Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS393942.roa
File: AS393942.roa (raw, json)
Hash identifier: bdFWGYff0G1HHhV7bXHnItBuTUNcjQjjJbp9W7MgA9E=
Subject key identifier: A0:8B:69:8D:54:B2:9D:7B:76:66:40:AA:C2:BE:71:E4:67:2E:5E:D6
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 17AA54EA3187A28F5F34C43A2A1DB23368203C11
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS393942.roa
Signing time: Mon 27 Oct 2025 00:04:29 +0000
ROA not before: Sun 26 Oct 2025 23:59:29 +0000
ROA not after: Mon 26 Oct 2026 00:04:29 +0000
asID: 393942
IP address blocks: 95.134.20.0/24 maxlen: 24
95.134.181.0/24 maxlen: 24
178.92.117.0/24 maxlen: 24
178.95.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 14:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:aa:54:ea:31:87:a2:8f:5f:34:c4:3a:2a:1d:b2:33:68:20:3c:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Oct 26 23:59:29 2025 GMT
Not After : Oct 26 00:04:29 2026 GMT
Subject: CN=A08B698D54B29D7B766640AAC2BE71E4672E5ED6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:cb:3e:13:62:bf:0d:57:35:44:31:1c:02:30:
25:63:6d:17:1f:a1:1b:ae:56:b4:99:2a:3d:bd:48:
bb:28:63:46:21:59:2c:fb:78:92:d8:d7:d2:d1:26:
5e:22:3a:1d:f2:77:fb:0e:5b:db:f8:37:1e:ba:f1:
72:dd:bc:de:7b:6b:bb:9c:c2:27:9e:1d:f0:3e:36:
26:60:ab:ac:2f:96:a8:fd:8c:17:64:79:aa:86:d9:
10:20:0d:7c:c5:e0:90:b4:bf:a7:a8:00:55:38:dd:
aa:b6:73:97:c6:e6:df:1d:d3:e1:ce:80:dd:8b:b9:
fb:b0:90:47:4f:ef:ac:1b:36:ae:74:c2:0d:91:e9:
dd:b1:18:6f:59:c0:06:13:fa:d0:20:1e:d5:c0:5e:
be:47:00:a7:f1:b4:65:6d:02:c0:b4:bd:78:b3:b2:
89:89:58:98:5f:0c:cb:e4:4d:64:76:0e:3c:b2:7d:
dd:b5:83:bc:a3:22:40:18:b8:27:76:8e:89:da:6a:
fc:db:8a:11:13:b8:1b:c9:07:d8:22:81:b9:3c:8e:
c1:2e:5d:f0:0e:08:f4:55:c1:af:d8:8b:a2:37:8a:
00:ae:6b:2b:0a:4b:3f:89:58:82:5f:ac:52:d1:e1:
d2:e4:81:0b:a3:45:1e:df:23:31:6e:ed:b7:91:74:
da:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:8B:69:8D:54:B2:9D:7B:76:66:40:AA:C2:BE:71:E4:67:2E:5E:D6
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS393942.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.134.20.0/24
95.134.181.0/24
178.92.117.0/24
178.95.146.0/24
Signature Algorithm: sha256WithRSAEncryption
03:be:e0:41:ad:54:e3:04:1b:28:bd:75:4e:d3:7a:ce:ab:f9:
61:1f:88:87:49:3f:56:8e:37:8b:07:53:7f:f9:cb:ae:95:22:
4d:d1:a4:c7:92:3a:fc:43:1b:70:66:25:9c:e6:14:0c:5d:d7:
11:3f:cf:70:9f:32:50:06:f9:7e:25:5a:fa:7c:13:bf:03:74:
b0:cb:c9:d8:9e:fe:ff:cb:43:35:fe:6d:5f:f1:e5:5d:96:fe:
85:7d:b5:7b:ab:df:ae:a3:d9:10:8e:69:66:de:64:41:67:fb:
cc:44:db:ad:85:9b:9a:fe:80:88:d3:df:b6:41:fb:1d:44:4e:
93:9e:57:69:7e:6b:9a:9a:fc:cb:a4:1f:73:04:93:48:60:86:
dc:ab:d3:03:b5:74:84:02:f2:27:7a:86:53:79:8f:5d:f6:47:
66:c0:e0:30:1d:c4:c4:e2:37:84:d3:f5:35:39:66:2f:db:cc:
61:b9:db:29:fc:cd:82:8f:03:bb:7e:8e:97:46:09:d0:89:a0:
b7:32:a3:18:63:85:b2:2a:93:3f:9e:17:ff:ca:ff:7e:09:6e:
73:f8:6e:99:14:8d:05:e3:b2:c7:50:76:1e:c4:a3:73:46:04:
0e:bb:7b:4d:4d:d2:9f:53:14:d2:d7:ba:8d:1a:46:53:92:b8:
20:66:41:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:15:00 2025 by rpki-client