Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: zxCMVxCAVJltZ7uwUBpUaeUcRcrywMee+wGfViJ+zb4=
Subject key identifier: 83:19:B7:64:40:02:2A:D4:24:E8:88:E1:BB:19:79:95:D0:96:B4:47
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 363D210A242057D0D95B88E1224345302182591C
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
Signing time: Tue 24 Mar 2026 13:11:01 +0000
ROA not before: Tue 24 Mar 2026 13:06:01 +0000
ROA not after: Tue 23 Mar 2027 13:11:01 +0000
asID: 31715
IP address blocks: 91.124.175.0/24 maxlen: 24
95.134.87.0/24 maxlen: 24
95.134.90.0/24 maxlen: 24
95.134.107.0/24 maxlen: 24
178.92.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:3d:21:0a:24:20:57:d0:d9:5b:88:e1:22:43:45:30:21:82:59:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 24 13:06:01 2026 GMT
Not After : Mar 23 13:11:01 2027 GMT
Subject: CN=8319B76440022AD424E888E1BB197995D096B447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:41:d6:cf:ca:fc:a6:71:a6:40:f2:95:c8:
fb:92:4b:bc:1f:e6:39:6b:d6:e0:52:88:36:41:1a:
1a:aa:b3:b5:81:ed:76:4c:9f:89:eb:62:c8:d6:49:
52:5d:99:48:6c:61:00:0d:b4:0b:ec:d2:fb:12:53:
4b:5e:39:81:d6:b2:85:82:ad:93:9e:d2:e1:a3:84:
49:65:7e:a0:03:c7:17:2e:70:64:d9:f3:54:f4:40:
d6:d8:56:ed:61:fc:10:18:cb:c0:47:f7:f0:82:c1:
a4:58:6d:4e:87:d4:b5:b5:57:17:d0:81:fc:dd:55:
fa:40:fa:fa:cb:fc:11:b0:ad:4b:99:05:bf:de:5d:
cd:c4:41:d3:b4:a8:d6:25:69:41:40:38:86:8b:df:
94:e0:68:2a:b7:9a:ad:ab:45:75:7e:68:9b:34:cf:
8f:dc:d9:c6:1e:56:ad:88:76:e7:f4:d4:10:1f:e9:
3b:72:47:6d:ec:3d:ca:a1:d1:88:55:a4:08:b6:2a:
fe:08:bf:45:27:8b:5f:f9:9f:84:12:18:ef:6d:1e:
c4:02:60:1d:2d:f0:fa:6a:0a:68:c9:13:a7:76:2f:
26:71:ed:2d:1c:4a:af:66:31:71:24:99:67:ca:bb:
78:35:23:08:67:f7:76:a8:13:88:b9:27:ac:10:b3:
9c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:19:B7:64:40:02:2A:D4:24:E8:88:E1:BB:19:79:95:D0:96:B4:47
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.175.0/24
95.134.87.0/24
95.134.90.0/24
95.134.107.0/24
178.92.168.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5c:97:b7:66:b5:8e:00:47:30:5c:62:cd:d9:4c:24:32:8e:
b8:05:ab:71:a0:db:a4:93:6c:e6:02:ec:00:3e:19:e3:47:54:
c9:b7:e4:a3:e9:3e:41:f6:c8:36:b3:4e:67:39:c1:fd:fb:a7:
da:82:17:e5:e9:b5:87:df:03:8a:38:13:a8:49:37:6d:81:da:
d7:1a:13:43:f1:95:a7:1d:59:f5:09:6e:32:57:44:3e:82:a6:
70:89:1c:ec:97:0b:29:d2:0d:1e:49:d6:25:30:9b:9e:6c:ae:
ce:83:0b:33:03:fd:35:6f:f3:b4:38:5a:4a:6e:b6:e5:46:38:
0c:e1:7e:07:5b:8c:13:af:06:00:82:c3:97:d2:f1:9e:85:54:
45:1e:63:44:9e:80:65:98:b6:b7:3f:15:b9:6e:3b:39:9a:12:
56:8a:8c:db:a7:f7:af:de:71:cf:8b:ac:6d:bb:45:22:87:27:
dd:b5:f8:86:89:95:b3:3c:d2:e2:1d:9a:6e:15:57:af:9d:5a:
4d:75:3d:43:23:30:2c:cd:3f:e5:5f:87:43:11:8f:0a:24:ca:
12:ba:2b:cc:d7:78:10:7a:81:9f:46:60:8f:0b:cc:9f:ff:b1:
98:11:7a:c3:18:ad:34:0a:55:b8:bc:7e:c5:26:c2:b6:9f:95:
0a:d8:3b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:48:22 2026 by rpki-client