Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9232.roa
File: AS9232.roa (raw, json)
Hash identifier: +KmJQS/mhWXUIei6sOJQxhfBgKleX5G142dsYcoRAQE=
Subject key identifier: 91:89:6F:D2:38:2A:75:0C:E7:04:09:44:49:77:9A:8A:B1:32:E6:E1
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 7C67F164CBBC409CE2C18DC17E231AEDE7B1731F
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9232.roa
Signing time: Sun 13 Jul 2025 00:00:11 +0000
ROA not before: Sat 12 Jul 2025 23:55:11 +0000
ROA not after: Sun 12 Jul 2026 00:00:11 +0000
asID: 9232
IP address blocks: 155.117.0.0/24 maxlen: 24
155.117.102.0/24 maxlen: 24
155.117.185.0/24 maxlen: 24
155.117.188.0/24 maxlen: 24
162.141.121.0/24 maxlen: 24
167.148.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 13:47:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:67:f1:64:cb:bc:40:9c:e2:c1:8d:c1:7e:23:1a:ed:e7:b1:73:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jul 12 23:55:11 2025 GMT
Not After : Jul 12 00:00:11 2026 GMT
Subject: CN=91896FD2382A750CE704094449779A8AB132E6E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:aa:35:2e:e2:4c:ac:03:a2:19:f5:28:89:01:
f2:91:f6:68:19:a0:70:47:bc:d7:83:97:af:ea:aa:
32:82:9b:98:e7:89:f4:54:7d:39:d1:10:d1:d8:46:
94:f2:fa:ae:0d:74:62:ba:d0:b6:b2:4a:03:40:b2:
b2:bd:2e:63:8a:58:a8:54:b5:9e:98:cc:c5:d5:18:
c3:45:b3:5c:d3:f9:4d:0c:75:b9:15:42:81:14:7b:
36:da:95:03:a1:fc:52:dd:6f:6e:f0:9d:6a:61:1c:
23:da:dd:aa:22:e3:ce:3a:68:c8:3c:c5:91:ce:13:
ed:e7:6a:af:6c:b3:de:55:19:b0:5c:0d:97:e5:7d:
db:69:0d:9e:48:98:51:a7:d6:15:59:19:6d:c6:e2:
ed:cb:e2:6e:80:99:c3:5e:a0:76:cb:0a:82:55:3d:
d6:ed:db:4c:b2:f3:fb:b5:a5:a1:23:4c:00:6a:19:
66:c5:87:af:77:57:d9:81:db:67:99:99:ce:18:05:
09:09:70:f8:48:6d:84:c5:ce:73:0d:35:cc:b8:15:
91:c7:44:92:8d:31:b0:6c:13:6f:5b:ff:33:88:21:
42:24:4b:50:de:45:01:a3:2b:77:6a:8c:67:85:2d:
fa:f7:c5:f1:8c:20:13:6d:9f:01:bb:19:98:a6:39:
a8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:89:6F:D2:38:2A:75:0C:E7:04:09:44:49:77:9A:8A:B1:32:E6:E1
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS9232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.117.0.0/24
155.117.102.0/24
155.117.185.0/24
155.117.188.0/24
162.141.121.0/24
167.148.210.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ce:99:20:2f:44:fe:3d:5d:14:1c:c6:b1:c6:da:14:35:f1:
2a:5a:07:fa:a1:1d:da:5e:d0:07:42:33:46:90:ff:a5:91:08:
dd:93:c1:60:03:64:89:e6:22:87:19:ea:9b:f8:63:ca:13:33:
c3:99:55:22:df:e7:bb:a4:fd:30:8e:4a:29:7f:a6:c0:e9:12:
11:98:6e:47:03:8b:8c:97:aa:a6:98:8e:ee:d1:21:62:28:e5:
a2:ea:55:bf:fd:f2:27:a4:c2:1b:16:c1:23:58:84:fe:04:1a:
74:00:c4:79:64:61:97:ef:7c:2c:9d:ae:7c:5e:81:05:1e:24:
b5:9f:aa:b6:93:0d:bb:db:0b:ed:74:7f:76:fb:94:5d:17:5b:
b1:f0:b9:3f:bc:fb:de:c5:d0:31:60:7d:1c:e8:18:5d:24:15:
72:82:01:2f:0f:fc:13:c9:4f:20:a6:59:5d:c3:fb:62:2e:43:
5b:ad:23:60:45:b2:4f:d9:f9:bd:40:fe:e0:81:ff:93:12:3e:
2e:b0:f1:eb:9b:a7:f7:01:e8:e4:8b:1a:3d:21:e4:79:95:cc:
3c:ec:f6:ec:07:c7:d1:a6:de:63:96:3a:fd:9c:f9:77:41:3a:
38:15:1d:15:fe:d2:59:28:b9:2f:f4:6b:a0:9e:5a:40:77:65:
78:31:1e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 18:56:54 2025 by rpki-client