24 maxlen: 24
92.113.197.0/24 maxlen: 24
92.113.198.0/24 maxlen: 24
92.113.199.0/24 maxlen: 24
92.113.200.0/24 maxlen: 24
92.113.201.0/24 maxlen: 24
92.113.202.0/24 maxlen: 24
92.113.203.0/24 maxlen: 24
92.113.204.0/24 maxlen: 24
92.113.205.0/24 maxlen: 24
92.113.206.0/24 maxlen: 24
92.113.207.0/24 maxlen: 24
92.113.208.0/24 maxlen: 24
92.113.209.0/24 maxlen: 24
92.113.210.0/24 maxlen: 24
92.113.211.0/24 maxlen: 24
92.113.212.0/24 maxlen: 24
92.113.213.0/24 maxlen: 24
92.113.214.0/24 maxlen: 24
92.113.215.0/24 maxlen: 24
92.113.216.0/24 maxlen: 24
92.113.217.0/24 maxlen: 24
92.113.218.0/24 maxlen: 24
92.113.219.0/24 maxlen: 24
92.113.220.0/24 maxlen: 24
92.113.221.0/24 maxlen: 24
92.113.222.0/24 maxlen: 24
92.113.223.0/24 maxlen: 24
92.113.224.0/24 maxlen: 24
92.113.228.0/24 maxlen: 24
92.113.229.0/24 maxlen: 24
92.113.230.0/24 maxlen: 24
92.113.247.0/24 maxlen: 24
92.113.248.0/24 maxlen: 24
92.113.249.0/24 maxlen: 24
92.113.250.0/24 maxlen: 24
92.113.251.0/24 maxlen: 24
92.113.252.0/24 maxlen: 24
92.113.253.0/24 maxlen: 24
92.113.254.0/24 maxlen: 24
92.113.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 05:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:5c:d1:21:cb:16:57:55:7a:61:1e:c3:ba:a1:42:6a:46:5e:21:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 12 23:56:05 2025 GMT
Not After : Feb 12 00:01:05 2026 GMT
Subject: CN=FBAFDBB5B309B2A8052B5C5DAED3DAF13FF0BF42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:35:64:1e:8f:99:46:d6:d5:2d:89:bf:a6:10:
52:69:53:6d:5a:6b:0d:ce:c0:bc:1a:b6:21:bd:dd:
30:72:6a:a1:2b:c2:56:19:c9:f8:6e:1e:91:19:38:
fa:e3:b8:21:93:7b:88:4f:ea:d6:e8:da:16:91:d9:
e2:35:db:7d:e1:6f:a3:2c:76:ed:95:c8:d6:14:b0:
19:04:37:b5:2f:48:6d:ac:79:00:6f:d1:17:42:c8:
6e:7c:7b:34:bf:ff:df:f6:3e:f3:7e:86:4d:11:09:
3e:c8:c1:b0:e1:87:46:5b:48:ef:a2:5a:a3:fb:02:
09:c9:1f:65:d0:1e:96:df:4e:3c:e5:cb:2e:8e:08:
00:f3:aa:f4:41:1b:95:0b:d4:9c:0f:9e:54:4e:79:
ba:11:92:dc:e3:33:ca:aa:db:24:e6:01:73:a2:13:
84:a9:8f:0e:be:8f:23:bc:90:a5:cf:04:f7:33:eb:
5d:89:b7:79:4e:41:61:79:34:ec:a9:9f:84:96:8a:
e6:9f:79:5b:67:a6:ae:77:f8:3a:6f:8e:80:61:13:
1f:d2:94:dc:83:2a:c3:ca:4a:b6:85:45:3e:f2:50:
fa:b1:99:e2:5f:80:89:8a:ff:b8:10:d9:2f:78:26:
d8:70:a2:9a:50:98:d1:2d:93:3a:92:a6:bb:34:31:
a5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:AF:DB:B5:B3:09:B2:A8:05:2B:5C:5D:AE:D3:DA:F1:3F:F0:BF:42
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7018.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.1.0/24
46.202.49.0-46.202.51.255
46.202.53.0/24
46.202.87.0/24
46.202.96.0/22
46.202.124.0/22
46.202.201.0-46.202.203.255
46.202.207.0/24
46.202.216.0/23
46.202.219.0-46.202.223.255
46.203.3.0/24
46.203.5.0/24
46.203.13.0-46.203.14.255
46.203.21.0-46.203.22.255
46.203.29.0/24
46.203.32.0/24
46.203.43.0-46.203.44.255
46.203.47.0/24
46.203.54.0/24
46.203.56.0/24
46.203.58.0/24
46.203.62.0/24
46.203.74.0/24
46.203.80.0/24
46.203.91.0-46.203.92.255
46.203.104.0/24
46.203.107.0/24
46.203.113.0-46.203.114.255
46.203.121.0/24
46.203.137.0/24
46.203.148.0/24
46.203.150.0/23
46.203.161.0/24
46.203.208.0/24
46.203.214.0/24
46.203.223.0/24
46.203.225.0/24
46.203.249.0/24
91.124.0.0/24
91.124.2.0/23
91.124.16.0/23
91.124.59.0/24
91.124.82.0/24
91.124.90.0/24
91.124.134.0/24
91.124.208.0/24
91.124.242.0/24
92.112.56.0/24
92.112.62.0/24
92.112.111.0-92.112.118.255
92.112.131.0/24
92.112.144.0/24
92.112.154.0/24
92.113.6.0/24
92.113.15.0/24
92.113.40.0/24
92.113.56.0/21
92.113.169.0-92.113.224.255
92.113.228.0-92.113.230.255
92.113.247.0-92.113.255.255
Signature Algorithm: sha256WithRSAEncryption
a7:a2:06:d0:71:28:2b:1e:50:00:cd:95:b4:9b:59:28:6a:d9:
2e:9d:5e:ee:71:1a:ea:1a:37:b0:77:3b:ca:e3:5d:dc:63:2b:
22:05:3b:db:65:49:2a:f2:24:6d:eb:ae:f9:64:e4:e4:50:0d:
82:b5:05:15:99:01:d6:a6:cc:6b:07:ef:63:05:b2:a8:c8:b2:
ef:85:dd:14:4b:b3:df:4a:fe:69:45:43:81:a3:48:49:89:ed:
d2:cc:5b:f0:0a:a6:7c:a6:8f:b4:e4:06:e9:55:79:20:fa:bb:
f7:c2:eb:29:97:02:b4:05:70:8b:78:93:2b:ce:86:28:9e:a8:
0b:d1:18:16:40:be:f1:f8:d8:bf:97:b2:83:6b:00:0e:4d:1f:
f6:cb:6c:fd:74:ac:f9:b5:24:65:7c:00:ad:0f:11:a8:f4:80:
f5:a5:63:63:61:48:30:4d:6d:97:c8:c1:77:5f:48:02:b4:9e:
00:34:5c:2a:6d:65:1a:7e:62:d9:df:46:66:56:86:c8:22:61:
c9:2c:c1:79:9d:38:d9:25:09:58:37:35:14:32:b6:c0:ae:6f:
9a:fa:c6:0a:da:b1:ec:0c:74:7e:22:63:6f:82:09:92:8d:45:
12:bb:71:6a:22:12:8b:d2:9b:8c:03:42:81:9b:72:51:81:b9:
6e:09:6b:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:42:40 2025 by rpki-client