Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: EhWFjF0XLPGngQo64ZFgKGZm87UYgKL0IcbWjgZvN4c=
Subject key identifier: 84:3A:9B:03:41:6B:7E:0C:98:FC:06:FE:DD:90:C4:64:08:D9:67:01
Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Certificate serial: 33B0CBFD5A1378B41193371AB0F546E2280649D2
Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS31715.roa
Signing time: Wed 03 Jun 2026 02:07:46 +0000
ROA not before: Wed 03 Jun 2026 02:02:46 +0000
ROA not after: Wed 02 Jun 2027 02:07:46 +0000
asID: 31715
IP address blocks: 178.83.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft
rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 15:07:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:b0:cb:fd:5a:13:78:b4:11:93:37:1a:b0:f5:46:e2:28:06:49:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01
Validity
Not Before: Jun 3 02:02:46 2026 GMT
Not After : Jun 2 02:07:46 2027 GMT
Subject: CN=843A9B03416B7E0C98FC06FEDD90C46408D96701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:34:ea:f8:82:31:1b:ec:f6:4a:35:b7:36:aa:
c4:ee:6c:03:45:de:02:e1:72:86:54:7a:45:5b:a5:
71:ea:70:74:21:4e:23:c4:53:e0:17:2c:6a:59:f2:
7a:8f:b3:c2:1c:4b:4d:b3:6e:69:89:0c:8f:03:22:
9f:b6:cb:86:5d:f1:d5:57:8a:0b:39:9b:d6:ac:96:
0e:d6:1d:79:f2:49:a6:a3:d6:9a:dd:12:32:82:4b:
0f:f3:74:9d:79:9b:b9:ba:48:34:29:46:91:c2:e9:
14:fa:07:c0:ed:33:67:ca:26:2d:5a:ba:02:fa:1b:
3a:1b:93:cf:98:01:cf:10:cb:88:74:57:c1:1f:0b:
8e:9a:0d:3b:be:a1:08:69:27:ea:66:18:08:31:ae:
33:91:e4:b3:48:39:c0:65:3d:52:64:9b:a8:0a:c4:
ed:f9:9e:05:ba:d1:f7:43:19:8d:40:95:b2:73:bb:
65:6a:81:a9:ea:04:44:c0:95:0c:33:1c:3e:12:cb:
ab:6a:47:05:26:7c:78:5b:ca:a1:08:5f:b2:4e:99:
e2:e6:60:49:97:32:71:41:40:0c:fc:e1:d3:81:2c:
99:cf:98:3c:0e:b0:79:75:5b:78:92:72:95:41:56:
8c:dc:5d:23:b1:2e:18:d9:5e:93:19:14:57:8b:3b:
56:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3A:9B:03:41:6B:7E:0C:98:FC:06:FE:DD:90:C4:64:08:D9:67:01
X509v3 Authority Key Identifier:
keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.83.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:2c:ad:dc:b7:09:6a:f6:5b:f6:4a:68:b7:9a:d3:7c:ae:84:
b3:78:5f:29:41:ce:de:50:09:9a:a8:55:90:9f:2f:61:64:98:
5d:99:e6:44:8c:45:ab:6c:d9:a9:7f:52:1e:fe:e0:5d:1a:22:
a8:20:d3:ff:da:6c:ad:59:59:51:59:70:43:bb:d9:49:4b:f7:
f5:2c:aa:ba:85:85:a6:28:a1:8d:47:10:d3:6d:4c:69:e9:72:
bd:b4:d2:e5:08:f7:b4:dd:54:02:ae:cf:b8:07:1c:36:4d:b6:
8e:98:3f:b1:98:31:93:fd:00:9a:e4:da:a7:e9:c3:9c:ab:82:
bb:a8:b4:ca:00:3b:24:7c:ec:15:1c:45:37:f1:e7:fa:e3:3a:
91:5e:39:48:20:50:30:b8:57:9c:b8:a0:eb:de:89:93:a3:d3:
d3:f1:83:51:37:f2:fa:b2:3d:67:e5:be:51:a7:e0:1e:32:dd:
1b:48:27:a8:06:4a:b6:ce:7c:e7:03:7c:42:6b:94:36:61:ec:
c6:06:21:37:02:74:4e:d5:01:45:78:56:f9:c1:94:b9:07:2a:
67:5e:88:61:7f:b8:98:43:2a:ac:62:3a:a0:24:3d:6c:b9:c4:
5b:c2:c9:66:1a:02:7b:c2:dc:2e:73:92:35:84:29:95:e2:d8:
b6:d0:6c:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:26:57 2026 by rpki-client