Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
File: AS135402.roa (raw, json)
Hash identifier: GFCy8It8tMyRfJWBtbiFgt0S3Y6KfQ2QJDEYm3ydJeA=
Subject key identifier: 9B:1F:19:E6:D3:B9:7F:70:76:39:5F:C5:39:E5:6F:E5:D5:4F:32:37
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 56E7099273BD1494B215386EDDBC0B2E71C46A37
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
Signing time: Fri 27 Jun 2025 09:52:53 +0000
ROA not before: Fri 27 Jun 2025 09:47:53 +0000
ROA not after: Fri 26 Jun 2026 09:52:53 +0000
asID: 135402
IP address blocks: 92.113.212.0/24 maxlen: 24
95.134.21.0/24 maxlen: 24
95.134.129.0/24 maxlen: 24
95.134.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:e7:09:92:73:bd:14:94:b2:15:38:6e:dd:bc:0b:2e:71:c4:6a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 27 09:47:53 2025 GMT
Not After : Jun 26 09:52:53 2026 GMT
Subject: CN=9B1F19E6D3B97F7076395FC539E56FE5D54F3237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b9:5a:b6:2e:ea:36:81:f3:d3:99:ca:4e:fb:
03:6c:ec:ef:8a:1c:75:32:77:db:fa:3f:cc:8f:ac:
f5:35:91:7d:cc:94:20:9c:0f:31:ad:0f:62:54:44:
51:b6:b1:ea:a7:ae:56:76:bb:df:be:7d:33:91:eb:
99:84:1b:60:73:e4:89:4d:74:74:78:14:2f:3f:56:
2a:74:27:29:cf:ff:8a:c8:d8:01:94:4d:18:ee:f6:
8d:5f:7f:73:69:96:38:b0:10:ab:59:7c:95:ea:e5:
00:fe:a9:b0:c6:44:01:a4:59:9d:c0:62:a6:88:8d:
e1:13:89:fe:90:4f:97:e0:42:3c:50:8d:e6:57:99:
81:ae:39:2f:6b:43:fb:77:16:5c:26:de:4b:ab:31:
05:c8:5c:ee:09:db:e3:b6:58:7c:3d:23:fa:ab:62:
3f:e4:b4:bd:ed:fd:82:80:ea:ba:54:0a:cb:9f:5e:
b8:cf:56:a4:b1:4b:f6:35:dc:5f:26:ff:94:59:e3:
b8:37:74:4f:9f:9c:5a:ad:b5:76:28:ed:a4:eb:3f:
f5:82:fc:b6:d7:e0:9a:84:e3:b7:bc:38:8c:ab:60:
4c:83:4c:9e:11:7b:3b:b5:68:bf:6f:28:a5:e9:5e:
8b:67:36:a7:61:65:9a:68:b2:04:60:43:c2:b5:35:
02:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1F:19:E6:D3:B9:7F:70:76:39:5F:C5:39:E5:6F:E5:D5:4F:32:37
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.212.0/24
95.134.21.0/24
95.134.129.0/24
95.134.183.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:09:9a:37:c6:d3:9e:ee:e7:f6:ae:80:79:a5:9f:57:db:67:
08:3e:d1:34:e2:23:31:07:94:e1:8f:5d:95:b7:c7:cc:aa:34:
df:4c:4a:b8:4a:93:cb:ec:09:be:aa:a8:06:70:a9:84:28:d3:
3d:3e:9d:80:54:f1:fd:e6:08:bb:1f:06:44:bb:f9:44:b9:fb:
9c:30:6a:ce:63:cb:59:ac:d3:ca:03:5a:56:8c:ea:cd:75:5b:
30:77:e5:47:c1:30:55:0d:44:08:7f:de:14:4b:ed:7a:b7:83:
06:e2:7c:13:45:08:3f:b1:1e:3e:2a:79:8a:01:a5:9c:70:ab:
5a:77:fd:72:86:5d:b6:32:80:96:78:e5:1e:0e:66:06:82:b2:
2e:9e:bb:f6:71:bf:f2:7c:be:55:c9:23:62:a1:2e:d8:c3:e8:
a4:cb:88:59:3a:4c:db:7d:b4:09:9a:ca:a6:e7:a3:db:cf:be:
95:8d:6f:c9:f7:7b:10:8d:89:b3:9e:b9:65:15:af:e3:de:16:
7e:d2:95:37:25:17:25:cb:34:0f:17:4b:6b:7a:f7:e6:50:8a:
da:60:9f:49:64:ed:49:93:5c:c7:f4:b6:16:60:23:24:31:0d:
a8:7b:c4:17:cd:d7:2a:dc:d0:ad:b6:65:88:92:3e:e0:29:77:
b3:c5:29:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:57:48 2025 by rpki-client