Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
File: AS135402.roa (raw, json)
Hash identifier: 6YiqCaY9PCJ7W6LSWUQ2tZEXL9CzCzvepIkV8oLVAuk=
Subject key identifier: 4D:59:81:46:0A:E9:C4:1C:41:CB:5C:D7:05:7F:AB:4F:0A:17:79:B3
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 3C2DC978A926C33ACAFC69B682CC12F1B8A69007
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
Signing time: Mon 13 Oct 2025 08:05:37 +0000
ROA not before: Mon 13 Oct 2025 08:00:37 +0000
ROA not after: Mon 12 Oct 2026 08:05:37 +0000
asID: 135402
IP address blocks: 91.124.30.0/24 maxlen: 24
92.113.212.0/24 maxlen: 24
95.134.21.0/24 maxlen: 24
178.92.145.0/24 maxlen: 24
178.95.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:2d:c9:78:a9:26:c3:3a:ca:fc:69:b6:82:cc:12:f1:b8:a6:90:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 13 08:00:37 2025 GMT
Not After : Oct 12 08:05:37 2026 GMT
Subject: CN=4D5981460AE9C41C41CB5CD7057FAB4F0A1779B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:48:5e:01:8b:fe:74:de:06:d4:b4:8d:ec:eb:
3f:ba:f7:38:b9:03:f4:71:45:99:2c:e9:4a:e3:c7:
c2:52:72:25:6b:40:19:c1:cd:d8:22:3b:e0:20:f9:
73:40:d6:c4:cc:ab:c2:e8:fe:f6:6a:cf:bd:93:b0:
e0:5a:d2:a9:f7:3b:84:3d:e0:90:98:39:78:de:3e:
58:bc:bd:66:e7:03:3c:23:b3:2f:e3:40:df:4c:1e:
7e:b8:e9:fb:56:ee:60:a9:9e:48:87:e7:ef:a3:84:
90:74:61:b7:60:98:99:6a:90:93:10:79:ee:63:98:
e6:af:7f:c8:44:63:14:a7:15:c4:c5:52:3a:bb:ab:
9d:fb:15:11:77:8e:eb:bb:09:b8:7b:ef:02:26:e2:
66:dc:61:b6:d5:07:b8:4c:b9:00:9f:f5:98:ce:9d:
59:7e:83:04:4c:32:41:ce:07:0f:44:47:f1:8e:59:
f5:f4:4c:e7:b7:c3:12:e9:cf:0f:f9:cb:1e:a1:d7:
7f:3e:83:ed:0d:0b:6b:df:6f:ac:71:61:c1:83:17:
8b:5c:02:ef:cb:61:a8:c6:e3:88:b3:45:08:41:0c:
ac:a8:10:ab:3e:92:86:eb:5e:43:b3:f8:fb:5b:e8:
3c:23:cc:79:46:6e:fe:81:bd:f8:ef:dc:28:4b:36:
03:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:59:81:46:0A:E9:C4:1C:41:CB:5C:D7:05:7F:AB:4F:0A:17:79:B3
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135402.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.30.0/24
92.113.212.0/24
95.134.21.0/24
178.92.145.0/24
178.95.72.0/24
Signature Algorithm: sha256WithRSAEncryption
83:17:8e:00:be:98:1c:53:29:90:47:a5:cc:86:04:55:86:35:
8e:60:31:52:73:ec:34:13:6c:20:2b:2f:96:bf:9e:c2:f6:0c:
62:cd:31:1b:3a:1b:75:0e:75:4b:6d:56:1f:ef:8b:ee:7a:e5:
14:50:ef:70:5f:64:81:85:bd:e5:f6:a1:bf:39:b9:17:12:bd:
b4:6d:5f:99:4e:f5:37:29:35:e1:fc:c0:f1:10:0c:ad:aa:89:
8c:2b:b0:fb:92:49:5a:9d:0a:5a:b5:c1:ea:09:c5:a9:af:72:
56:7b:c2:ef:0b:74:e2:13:e4:95:7c:fa:46:30:81:38:e4:5a:
46:e4:c3:83:3b:7b:da:d0:8a:cd:ce:4e:26:4b:65:af:2c:30:
d6:86:13:30:6e:dc:98:a4:82:cf:a2:81:cd:ee:55:74:9d:ee:
e1:55:b9:8e:c2:39:7a:4d:65:30:56:2b:6a:62:20:2a:ae:0f:
91:10:06:22:80:2e:b8:1f:41:3b:f7:8b:40:f0:5b:5f:23:4a:
62:2e:29:ef:48:c9:21:e9:a8:0a:20:5c:99:5c:09:71:5f:a7:
ad:c2:bb:34:7a:86:62:0c:bf:bc:ad:26:b0:32:7c:1f:42:52:
4a:10:4a:3a:57:52:08:75:51:6b:ce:93:e5:33:43:04:9f:2c:
0d:cd:1b:cf
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgIUPC3JeKkmwzrK/Gm2gswS8bimkAcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNTEwMTMwODAwMzdaFw0yNjEwMTIwODA1MzdaMDMxMTAvBgNV
BAMTKDRENTk4MTQ2MEFFOUM0MUM0MUNCNUNENzA1N0ZBQjRGMEExNzc5QjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfSF4Bi/503gbUtI3s6z+69zi5
A/RxRZks6Urjx8JSciVrQBnBzdgiO+Ag+XNA1sTMq8Lo/vZqz72TsOBa0qn3O4Q9
4JCYOXjePli8vWbnAzwjsy/jQN9MHn646ftW7mCpnkiH5++jhJB0YbdgmJlqkJMQ
ee5jmOavf8hEYxSnFcTFUjq7q537FRF3juu7Cbh77wIm4mbcYbbVB7hMuQCf9ZjO
nVl+gwRMMkHOBw9ER/GOWfX0TOe3wxLpzw/5yx6h138+g+0NC2vfb6xxYcGDF4tc
Au/LYajG44izRQhBDKyoEKs+kobrXkOz+Ptb6DwjzHlGbv6Bvfjv3ChLNgPfAgMB
AAGjggIiMIICHjAdBgNVHQ4EFgQUTVmBRgrpxBxBy1zXBX+rTwoXebMwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTM1NDAyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAW3we
AwQAXHHUAwQAX4YVAwQAslyRAwQAsl9IMA0GCSqGSIb3DQEBCwUAA4IBAQCDF44A
vpgcUymQR6XMhgRVhjWOYDFSc+w0E2wgKy+Wv57C9gxizTEbOht1DnVLbVYf74vu
euUUUO9wX2SBhb3l9qG/ObkXEr20bV+ZTvU3KTXh/MDxEAytqomMK7D7kklanQpa
tcHqCcWpr3JWe8LvC3TiE+SVfPpGMIE45FpG5MODO3va0IrNzk4mS2WvLDDWhhMw
btyYpILPooHN7lV0ne7hVbmOwjl6TWUwVitqYiAqrg+REAYigC64H0E794tA8Ftf
I0piLinvSMkh6agKIFyZXAlxX6etwrs0eoZiDL+8rSawMnwfQlJKEEo6V1IIdVFr
zpPlM0MEnywNzRvP
-----END CERTIFICATE-----
Generated at Sun Oct 19 19:35:36 2025 by rpki-client