Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
File: AS31715.roa (raw, json)
Hash identifier: MNQusJIbae7/JY0RHpFfyq8JSoDmP34dnWFCuPbYZAk=
Subject key identifier: 9C:8C:A9:D1:53:5F:A0:59:F1:CB:1C:80:26:37:F8:82:E3:B6:BA:51
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 26C43FDD3FAFF006BE00604B0DBEF4C24AF83983
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
Signing time: Fri 03 Apr 2026 02:33:24 +0000
ROA not before: Fri 03 Apr 2026 02:28:24 +0000
ROA not after: Fri 02 Apr 2027 02:33:24 +0000
asID: 31715
IP address blocks: 91.124.175.0/24 maxlen: 24
95.134.87.0/24 maxlen: 24
95.134.90.0/24 maxlen: 24
95.134.96.0/24 maxlen: 24
178.92.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:c4:3f:dd:3f:af:f0:06:be:00:60:4b:0d:be:f4:c2:4a:f8:39:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Apr 3 02:28:24 2026 GMT
Not After : Apr 2 02:33:24 2027 GMT
Subject: CN=9C8CA9D1535FA059F1CB1C802637F882E3B6BA51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f0:01:9c:9b:f1:9b:ab:75:50:b4:1f:ff:ff:
47:33:c9:dd:9e:9d:1e:dc:97:21:7d:29:b3:16:08:
13:5a:e8:c2:b1:9d:bf:01:d9:dd:9a:bd:dc:c8:bd:
d5:1d:aa:bc:eb:ed:5c:7a:8c:92:22:19:c4:76:07:
8f:96:a1:f8:10:60:17:e7:f0:16:54:84:9b:4c:39:
95:4f:34:10:6c:9d:43:92:f8:0a:3c:d9:f7:96:ca:
2d:87:4f:89:e7:ea:99:a9:2a:27:17:af:5c:52:3d:
be:56:a2:3d:1f:e3:ca:2e:d8:21:21:26:e7:ca:c5:
5a:b6:27:72:f9:b6:7b:4a:b5:04:e3:a1:ad:33:98:
2a:1a:22:7e:fb:02:02:dc:ac:c5:ae:ac:a4:6e:7b:
62:52:ac:fb:b0:e4:fd:10:35:da:ab:3f:91:e2:dd:
d3:87:dc:c8:ff:2f:bb:d6:78:3e:0e:90:8f:6a:b2:
df:da:e8:b5:fa:20:1b:6a:8a:54:21:0c:30:05:67:
c8:ad:fb:b0:ea:93:0e:1f:bc:c0:e3:d5:60:42:95:
8f:fc:56:07:a8:41:c3:cd:ce:a5:41:10:85:04:f4:
26:15:91:23:21:a1:c3:2b:d6:79:13:cb:91:26:4d:
72:da:51:a0:39:7e:33:b8:bf:59:23:6d:71:57:be:
2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8C:A9:D1:53:5F:A0:59:F1:CB:1C:80:26:37:F8:82:E3:B6:BA:51
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS31715.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.175.0/24
95.134.87.0/24
95.134.90.0/24
95.134.96.0/24
178.92.168.0/24
Signature Algorithm: sha256WithRSAEncryption
02:8b:ed:d2:a5:89:ac:0c:96:10:6a:29:b1:b9:4d:fa:3d:35:
ac:73:d4:90:27:52:4a:bf:54:95:d8:0d:70:43:b8:d4:0f:df:
a4:5e:83:92:d9:1c:00:88:3f:ae:e5:15:99:fe:ca:7f:a5:74:
42:a2:90:a6:0a:66:7b:1f:5f:6f:9a:b3:b6:83:06:00:ca:03:
b3:27:d8:51:b5:77:01:26:21:76:ea:4b:80:0a:b8:72:c9:82:
90:ee:f1:45:48:c4:85:22:5c:5f:e4:43:05:0f:b4:d1:a3:b6:
af:2e:a6:cb:06:62:2d:8c:2e:05:58:c0:87:51:91:b5:71:f9:
59:00:e1:fc:16:c5:f3:dc:2c:81:70:26:4f:3c:b8:ea:85:cc:
b1:bd:69:9e:41:97:a1:d2:da:85:f3:69:e6:79:37:6e:40:55:
0e:55:3d:12:b1:49:dd:83:5d:33:e1:72:d9:8d:77:9a:9b:4d:
53:c2:b0:4a:c3:e0:e6:a1:c2:00:7d:7d:57:d4:74:4f:5f:67:
b6:77:6c:13:24:23:30:2f:cb:6c:ec:bd:48:4d:1a:ef:5d:7c:
a3:1b:17:1e:4f:11:98:bc:c5:8c:49:bd:79:c7:c7:15:df:94:
9d:a1:84:23:da:74:f5:3c:79:25:fd:3e:11:83:8b:6a:0b:26:
55:a1:fb:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:06:53 2026 by rpki-client