Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
File: AS9232.roa (raw, json)
Hash identifier: n3Uxj5BPdHX2YskJicLlLGCQiBs5PoFi/cRlh1z0Jys=
Subject key identifier: FA:35:A2:DC:C6:29:94:11:68:2D:8D:26:A4:D5:8A:4C:EF:02:B0:42
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 31CE8714BCAA252D48D24DC8E8939181923B2F9A
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
Signing time: Tue 24 Jun 2025 06:29:06 +0000
ROA not before: Tue 24 Jun 2025 06:24:06 +0000
ROA not after: Tue 23 Jun 2026 06:29:06 +0000
asID: 9232
IP address blocks: 91.124.34.0/24 maxlen: 24
91.124.145.0/24 maxlen: 24
91.124.168.0/24 maxlen: 24
91.124.172.0/24 maxlen: 24
91.124.175.0/24 maxlen: 24
92.113.10.0/24 maxlen: 24
92.113.60.0/24 maxlen: 24
92.113.100.0/24 maxlen: 24
95.134.112.0/24 maxlen: 24
95.134.122.0/24 maxlen: 24
95.134.132.0/24 maxlen: 24
95.134.180.0/24 maxlen: 24
95.134.192.0/24 maxlen: 24
178.92.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ce:87:14:bc:aa:25:2d:48:d2:4d:c8:e8:93:91:81:92:3b:2f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 24 06:24:06 2025 GMT
Not After : Jun 23 06:29:06 2026 GMT
Subject: CN=FA35A2DCC6299411682D8D26A4D58A4CEF02B042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0f:7e:7b:4d:b0:bf:b2:7b:6e:db:81:f2:e1:
6c:72:e4:df:99:0c:8b:19:5a:b0:63:fb:90:dc:fb:
40:d6:6f:6f:f2:a2:17:dd:a3:05:6f:b1:58:ea:ff:
a1:7e:e5:27:57:2f:8f:5b:9a:cc:7e:4d:d4:0f:2b:
62:67:77:2c:22:2f:65:87:ae:82:1d:12:ac:76:80:
0e:52:bf:52:60:16:fe:db:24:27:5a:cd:01:04:f7:
67:67:30:f1:11:7b:91:97:02:76:b0:69:ed:4f:6c:
63:ce:ba:59:f9:63:2a:9b:20:6e:01:17:56:48:83:
be:07:c5:c7:87:b4:0b:ef:f2:7c:14:ab:88:ca:a6:
6f:9d:40:8b:59:3b:da:13:ba:1a:cf:a0:fb:be:ac:
aa:ef:d0:be:4a:21:2f:27:29:c1:98:73:32:79:1e:
e0:c2:b1:eb:1a:12:56:fd:72:9f:d6:ae:c5:c2:db:
e5:d0:bc:61:71:82:e4:a8:c9:5c:6e:d2:c5:a5:d7:
0c:46:c4:c2:d8:3e:76:96:18:10:33:a9:7c:8d:2a:
04:d5:1d:28:74:d5:2e:6a:48:3a:b2:af:7a:3b:90:
fa:d3:b3:a5:67:51:a7:56:30:bf:27:46:a2:2e:97:
a6:ca:fa:e8:e8:8d:86:46:11:7d:a7:95:67:6e:84:
b3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:35:A2:DC:C6:29:94:11:68:2D:8D:26:A4:D5:8A:4C:EF:02:B0:42
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS9232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.34.0/24
91.124.145.0/24
91.124.168.0/24
91.124.172.0/24
91.124.175.0/24
92.113.10.0/24
92.113.60.0/24
92.113.100.0/24
95.134.112.0/24
95.134.122.0/24
95.134.132.0/24
95.134.180.0/24
95.134.192.0/24
178.92.101.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:22:a7:e6:37:e3:13:74:c8:ba:67:58:ad:6d:ad:f1:61:28:
67:6e:fe:06:a5:6d:86:e2:52:46:14:49:45:28:9f:18:9b:3f:
fd:c0:56:10:95:63:d7:b2:ec:07:43:d5:bf:a6:f9:57:1b:5c:
d9:3f:86:06:ce:e5:9c:46:52:f8:55:71:70:d0:e6:22:7a:21:
f0:b7:45:c1:b5:31:5e:ef:78:94:31:cc:9f:b0:cf:01:66:ce:
a1:87:73:f1:1d:60:29:4f:ec:18:e1:b8:c0:b1:4e:a7:99:26:
5c:08:87:3f:25:c2:3c:b2:e0:9a:21:ba:56:6a:b8:e2:77:64:
65:e3:4f:31:fd:96:4d:5a:f2:32:d9:8b:39:09:a7:62:48:ea:
22:c2:95:a9:93:36:0e:f6:0f:76:f5:47:53:a5:86:e5:1a:cb:
ab:7c:95:47:ad:5d:61:a2:6a:18:ed:a8:ee:66:9d:5e:10:a9:
e3:67:94:b7:d1:40:20:28:e0:7e:93:98:6e:85:8c:c3:69:17:
6b:da:c0:56:a8:b7:9e:26:61:a0:81:3f:d2:36:3c:4f:99:4f:
cb:05:4b:a9:11:4e:db:ce:bb:0b:90:06:30:f3:fb:20:f3:1b:
91:a0:73:6c:86:40:ff:76:77:e4:f4:09:15:46:64:36:a4:16:
60:76:37:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 04:53:54 2025 by rpki-client