Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: 53NnyoMig+5yVVhVM+eQ00eXdCJXvHpyPPCYgEK+628=
Subject key identifier: 4C:F1:8D:52:56:30:0E:3A:73:64:69:77:09:14:CE:B7:D3:A7:6D:4B
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 172AEDE72DA170A8275F89721D0D1D222BD96A1F
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
Signing time: Mon 01 Jun 2026 09:06:27 +0000
ROA not before: Mon 01 Jun 2026 09:01:27 +0000
ROA not after: Mon 31 May 2027 09:06:27 +0000
asID: 31715
IP address blocks: 91.124.175.0/24 maxlen: 24
95.134.87.0/24 maxlen: 24
95.134.90.0/24 maxlen: 24
178.92.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:2a:ed:e7:2d:a1:70:a8:27:5f:89:72:1d:0d:1d:22:2b:d9:6a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 1 09:01:27 2026 GMT
Not After : May 31 09:06:27 2027 GMT
Subject: CN=4CF18D5256300E3A736469770914CEB7D3A76D4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:fb:58:05:4e:5c:72:5b:ea:c0:66:ef:07:ae:
4a:4b:80:78:6f:94:c9:fb:d6:47:7d:cc:89:93:b4:
a9:d9:ce:e0:42:f8:94:b2:c7:8a:ad:b8:e6:3d:d0:
ce:9d:90:2a:b8:0d:e7:13:e5:5c:1e:57:3a:52:ff:
b8:6c:3e:e3:59:85:42:e4:85:38:68:f8:c5:69:38:
80:b3:9f:57:08:b1:b8:32:b8:6b:ba:05:a5:70:9e:
f6:6c:a9:2d:b3:d6:07:cf:a4:46:a7:68:be:92:9e:
93:be:42:cf:14:0a:a7:7d:1b:5b:72:36:e1:89:ff:
42:9e:5b:d4:6c:21:96:6c:20:76:3f:a9:f5:ca:35:
c3:53:5f:22:fd:fa:78:c1:f4:1e:fc:2d:28:94:35:
89:ef:35:b1:9d:c5:94:69:fa:57:70:13:b2:30:67:
1b:02:0c:d1:97:26:bf:1b:53:b3:f2:0c:bb:6e:20:
3b:d9:f5:a6:0b:f4:08:89:5d:74:10:f9:c9:01:eb:
5a:ca:d8:44:dc:5b:1c:99:29:43:87:ea:ca:dd:0d:
a7:7b:0d:3b:2f:d5:e1:ca:db:c5:78:69:e8:6d:33:
49:31:ee:92:5d:01:22:2b:fa:49:65:9c:a6:81:6b:
ee:23:6b:c1:10:ba:92:74:e3:60:34:38:f3:5f:a7:
b2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F1:8D:52:56:30:0E:3A:73:64:69:77:09:14:CE:B7:D3:A7:6D:4B
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.175.0/24
95.134.87.0/24
95.134.90.0/24
178.92.168.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:d8:61:f9:2c:9b:61:b2:ed:2c:f0:ef:e1:1f:3b:03:37:ce:
7c:7a:95:da:c9:14:90:0b:f3:c6:5e:03:06:cc:d2:e5:15:05:
0f:f6:17:d0:3c:30:01:49:8b:c4:93:86:60:85:d9:58:5b:33:
9e:49:01:fe:f3:0a:28:d9:df:86:2e:98:04:7d:37:ed:d4:d6:
18:84:37:5a:6f:b6:5f:87:17:97:42:07:a8:57:3e:0a:ae:70:
0b:68:85:f7:0d:da:b2:3e:b7:4f:fb:3f:4c:23:56:83:b4:01:
2f:d9:ab:1a:a2:70:6c:17:81:74:3d:19:22:c2:86:5f:3e:56:
77:e5:3a:f1:e0:c1:90:a0:35:1a:54:29:46:10:77:63:59:5f:
5b:e5:51:26:61:b9:0b:93:76:b8:56:15:88:94:0d:96:5b:65:
f0:a2:5a:a4:8f:71:3a:20:be:1e:d1:4e:2e:0e:de:95:75:27:
1a:ac:8e:92:5b:80:7d:0a:b2:b0:02:fb:e8:30:d1:9d:72:47:
14:74:55:fc:a6:39:35:0e:39:64:b3:2c:79:82:53:6e:64:72:
a4:55:fa:3f:18:0c:76:28:a1:04:b9:8c:76:8c:a5:b0:1a:9c:
e8:c2:d9:49:e4:a1:fa:e2:d5:c9:12:e7:19:08:e9:69:11:2d:
5f:c8:48:76
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgIUFyrt5y2hcKgnX4lyHQ0dIivZah8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNjA2MDEwOTAxMjdaFw0yNzA1MzEwOTA2MjdaMDMxMTAvBgNV
BAMTKDRDRjE4RDUyNTYzMDBFM0E3MzY0Njk3NzA5MTRDRUI3RDNBNzZENEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu+1gFTlxyW+rAZu8HrkpLgHhv
lMn71kd9zImTtKnZzuBC+JSyx4qtuOY90M6dkCq4DecT5VweVzpS/7hsPuNZhULk
hTho+MVpOICzn1cIsbgyuGu6BaVwnvZsqS2z1gfPpEanaL6SnpO+Qs8UCqd9G1ty
NuGJ/0KeW9RsIZZsIHY/qfXKNcNTXyL9+njB9B78LSiUNYnvNbGdxZRp+ldwE7Iw
ZxsCDNGXJr8bU7PyDLtuIDvZ9aYL9AiJXXQQ+ckB61rK2ETcWxyZKUOH6srdDad7
DTsv1eHK28V4aehtM0kx7pJdASIr+kllnKaBa+4ja8EQupJ042A0OPNfp7IXAgMB
AAGjggIbMIICFzAdBgNVHQ4EFgQUTPGNUlYwDjpzZGl3CRTOt9OnbUswHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTMzE3MTUucm9hMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBABbfK8D
BABfhlcDBABfhloDBACyXKgwDQYJKoZIhvcNAQELBQADggEBADvYYfksm2Gy7Szw
7+EfOwM3znx6ldrJFJAL88ZeAwbM0uUVBQ/2F9A8MAFJi8SThmCF2VhbM55JAf7z
CijZ34YumAR9N+3U1hiEN1pvtl+HF5dCB6hXPgqucAtohfcN2rI+t0/7P0wjVoO0
AS/ZqxqicGwXgXQ9GSLChl8+VnflOvHgwZCgNRpUKUYQd2NZX1vlUSZhuQuTdrhW
FYiUDZZbZfCiWqSPcTogvh7RTi4O3pV1JxqsjpJbgH0KsrAC++gw0Z1yRxR0Vfym
OTUOOWSzLHmCU25kcqRV+j8YDHYooQS5jHaMpbAanOjC2Unkofri1ckS5xkI6WkR
LV/ISHY=
-----END CERTIFICATE-----
Generated at Sat Jun 13 10:46:11 2026 by rpki-client