Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
File: AS1239.roa (raw, json)
Hash identifier: 5D/MvBW4SMlOM7BcEM9RzhStbl8OcfNJiWPnb3YvdtA=
Subject key identifier: 04:B3:7E:45:C0:32:A1:AE:49:98:55:D6:C2:2E:C5:F4:D3:3A:A0:10
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 158E5C46368950E897770BB2BFE2EF70ECC6D9A4
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
Signing time: Tue 26 Aug 2025 18:54:58 +0000
ROA not before: Tue 26 Aug 2025 18:49:58 +0000
ROA not after: Tue 25 Aug 2026 18:54:58 +0000
asID: 1239
IP address blocks: 92.113.70.0/24 maxlen: 24
92.113.71.0/24 maxlen: 24
92.113.72.0/24 maxlen: 24
92.113.73.0/24 maxlen: 24
92.113.101.0/24 maxlen: 24
92.113.102.0/24 maxlen: 24
92.113.104.0/24 maxlen: 24
92.113.105.0/24 maxlen: 24
92.113.158.0/24 maxlen: 24
92.113.159.0/24 maxlen: 24
92.113.160.0/24 maxlen: 24
92.113.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Sep 2025 13:46:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:8e:5c:46:36:89:50:e8:97:77:0b:b2:bf:e2:ef:70:ec:c6:d9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Aug 26 18:49:58 2025 GMT
Not After : Aug 25 18:54:58 2026 GMT
Subject: CN=04B37E45C032A1AE499855D6C22EC5F4D33AA010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:25:29:f6:8e:1c:38:ad:19:28:49:f6:67:
d9:b5:19:66:19:95:70:74:67:cd:23:7b:2c:6c:08:
85:f9:b7:1a:50:41:a2:95:5c:96:26:b2:ee:d3:21:
35:af:eb:fa:61:af:7a:21:64:bc:11:86:4e:36:40:
45:9e:4e:ad:74:a1:7e:05:7c:e3:a6:76:2a:6c:fc:
01:0e:47:5d:90:e8:3b:5a:0e:f7:46:ac:67:f8:3f:
ac:80:1b:e5:6b:0f:0e:22:3e:30:b0:f1:6a:3f:bb:
c5:59:8b:38:e8:c5:3a:7a:f4:6b:0b:9f:5a:90:98:
2d:2e:85:57:0b:ba:d0:16:08:78:6b:b9:18:69:8d:
53:f3:99:1b:2c:a4:a8:7d:9a:12:4c:a2:76:ef:c1:
8f:5f:5d:6c:ca:9e:c7:57:ca:ee:b3:d4:d0:13:ea:
1b:eb:4e:bc:e0:87:b4:09:c3:90:a9:16:38:6d:17:
d5:bc:c5:6a:9c:63:7b:35:25:3d:90:15:cc:ee:db:
82:7b:fd:64:9e:24:1c:ad:69:c3:7e:2e:49:09:5e:
7e:d3:11:c0:c4:db:b7:43:64:94:4f:e1:d8:97:30:
53:a0:7f:c6:be:c4:96:52:49:53:ba:aa:8b:c0:3e:
d5:e9:11:b5:01:2c:5d:54:3a:93:de:b0:af:c3:3d:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B3:7E:45:C0:32:A1:AE:49:98:55:D6:C2:2E:C5:F4:D3:3A:A0:10
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS1239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.113.70.0-92.113.73.255
92.113.101.0-92.113.102.255
92.113.104.0/23
92.113.158.0-92.113.161.255
Signature Algorithm: sha256WithRSAEncryption
a2:81:8e:09:c6:c4:3b:fa:b8:64:cf:0b:9c:c8:03:db:5d:b7:
71:a5:08:c5:d4:22:84:87:70:e0:2e:00:ef:bf:1a:71:84:c2:
95:b5:6a:cc:18:31:e9:d4:91:06:27:f8:d6:cf:18:01:f7:fd:
08:d2:91:31:6d:14:42:7f:4e:c6:07:7f:dd:6a:21:4c:5c:94:
6c:f0:c4:dd:25:93:9e:fc:77:0c:21:fe:eb:bb:f0:70:51:00:
a1:28:e5:1e:18:df:48:85:d4:c7:d5:33:6d:68:cb:68:b5:ce:
34:ad:7d:04:82:f3:6c:ff:1d:27:20:bc:86:fa:e2:97:e6:5f:
9f:1c:48:53:c6:9f:3a:ec:16:80:0e:73:db:70:39:e3:53:95:
04:b0:f5:3b:f5:ed:3e:3d:e1:5b:2d:47:cf:83:6d:26:16:a0:
3f:5b:7c:24:b0:c3:80:2a:7a:71:dd:be:39:5b:4c:32:93:63:
0e:42:24:2c:b7:c7:5f:29:35:67:20:f0:ab:d8:98:da:bb:98:
71:b9:ac:fc:aa:6b:98:43:de:f2:f9:36:e0:12:ec:4d:f8:ff:
64:2f:76:7a:27:71:c3:a9:2f:32:d0:3e:2e:c1:31:73:30:bc:
ad:74:91:5f:54:61:b0:f9:75:83:af:ce:38:9a:4d:56:6c:9b:
e4:79:6c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 20:35:08 2025 by rpki-client