Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS205733.roa
File: AS205733.roa (raw, json)
Hash identifier: 2QjBqf/wgKZuNbyG1w8dUQon9JrmRbD31u+EnLvJO5E=
Subject key identifier: 9C:E5:BC:D5:E8:BF:05:14:FE:F8:CD:1E:0F:57:03:70:FB:75:F9:72
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 603E05A791D38D69DB76A4A33F427118F075923C
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS205733.roa
Signing time: Thu 16 Oct 2025 16:35:00 +0000
ROA not before: Thu 16 Oct 2025 16:30:00 +0000
ROA not after: Thu 15 Oct 2026 16:35:00 +0000
asID: 205733
IP address blocks: 91.124.37.0/24 maxlen: 24
92.112.71.0/24 maxlen: 24
95.134.70.0/24 maxlen: 24
95.135.173.0/24 maxlen: 24
95.135.228.0/24 maxlen: 24
178.92.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Oct 2025 15:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:3e:05:a7:91:d3:8d:69:db:76:a4:a3:3f:42:71:18:f0:75:92:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 16 16:30:00 2025 GMT
Not After : Oct 15 16:35:00 2026 GMT
Subject: CN=9CE5BCD5E8BF0514FEF8CD1E0F570370FB75F972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:78:f0:11:6d:81:1e:69:36:42:d0:87:14:40:
d7:2c:6b:03:c5:a3:9b:0a:fb:fd:16:8e:c4:b3:56:
11:c3:22:2d:af:5b:97:f9:9e:bd:13:f6:d2:3c:e0:
d8:35:5c:52:24:97:42:18:94:7a:5a:17:01:a4:49:
97:67:0e:ad:46:0a:df:e8:fb:d2:89:87:1b:4f:fe:
d4:a5:1f:61:14:ac:19:6a:f2:f6:66:7f:de:c5:f3:
25:df:24:2b:ba:85:22:b4:79:ac:ac:3b:01:79:66:
e8:93:de:64:ef:93:9a:26:53:39:47:25:ed:a3:f7:
f1:ed:87:2b:08:22:a5:9a:d7:cc:a0:fd:f5:a4:f3:
bf:b9:9a:73:b3:3c:a9:07:f4:b4:fc:64:0a:11:20:
f2:94:79:7d:13:a1:14:4f:ad:7b:09:80:7e:25:9e:
3e:15:b8:74:32:a1:62:c6:9a:07:75:69:21:db:03:
25:34:dd:61:6d:78:38:12:22:da:99:55:2b:f9:30:
d0:d0:60:77:ed:7d:9e:cf:c6:59:72:4d:c4:90:8d:
ba:e0:77:07:f2:0d:44:56:34:b8:3d:f7:b5:71:79:
b4:bc:7d:36:c0:2a:de:00:ec:c4:89:d4:0c:01:cf:
07:15:c4:0d:bb:51:2b:06:96:d9:a2:64:72:94:cc:
c2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E5:BC:D5:E8:BF:05:14:FE:F8:CD:1E:0F:57:03:70:FB:75:F9:72
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS205733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.37.0/24
92.112.71.0/24
95.134.70.0/24
95.135.173.0/24
95.135.228.0/24
178.92.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:99:82:d3:f8:48:42:fe:6f:7f:d1:c3:e0:ba:04:50:bc:53:
50:a9:bd:b2:25:8c:d3:66:04:2e:5b:84:ca:9a:cf:96:2c:9d:
41:2a:a3:65:47:cb:ef:81:c5:1e:59:6d:9d:6a:56:65:17:7c:
56:4d:bb:35:36:f0:01:89:ca:1f:2d:29:55:2b:51:6d:78:e2:
77:21:91:c8:7d:f5:80:de:87:10:e9:6d:90:5e:26:d4:28:f2:
08:68:e8:af:eb:31:eb:60:5c:cf:31:49:bb:e9:50:d0:de:e9:
bd:7f:47:ab:c4:19:2f:c1:b5:b1:ad:15:6b:95:33:cb:dc:fe:
50:2a:0c:4b:12:9c:2a:87:2a:00:cc:f9:76:83:d7:48:06:a1:
72:94:15:61:7d:4e:1d:e2:be:7a:77:ea:67:c3:f9:02:1c:e1:
3c:d3:e0:29:b1:85:49:15:36:4c:d2:41:4a:ac:7e:56:d2:1d:
3f:e2:80:e2:8c:f1:97:99:fd:2f:a2:f7:52:4d:88:10:b4:10:
5e:18:9a:a1:8a:23:44:39:ad:cd:c4:75:b1:44:51:65:af:ce:
87:d0:dd:4c:a6:15:14:12:74:21:7e:9c:3e:a9:57:14:95:16:
ea:54:64:ee:37:a6:97:38:24:ae:e6:df:e9:d1:16:20:6c:54:
f9:9c:e6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 16 21:33:10 2025 by rpki-client