Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
File: AS9232.roa (raw, json)
Hash identifier: RG4cDZX+57+Cuy1f1yVSwxDMIr0BTZEydt3H0J4I9+w=
Subject key identifier: 95:53:02:52:74:FE:03:CC:B0:9D:4C:80:06:89:10:57:5E:7D:99:DA
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 69B8C573EAA8093DEC325744C3F587E6AF2C05F9
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
Signing time: Wed 17 Sep 2025 00:01:48 +0000
ROA not before: Tue 16 Sep 2025 23:56:48 +0000
ROA not after: Wed 16 Sep 2026 00:01:48 +0000
asID: 9232
IP address blocks: 178.92.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:b8:c5:73:ea:a8:09:3d:ec:32:57:44:c3:f5:87:e6:af:2c:05:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 16 23:56:48 2025 GMT
Not After : Sep 16 00:01:48 2026 GMT
Subject: CN=9553025274FE03CCB09D4C80068910575E7D99DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:af:bd:0a:b2:4b:ed:46:a6:fa:44:41:37:
99:d4:2a:a1:52:84:8f:46:40:fa:d1:80:8c:32:0d:
2a:77:05:ad:c5:71:6e:62:41:d5:07:ae:b9:f0:94:
04:cb:de:46:2e:99:71:f3:cb:19:40:25:b1:35:22:
8c:14:cd:4f:a9:a3:c4:76:3e:2c:48:d7:ee:59:91:
d0:de:ee:98:bc:34:27:10:43:55:1a:d4:01:36:52:
bc:d0:12:44:ab:af:05:00:05:ed:5e:27:6c:2f:ba:
2f:11:a7:3d:31:be:fe:05:fd:cc:94:c7:0a:49:49:
f2:cd:94:7b:f3:8c:00:e9:ab:5f:cb:ea:89:b6:91:
e1:b1:71:ea:8c:87:42:b6:d2:9b:3c:ef:0a:ae:c7:
60:5d:b4:b4:0b:01:9c:64:7a:0d:93:0e:ac:12:f5:
53:88:6a:95:c2:02:96:59:91:8c:e4:f2:8a:47:be:
f0:d9:9e:e6:b7:80:c5:92:ca:97:cd:d8:84:6e:80:
a1:15:01:04:c5:72:f3:d1:cd:93:9d:5c:2d:29:ee:
bb:e0:22:15:47:76:49:eb:b5:b6:28:7f:48:5f:af:
7f:e2:d2:4b:1e:b5:55:86:41:ed:61:bc:4c:9a:1e:
cb:cf:2f:d7:ee:6f:99:17:3e:4f:7e:1b:1a:57:6b:
ab:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:53:02:52:74:FE:03:CC:B0:9D:4C:80:06:89:10:57:5E:7D:99:DA
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.92.101.0/24
Signature Algorithm: sha256WithRSAEncryption
01:fe:6e:18:0f:ea:39:d9:f0:ff:08:3c:a4:31:bf:e1:78:81:
f1:0a:9c:b9:30:91:63:dc:50:96:0c:5f:51:b1:1a:93:03:4a:
ea:52:f5:ff:51:b3:17:34:d9:1b:b0:83:88:cf:da:60:d0:cf:
b3:ad:80:fa:a5:3e:be:36:68:d1:a1:2c:3a:b1:40:81:8c:d4:
52:2a:49:46:74:8b:71:57:4d:3a:d6:57:6b:ff:79:48:8d:62:
f6:73:13:84:d4:f7:5e:53:3e:4b:1a:e2:50:6e:18:76:ea:5d:
31:61:a2:98:59:fb:0e:a9:57:78:ac:57:a0:4d:ea:cc:83:7e:
03:d3:f7:3e:e7:52:08:39:1c:8c:06:a0:ee:5c:4e:69:be:10:
9c:ef:0d:04:9b:d9:7b:6e:85:43:83:56:3b:79:8e:2c:cb:75:
b1:63:bf:9f:7e:5d:7e:f7:4b:65:bf:08:f6:4b:6e:c7:2f:74:
37:60:69:ea:be:ec:e6:f4:e2:57:9a:fc:79:11:48:56:17:fd:
1b:2e:38:e7:fb:7d:9a:8c:f7:1a:9e:01:be:0d:4d:55:f9:6e:
9b:58:7d:9f:1f:a3:74:9f:48:e7:d9:eb:58:48:7d:a2:aa:44:
8b:f3:3f:95:b2:14:54:93:6a:6b:8a:db:61:8f:ce:e5:20:25:
ca:e0:7a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 19:33:33 2025 by rpki-client