Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
File: AS7922.roa (raw, json)
Hash identifier: Ar4s9IxACPnkcAXoEjAi6Zq6b022VEtYabHoPkHauIo=
Subject key identifier: 1B:6C:9D:C8:8C:CF:9E:DB:21:B1:4C:CF:69:84:0E:64:56:4C:E2:D9
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 4F47EA0262FFC996A520FDD1BC049B8130964426
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
Signing time: Tue 09 Sep 2025 11:56:51 +0000
ROA not before: Tue 09 Sep 2025 11:51:51 +0000
ROA not after: Tue 08 Sep 2026 11:56:51 +0000
asID: 7922
IP address blocks: 46.202.218.0/24 maxlen: 24
92.113.86.0/24 maxlen: 24
92.113.89.0/24 maxlen: 24
92.113.114.0/24 maxlen: 24
178.93.76.0/24 maxlen: 24
178.93.77.0/24 maxlen: 24
178.93.78.0/24 maxlen: 24
178.93.79.0/24 maxlen: 24
178.93.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 13:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:47:ea:02:62:ff:c9:96:a5:20:fd:d1:bc:04:9b:81:30:96:44:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 9 11:51:51 2025 GMT
Not After : Sep 8 11:56:51 2026 GMT
Subject: CN=1B6C9DC88CCF9EDB21B14CCF69840E64564CE2D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:25:ce:b9:92:9d:03:24:3e:c9:3a:45:1d:c5:
43:36:8e:98:bf:04:75:c4:d7:6a:56:e4:09:2c:f4:
de:bd:4b:b4:ac:5f:96:17:a5:3f:36:83:6b:bf:08:
43:b6:16:4a:d2:80:75:e3:95:7b:0c:e4:ef:e6:a6:
0b:78:48:25:dd:16:9d:21:f2:83:9b:d6:07:ce:e0:
b7:62:1d:b4:86:e0:37:f9:19:95:35:91:a7:e7:31:
fa:8c:26:17:46:8d:e2:e6:57:20:30:5b:c6:9d:65:
51:8a:56:1e:2e:e2:62:86:5b:c9:86:2e:c4:8e:86:
68:fd:6e:a9:07:0a:92:05:c4:86:29:05:6a:06:95:
69:72:5a:df:b2:5b:54:b4:52:2a:ef:b8:6c:ce:99:
c2:dd:fc:16:7c:4e:43:14:c3:73:8a:bf:3e:26:ab:
c5:ec:1b:9f:97:58:5f:7d:53:46:34:4d:9c:6f:eb:
42:06:86:a6:ca:06:2d:40:96:74:6d:11:66:c3:3c:
c1:0c:4b:51:32:35:80:78:98:c6:d1:8e:27:d4:07:
0a:c8:e3:86:de:65:c0:bd:b9:97:23:12:92:d7:07:
b3:5f:90:2d:fb:1c:59:a5:30:d4:ed:e2:1a:e1:5a:
41:e5:8c:40:83:41:74:ea:64:2f:33:29:52:30:8d:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6C:9D:C8:8C:CF:9E:DB:21:B1:4C:CF:69:84:0E:64:56:4C:E2:D9
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS7922.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.202.218.0/24
92.113.86.0/24
92.113.89.0/24
92.113.114.0/24
178.93.76.0/22
178.93.115.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:45:f4:18:bc:58:6f:ec:d1:8d:0d:f8:32:75:f7:d1:ab:74:
c4:30:60:c7:aa:5f:59:b9:63:bf:72:26:2e:11:c6:c1:2c:94:
c2:e2:b5:e5:34:23:90:76:22:8c:a0:34:e9:7d:2d:17:89:26:
74:5d:e6:ae:7d:23:44:a2:90:27:25:95:3d:4f:15:a5:83:2f:
ce:a3:80:8f:c4:8e:a0:a0:3c:7a:6e:23:50:9f:c8:c5:9c:cd:
a9:d7:72:5f:40:55:a3:00:fd:3f:14:7f:73:ea:c6:39:47:ab:
1d:bf:c4:94:12:d4:08:33:0b:f2:b0:6a:be:1d:48:07:b0:e3:
fa:88:8a:7b:34:66:e4:a1:2c:c5:10:f6:32:b6:84:bf:5c:9f:
0d:4b:5f:51:38:94:5d:0f:18:22:98:f3:b4:46:23:cf:c8:4e:
7c:d5:c8:df:37:66:1b:25:e3:cb:64:ff:53:60:b1:48:3f:e3:
8f:99:91:41:8e:69:45:da:3f:45:88:3f:42:25:0e:56:c3:93:
f8:f6:0f:ed:92:ac:07:d9:8a:ed:16:b5:56:1c:f3:34:fc:7a:
93:9e:9f:22:07:b4:81:5e:61:46:35:67:5b:af:25:a4:2c:f7:
d1:59:3d:48:19:3e:4f:63:94:4c:b0:0d:37:e2:1a:d6:9f:59:
0e:a5:b1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 20:31:28 2025 by rpki-client