Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135391.roa
File: AS135391.roa (raw, json)
Hash identifier: 0CBTBOpnmdHyp0H4pXuhHJit9Vmp4BqsOCG4U5JmDos=
Subject key identifier: FC:10:A3:5A:B9:3B:18:F1:AB:80:92:03:DC:6C:9E:3B:03:8D:17:BC
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 6D33BDD20EA011633F7B336AF6F076BC4B4ECF11
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135391.roa
Signing time: Mon 22 Sep 2025 12:34:50 +0000
ROA not before: Mon 22 Sep 2025 12:29:50 +0000
ROA not after: Mon 21 Sep 2026 12:34:50 +0000
asID: 135391
IP address blocks: 178.92.143.0/24 maxlen: 24
178.92.244.0/24 maxlen: 24
178.93.196.0/24 maxlen: 24
178.94.200.0/24 maxlen: 24
178.94.251.0/24 maxlen: 24
178.95.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Oct 2025 15:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:33:bd:d2:0e:a0:11:63:3f:7b:33:6a:f6:f0:76:bc:4b:4e:cf:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Sep 22 12:29:50 2025 GMT
Not After : Sep 21 12:34:50 2026 GMT
Subject: CN=FC10A35AB93B18F1AB809203DC6C9E3B038D17BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2f:3b:cd:62:d5:7d:0e:61:9d:b7:c4:86:31:
a2:21:32:0a:23:64:88:a8:a4:19:21:fe:11:a1:43:
ac:ea:6e:2c:82:a6:aa:c0:c0:5c:53:42:d0:27:42:
60:5d:00:a6:50:d7:7e:d5:18:2a:69:63:18:70:ea:
d6:5c:62:d2:b1:f6:e3:34:75:49:9e:94:64:83:89:
6b:50:ef:e8:e0:33:60:09:9c:d9:46:78:b1:b7:c8:
f2:e0:15:0b:17:e8:c8:fa:e4:88:ec:78:f3:bc:5c:
3c:65:09:ef:9e:9a:00:42:e9:c4:02:37:cf:f8:d5:
57:8f:e7:04:d4:21:8b:2e:aa:00:95:27:70:b5:7e:
c0:5c:cc:8f:83:ef:a8:18:2a:8b:9e:9d:ed:6e:99:
5b:e2:f8:98:48:44:2b:af:75:a5:bb:18:64:68:06:
1d:29:33:98:84:ea:d0:27:e2:89:ff:38:9c:06:ef:
d9:b9:2c:80:97:7a:23:51:04:77:0e:d0:25:86:0e:
3c:70:1c:96:e1:d9:db:0e:7f:44:f7:60:f9:8f:c7:
bd:2f:cc:7a:a3:63:c5:32:45:ec:45:62:5a:45:e2:
b9:5f:27:79:64:61:e3:13:c3:8f:eb:f8:b0:1a:29:
15:d5:cf:84:53:82:1c:6e:7d:fa:1f:a7:33:da:7f:
90:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:10:A3:5A:B9:3B:18:F1:AB:80:92:03:DC:6C:9E:3B:03:8D:17:BC
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS135391.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.92.143.0/24
178.92.244.0/24
178.93.196.0/24
178.94.200.0/24
178.94.251.0/24
178.95.162.0/24
Signature Algorithm: sha256WithRSAEncryption
86:64:fc:b4:8f:32:87:59:e8:7d:20:c2:17:5f:58:78:6a:00:
88:20:73:0c:2a:9c:04:32:7d:db:ef:3a:42:a4:21:70:b0:8e:
5e:21:0f:19:c4:e5:37:66:ad:e5:3a:89:4c:84:b1:56:2c:e5:
ce:2a:07:21:13:be:e3:d0:61:c5:3f:80:70:bd:ef:f4:67:2a:
23:9b:13:1a:13:eb:51:76:4e:c1:12:d3:96:c5:2b:db:f4:06:
f6:a3:f4:31:f6:73:50:ef:28:13:53:5b:b9:7d:90:c5:82:ac:
60:92:79:8e:a2:ab:f1:1a:6d:f3:3a:f4:cf:7c:33:4c:fc:8e:
42:85:83:ed:86:48:4b:26:6f:c1:0c:ea:17:66:95:cb:9c:a1:
84:f9:04:f0:c0:82:7f:18:f2:0f:e0:3e:eb:f1:a9:0f:b0:34:
00:42:da:5a:ed:2f:77:ef:05:c7:aa:ec:92:02:61:20:06:a2:
ed:c6:06:9f:63:39:c2:91:c6:e8:c0:ce:c6:e3:a6:33:cf:5e:
b3:14:1c:1d:f6:d1:66:91:19:5e:95:aa:d2:a5:e3:69:eb:3b:
ff:fb:58:f3:08:77:4f:d6:8e:8b:e1:8a:20:21:34:2e:75:7c:
dc:3a:4b:b3:13:5a:7b:77:34:e5:6c:0a:e6:86:59:42:78:de:
4d:23:ea:29
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgIUbTO90g6gEWM/ezNq9vB2vEtOzxEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNTA5MjIxMjI5NTBaFw0yNjA5MjExMjM0NTBaMDMxMTAvBgNV
BAMTKEZDMTBBMzVBQjkzQjE4RjFBQjgwOTIwM0RDNkM5RTNCMDM4RDE3QkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDALzvNYtV9DmGdt8SGMaIhMgoj
ZIiopBkh/hGhQ6zqbiyCpqrAwFxTQtAnQmBdAKZQ137VGCppYxhw6tZcYtKx9uM0
dUmelGSDiWtQ7+jgM2AJnNlGeLG3yPLgFQsX6Mj65IjsePO8XDxlCe+emgBC6cQC
N8/41VeP5wTUIYsuqgCVJ3C1fsBczI+D76gYKouene1umVvi+JhIRCuvdaW7GGRo
Bh0pM5iE6tAn4on/OJwG79m5LICXeiNRBHcO0CWGDjxwHJbh2dsOf0T3YPmPx70v
zHqjY8UyRexFYlpF4rlfJ3lkYeMTw4/r+LAaKRXVz4RTghxuffofpzPaf5DjAgMB
AAGjggIoMIICJDAdBgNVHQ4EFgQU/BCjWrk7GPGrgJID3GyeOwONF7wwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMTM1MzkxLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAslyP
AwQAslz0AwQAsl3EAwQAsl7IAwQAsl77AwQAsl+iMA0GCSqGSIb3DQEBCwUAA4IB
AQCGZPy0jzKHWeh9IMIXX1h4agCIIHMMKpwEMn3b7zpCpCFwsI5eIQ8ZxOU3Zq3l
OolMhLFWLOXOKgchE77j0GHFP4Bwve/0ZyojmxMaE+tRdk7BEtOWxSvb9Ab2o/Qx
9nNQ7ygTU1u5fZDFgqxgknmOoqvxGm3zOvTPfDNM/I5ChYPthkhLJm/BDOoXZpXL
nKGE+QTwwIJ/GPIP4D7r8akPsDQAQtpa7S937wXHquySAmEgBqLtxgafYznCkcbo
wM7G46Yzz16zFBwd9tFmkRlelarSpeNp6zv/+1jzCHdP1o6L4YogITQudXzcOkuz
E1p7dzTlbArmhllCeN5NI+op
-----END CERTIFICATE-----
Generated at Thu Oct 16 21:33:11 2025 by rpki-client