Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: NhL9UhTPC4gpFi5ToJa36n4Vuj6mSa1FXSXd3nlJIl8=
Subject key identifier: 46:2B:EB:21:02:E4:97:6A:A1:1E:B3:83:A8:D3:94:EA:6D:E2:2D:34
Certificate issuer: /CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Certificate serial: 4F29A73FD42B8404695FAC39F08EC11AEF0F9ADA
Authority key identifier: 4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
Signing time: Mon 16 Jun 2025 03:23:22 +0000
ROA not before: Mon 16 Jun 2025 03:18:22 +0000
ROA not after: Mon 15 Jun 2026 03:23:22 +0000
asID: 31715
IP address blocks: 140.150.235.0/24 maxlen: 24
148.135.152.0/24 maxlen: 24
150.241.249.0/24 maxlen: 24
155.117.38.0/24 maxlen: 24
155.117.145.0/24 maxlen: 24
155.117.227.0/24 maxlen: 24
167.148.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:29:a7:3f:d4:2b:84:04:69:5f:ac:39:f0:8e:c1:1a:ef:0f:9a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc336bf9f3de5ce41414bd1971945f4b246bfcc
Validity
Not Before: Jun 16 03:18:22 2025 GMT
Not After : Jun 15 03:23:22 2026 GMT
Subject: CN=462BEB2102E4976AA11EB383A8D394EA6DE22D34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:2d:ff:41:3c:f8:55:c8:0d:97:54:a3:f8:
85:99:39:c7:a6:32:4c:ae:c2:f5:a5:22:4d:3c:9b:
3a:a7:87:db:c0:84:fb:db:98:64:f8:87:fc:03:12:
98:a1:0f:6c:18:1d:af:75:5f:ae:d2:74:48:6b:e7:
57:bb:80:c1:48:7e:29:81:c8:76:94:b5:92:0c:c9:
bc:a0:8a:4f:e9:e9:12:7a:36:46:cd:2f:01:d9:5b:
79:c8:70:fd:55:01:db:4e:9e:85:c3:57:76:c5:61:
ab:18:30:a7:12:04:75:e9:fd:f8:ed:8c:73:93:95:
f9:e8:02:d1:0f:eb:a8:f7:73:ba:e6:8f:65:3e:5c:
cd:f8:7f:41:7a:fd:ff:be:18:c5:3c:b7:a8:f4:cb:
5c:35:76:d6:59:b2:01:a2:06:2e:a0:71:30:d9:1f:
06:da:c2:c3:1b:56:6f:fe:49:f3:0c:08:32:31:ae:
c0:44:88:0d:df:55:77:f6:07:0e:d7:fd:19:1e:79:
53:32:9c:2b:1f:10:c8:69:c7:30:d1:5b:ba:01:48:
c9:28:15:ab:e8:7a:1c:d0:73:e7:22:ed:eb:12:71:
d6:69:44:18:ac:8c:61:1c:fd:95:c1:df:34:52:28:
d4:15:7e:59:31:ff:a3:f1:ac:e0:a9:cf:ce:e8:66:
84:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:2B:EB:21:02:E4:97:6A:A1:1E:B3:83:A8:D3:94:EA:6D:E2:2D:34
X509v3 Authority Key Identifier:
keyid:4F:C3:36:BF:9F:3D:E5:CE:41:41:4B:D1:97:19:45:F4:B2:46:BF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/4FC336BF9F3DE5CE41414BD1971945F4B246BFCC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8M2v5895c5BQUvRlxlF9LJGv8w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09be3aae-aea1-41dc-b1b9-95ac5918244d/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.150.235.0/24
148.135.152.0/24
150.241.249.0/24
155.117.38.0/24
155.117.145.0/24
155.117.227.0/24
167.148.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a1:c1:a4:27:e3:a6:ef:d9:f1:ff:55:a1:2b:e6:5d:57:e8:
bc:df:28:e8:b8:ff:b9:10:fc:75:eb:00:dd:82:19:03:c1:80:
12:98:ac:36:ec:b2:4c:45:98:27:c2:06:8c:e9:db:ca:1d:e4:
d4:b3:03:11:40:02:52:4e:56:af:ee:b8:cd:ec:33:d8:4b:ed:
17:56:6c:04:29:4a:ab:6d:c7:eb:40:10:22:1b:d9:40:42:fe:
06:bd:bd:ce:29:d5:a7:50:f8:7c:1b:51:77:f1:aa:f4:0f:bd:
d1:15:5e:7d:18:98:e6:de:7d:5c:3d:03:ed:67:a7:51:41:79:
c4:db:20:84:8d:f6:f3:56:4a:25:80:a0:36:90:d4:a7:c1:f2:
7c:30:17:b9:c6:d4:ec:f7:7a:d6:fe:23:bc:d4:53:fd:25:91:
d5:b3:bc:42:c5:59:33:eb:a1:72:02:db:47:9a:13:61:4a:82:
25:1d:30:4a:f8:9e:95:77:c2:b0:d8:bc:eb:c0:11:ec:ce:c3:
5e:22:bd:f3:35:55:86:9d:76:28:15:5a:45:be:d2:ce:55:86:
28:f6:76:f2:0d:45:5c:54:05:30:53:75:72:33:e0:8d:14:19:
45:26:4d:f3:57:95:81:73:42:7b:64:76:15:97:91:03:ed:5b:
32:1f:d2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:33:24 2025 by rpki-client