Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: iTjRwPCXwvE+ToKrrhV7DfourLcxW6eB/VxLJGc8QlM=
Subject key identifier: A4:4F:FC:3E:42:D2:A9:FF:9C:75:E7:54:17:88:77:CB:37:B4:09:22
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 149FDC3B1F3786A6E9AED2142D233255DA3189AF
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
Signing time: Mon 13 Oct 2025 08:08:17 +0000
ROA not before: Mon 13 Oct 2025 08:03:17 +0000
ROA not after: Mon 12 Oct 2026 08:08:17 +0000
asID: 31715
IP address blocks: 91.124.175.0/24 maxlen: 24
95.134.99.0/24 maxlen: 24
178.92.168.0/24 maxlen: 24
178.95.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:9f:dc:3b:1f:37:86:a6:e9:ae:d2:14:2d:23:32:55:da:31:89:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 13 08:03:17 2025 GMT
Not After : Oct 12 08:08:17 2026 GMT
Subject: CN=A44FFC3E42D2A9FF9C75E754178877CB37B40922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:28:f6:38:92:50:59:0f:cc:8f:bd:80:64:19:
bc:45:68:0f:ed:db:e1:70:28:a0:4e:8c:6b:25:b5:
71:0a:d8:eb:f7:aa:e4:7a:e5:a3:a5:0d:1d:fa:0b:
f1:6a:ff:b1:bc:37:3b:f7:65:5d:91:a8:99:61:72:
7f:ba:19:12:2a:2a:93:5b:a5:82:c8:a3:6a:66:ba:
79:53:75:73:b0:8b:e6:73:57:7e:8a:89:18:7b:3b:
4d:4f:de:72:88:9a:90:ce:e1:b4:e3:08:11:45:bf:
9f:91:5f:d4:c6:a2:75:d0:cb:55:ec:45:b7:09:82:
3a:4f:6a:9b:58:6a:03:71:98:46:7b:ba:32:1e:52:
27:86:ea:97:6e:89:3e:97:ec:c1:29:5e:f8:9e:e4:
a9:76:dd:31:b8:42:37:4c:d2:eb:f7:05:4b:98:45:
05:cc:45:1d:91:18:6b:41:f8:78:69:dc:54:69:48:
a6:f0:b4:57:54:20:e9:c7:99:ac:3e:c4:ff:5b:94:
ea:77:cf:ee:2b:76:55:7e:ce:3e:1f:06:2a:1f:79:
ae:f9:49:3e:c4:ce:92:c4:3c:f4:2d:91:bf:df:7d:
83:9e:a8:6e:42:13:d8:7b:8a:30:18:a3:af:1a:3e:
16:57:7a:ac:5d:cf:8b:8f:ab:f4:21:92:7f:e5:0b:
bc:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4F:FC:3E:42:D2:A9:FF:9C:75:E7:54:17:88:77:CB:37:B4:09:22
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.175.0/24
95.134.99.0/24
178.92.168.0/24
178.95.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:02:b4:46:6c:c0:a4:f0:63:68:bd:1b:39:06:e1:7f:1b:44:
83:17:bc:b8:e8:85:ef:75:a9:2f:6b:94:70:09:ec:2a:b0:5b:
10:fe:cd:f8:46:7b:55:14:ab:bd:69:a8:25:04:be:93:9a:48:
9e:08:65:64:7e:34:e8:30:09:9c:eb:44:9e:42:c8:6a:15:5c:
0a:98:77:f5:2a:7b:c7:02:53:8a:85:3c:7c:af:03:d6:ef:9c:
a8:54:9c:0d:19:7e:78:b2:b0:d1:9d:25:7f:dc:fe:71:b4:10:
02:6a:8e:eb:04:75:43:db:aa:76:67:04:3f:69:48:7d:e5:be:
e0:d0:a5:e0:8b:54:24:12:34:7e:a8:94:a1:be:b6:e5:c2:36:
59:2b:40:05:65:dd:2f:d5:10:75:e4:f5:2d:1e:29:72:c6:e1:
74:db:6d:dc:40:f1:61:e8:7b:9c:5c:d9:83:44:d9:aa:5b:8e:
61:f9:a3:a3:ca:e0:4f:1d:7b:fd:5c:8f:01:87:5c:27:e6:cd:
8d:f6:c5:cc:da:4c:60:10:8e:32:39:ee:96:01:c3:86:76:dd:
bc:04:cf:1a:b3:56:a5:c8:18:03:f2:85:fc:7b:45:df:d1:e6:
47:18:d2:b8:23:96:49:a8:f4:c6:b6:e6:11:a3:02:0d:7f:bb:
d0:c3:15:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:33:11 2025 by rpki-client