Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: BzfTDQnpKf488AzPGFjxjxBn/xPUHBgTSk55kquqJb0=
Subject key identifier: 80:1D:E8:9A:92:FF:A3:A3:8B:C9:4F:14:7A:46:55:1D:91:C3:F4:9A
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 66E727C78565F4144582CC64157DFF7EBD549A37
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
Signing time: Mon 23 Mar 2026 14:44:58 +0000
ROA not before: Mon 23 Mar 2026 14:39:58 +0000
ROA not after: Mon 22 Mar 2027 14:44:58 +0000
asID: 31715
IP address blocks: 91.124.175.0/24 maxlen: 24
95.134.87.0/24 maxlen: 24
95.134.90.0/24 maxlen: 24
95.134.107.0/24 maxlen: 24
95.134.159.0/24 maxlen: 24
178.92.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 01:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:e7:27:c7:85:65:f4:14:45:82:cc:64:15:7d:ff:7e:bd:54:9a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Mar 23 14:39:58 2026 GMT
Not After : Mar 22 14:44:58 2027 GMT
Subject: CN=801DE89A92FFA3A38BC94F147A46551D91C3F49A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c2:dc:17:fb:6d:f6:fd:a5:af:2c:51:e4:57:
26:20:e3:17:9b:df:4a:c5:98:1f:fa:c5:a8:fc:0c:
f0:0a:71:6e:7e:10:8f:e4:65:7c:f6:47:33:42:ff:
70:73:ee:07:64:b1:d8:d8:70:17:e2:60:8e:7f:33:
05:7f:5b:7f:33:1d:ee:96:dc:52:8b:c6:f9:8a:85:
6c:c4:dc:9f:fd:ae:74:6a:27:67:29:45:16:07:5d:
78:a4:6c:f9:a5:9b:51:03:2d:75:d0:de:0c:66:9a:
09:92:6d:5d:c0:a6:2b:35:56:16:85:c2:b5:be:87:
05:5d:42:48:e8:00:86:d2:ac:c9:3b:8d:7c:e3:49:
43:bd:67:31:51:f9:f4:8e:13:72:d6:0c:62:5f:c6:
41:2f:ff:86:93:ba:eb:aa:50:23:c7:a5:4f:e8:69:
44:72:50:f1:46:75:7c:d5:0e:4e:d5:bd:57:10:ca:
35:a1:da:f9:2d:79:e8:ad:db:5b:82:56:06:ce:82:
ce:6d:44:59:66:34:09:a7:00:7d:1d:8f:a2:c4:f2:
11:3e:54:1c:46:3f:86:fc:ab:bc:9e:b1:23:9b:1a:
34:f3:8d:9f:72:79:06:e0:a4:c9:ee:d2:5e:f3:0c:
d8:5f:f3:a6:fe:74:e4:0d:b7:2c:e2:19:38:2c:fe:
b8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1D:E8:9A:92:FF:A3:A3:8B:C9:4F:14:7A:46:55:1D:91:C3:F4:9A
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.175.0/24
95.134.87.0/24
95.134.90.0/24
95.134.107.0/24
95.134.159.0/24
178.92.168.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:bb:98:fe:bf:2f:20:23:70:51:2d:89:5f:07:57:76:82:c3:
41:04:3a:69:d9:e9:ae:07:00:16:58:24:99:ff:f8:1b:8e:67:
3a:f4:05:5e:af:aa:1a:68:dc:1b:21:2a:88:9d:d1:5e:3c:e5:
fa:30:0e:02:b2:04:b8:4b:ce:cb:ad:f2:65:53:4f:9f:59:ce:
c8:ac:e8:00:b0:d0:9e:29:f3:93:78:2a:2f:e6:c5:03:05:13:
dc:09:19:13:ac:e4:0a:b9:fd:00:42:66:4c:3c:84:f7:20:c1:
3c:0d:cd:c4:64:d8:42:c8:f2:e7:f0:d4:e6:45:cb:c6:ee:98:
d6:66:ef:ea:5f:7f:39:07:a7:4b:62:93:ef:e0:b7:3a:c5:c6:
1b:3a:6a:ba:e8:42:96:b8:35:fd:bd:ca:b6:d7:e5:1e:2f:54:
d7:3b:1d:77:3a:af:43:66:2f:14:da:64:7f:6a:2b:c3:26:ec:
08:2e:64:7b:86:c1:c4:99:3b:42:00:dd:89:52:da:39:7c:95:
be:52:ec:b9:28:58:00:c9:86:5e:45:8a:69:84:4f:16:15:61:
a0:a7:ec:8d:69:fb:39:8a:09:b3:b5:71:90:6a:e3:99:66:7b:
c0:92:6a:4b:f6:be:bb:be:23:dc:da:4e:4b:7d:5e:c0:be:dc:
01:d0:c4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 05:33:54 2026 by rpki-client