
Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa
File: AS395374.roa (raw, json)
Hash identifier: 0r82ki13T6A6rn7aJFEq0vYViAcOWojwrrnTkDj4t5c=
Subject key identifier: 10:34:40:F4:A2:44:19:F6:5A:0F:97:27:59:B9:E2:73:13:15:C9:3B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 7816CAEB3FEA0DBFEB8398C6D3D210CC20F4EF32
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa
Signing time: Mon 30 Jun 2025 10:07:27 +0000
ROA not before: Mon 30 Jun 2025 10:02:27 +0000
ROA not after: Mon 29 Jun 2026 10:07:27 +0000
asID: 395374
IP address blocks: 95.134.121.0/24 maxlen: 24
178.93.128.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 01:10:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:16:ca:eb:3f:ea:0d:bf:eb:83:98:c6:d3:d2:10:cc:20:f4:ef:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 30 10:02:27 2025 GMT
Not After : Jun 29 10:07:27 2026 GMT
Subject: CN=103440F4A24419F65A0F972759B9E2731315C93B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:77:91:45:c7:66:12:ea:fe:da:ab:a1:fb:
2b:03:3e:90:b4:4a:ab:fd:82:2e:65:1b:d1:c3:7e:
6e:ef:87:26:90:67:8e:71:34:de:b0:56:31:d1:8f:
c3:79:4e:2a:c4:ca:f6:01:0e:93:99:28:1d:48:1c:
1a:79:52:a8:11:5a:9a:f6:09:22:84:24:25:84:b3:
48:d4:43:45:0e:60:03:1c:3c:cb:0c:e6:34:1e:dc:
ef:68:99:87:a9:b2:8c:5d:eb:a4:07:64:61:d5:e0:
09:db:70:2f:95:72:18:00:d2:c5:37:0a:9a:1b:4e:
07:35:61:34:48:ea:4c:4e:9b:40:a6:43:38:68:09:
d4:9f:fc:2b:8e:e5:c1:48:99:56:be:ee:81:b8:af:
61:ab:0f:24:b8:1e:65:50:a4:97:ab:54:8b:e2:ea:
02:62:21:c1:a9:81:65:65:44:92:e0:0d:0f:d2:b3:
a6:33:9b:40:4e:85:57:ee:36:74:2b:72:ad:f6:ff:
cd:49:7f:b8:f1:ba:3b:f2:e0:18:6d:84:81:e3:fd:
f5:60:6c:c8:1e:b7:5e:de:42:b4:d8:e4:f5:ba:8b:
43:9f:47:d0:78:77:a7:27:e1:2e:21:5e:45:86:cb:
43:c2:6a:bd:84:b8:95:dd:1e:52:4b:9b:f8:65:f1:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:34:40:F4:A2:44:19:F6:5A:0F:97:27:59:B9:E2:73:13:15:C9:3B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS395374.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.134.121.0/24
178.93.128.0/24
Signature Algorithm: sha256WithRSAEncryption
78:d6:5a:46:86:14:bd:80:ee:80:3c:de:b9:b8:d3:d4:b6:0d:
8e:f6:5e:fa:68:7a:88:a4:0e:8e:12:f9:e0:ce:0b:d1:5c:37:
54:a0:ba:97:00:c3:8d:88:a1:f0:11:f3:87:b5:d4:96:8d:d3:
79:37:93:44:4a:47:68:8e:d9:c1:fe:ad:ab:7d:7f:eb:5c:15:
9a:9f:33:b5:06:63:85:c4:2e:52:e2:15:a0:12:d1:5a:dd:c2:
97:a0:48:2a:da:ec:9e:bc:fb:a9:98:8c:ff:3d:3d:3b:f7:6d:
d4:b0:66:20:b4:67:ff:fb:42:6e:46:fc:4e:32:8b:d4:87:ad:
71:11:5a:6a:a8:ff:3b:74:26:94:34:ba:73:90:da:e4:89:af:
25:cc:df:4b:1c:56:c9:02:73:35:ba:f7:cc:a0:f8:51:44:cc:
f1:c2:a3:74:b8:56:d7:f9:8e:0d:53:05:0e:ca:c8:cd:d8:45:
60:92:7c:77:cb:2d:1c:31:c0:ea:23:c5:3d:dc:e1:ee:17:e1:
4e:0f:7c:72:9d:43:95:a3:fc:05:0e:a2:f1:b9:24:dd:39:34:
e5:b6:86:b5:b2:75:41:11:d0:15:f2:cb:0d:35:da:9c:86:10:
a9:f3:bf:76:df:b5:d2:10:9b:f1:dc:d5:5b:9c:fe:5a:e0:90:
0c:6b:0c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 13:36:48 2025 by rpki-client