Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10103.roa
File: AS10103.roa (raw, json)
Hash identifier: 43UK46k0tlUvxlYiV63gMUA+5ixEDxS8sGyuTBXJCtA=
Subject key identifier: CE:FA:6B:01:77:A5:63:39:63:F9:A8:50:AB:75:E5:45:D0:75:A0:57
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 40F9ACCBA80F954CAA1F0F1A89D3D4B4A9C39A09
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10103.roa
Signing time: Fri 13 Jun 2025 10:35:09 +0000
ROA not before: Fri 13 Jun 2025 10:30:09 +0000
ROA not after: Fri 12 Jun 2026 10:35:09 +0000
asID: 10103
IP address blocks: 95.135.179.0/24 maxlen: 24
95.135.230.0/24 maxlen: 24
178.92.4.0/24 maxlen: 24
178.92.23.0/24 maxlen: 24
178.92.125.0/24 maxlen: 24
178.93.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:f9:ac:cb:a8:0f:95:4c:aa:1f:0f:1a:89:d3:d4:b4:a9:c3:9a:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 13 10:30:09 2025 GMT
Not After : Jun 12 10:35:09 2026 GMT
Subject: CN=CEFA6B0177A5633963F9A850AB75E545D075A057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:b7:56:24:3c:d2:c3:f6:c2:bc:40:ac:14:
1a:bc:59:b1:03:20:78:7d:38:cd:00:98:ad:f5:2e:
b9:01:0b:35:86:b1:8d:b9:ce:2d:3b:c9:d6:68:de:
4c:e4:5a:c0:2f:34:ae:32:d9:e3:a4:67:20:a7:bf:
03:0d:6b:33:5b:3d:79:f8:07:40:66:0a:63:a9:6c:
7c:18:5f:85:6a:c8:91:ca:62:1f:0c:81:88:0c:cc:
fe:6e:8e:c0:81:e5:4c:18:ce:7a:22:92:6f:4a:23:
fa:73:fc:79:45:48:ee:2f:4f:58:34:64:b6:46:82:
2c:b5:cd:e3:2e:80:9f:05:44:58:be:a0:ea:c3:d6:
e1:7d:8d:67:cf:ec:c3:4b:fd:4c:8c:49:30:1e:98:
c3:8d:d3:51:ed:31:97:fc:30:eb:b4:69:19:b7:e4:
ed:a1:0a:2e:8b:22:76:ac:ae:8d:a1:03:df:52:c7:
41:8b:d6:cb:a5:67:bd:e2:a9:49:28:84:fa:8c:5c:
9e:65:81:6b:68:81:fb:25:e7:83:58:cf:df:6b:13:
27:04:32:7d:88:1a:57:6a:09:7e:6b:35:89:e0:1b:
cb:8a:0e:9a:f3:21:2e:8d:40:e0:77:6b:69:79:ec:
60:d1:fe:bf:c2:a7:c8:54:01:a3:67:f8:36:5b:da:
14:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FA:6B:01:77:A5:63:39:63:F9:A8:50:AB:75:E5:45:D0:75:A0:57
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS10103.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.135.179.0/24
95.135.230.0/24
178.92.4.0/24
178.92.23.0/24
178.92.125.0/24
178.93.99.0/24
Signature Algorithm: sha256WithRSAEncryption
74:07:4a:28:ca:bb:4c:fe:79:11:93:2a:33:22:76:d6:1a:23:
f8:e5:85:db:ea:d8:05:16:16:9a:e5:d5:27:bc:12:b4:c1:36:
3d:ab:c2:f3:8d:c5:06:b4:d4:3f:9a:10:f1:59:68:db:95:6d:
60:ab:15:ed:1a:be:6a:f5:e1:47:ba:99:4b:43:a1:1d:a7:11:
50:44:0f:b3:8c:68:a7:e5:68:cc:9b:82:84:55:39:33:99:23:
66:19:a0:26:ba:b4:dd:eb:94:b7:65:55:29:1a:f3:57:11:4c:
65:a5:8b:a7:15:ab:ec:13:aa:e7:50:7a:63:6f:e7:6f:c4:13:
58:47:c0:4e:78:de:8c:4d:4c:47:cc:f2:c5:11:f3:56:57:ce:
0a:46:86:db:fc:6c:de:d7:f8:2e:9e:ac:c4:fd:8f:d1:9a:e9:
7c:04:3f:51:21:46:12:3f:c2:ea:b8:01:bf:02:b7:2f:0a:31:
a4:ce:ff:02:cf:b8:69:b6:40:f3:c7:fb:a1:2d:61:60:ff:94:
e1:52:74:02:39:4c:8f:af:a4:83:0e:21:6a:c8:51:d9:c9:1b:
a7:27:8b:7d:1b:49:f0:f1:9a:0b:44:3d:f4:9d:7a:bb:67:40:
e2:21:05:f9:ad:14:6b:81:94:95:76:0d:a0:45:86:a7:d0:c8:
75:15:00:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:58:31 2025 by rpki-client