Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bsAUI3Xy5kekbegnwHqj9ojF80w.roa
File: bsAUI3Xy5kekbegnwHqj9ojF80w.roa (raw, json)
Hash identifier: 3L99/2KV+VWvHcAgB8+RempLPmP8V1EYo9KSMQangdo=
Subject key identifier: 6E:C0:14:23:75:F2:E6:47:A4:6D:E8:27:C0:7A:A3:F6:88:C5:F3:4C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01982D6F9C9913989CD7E8D378230862267C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bsAUI3Xy5kekbegnwHqj9ojF80w.roa
Signing time: Mon 21 Jul 2025 14:42:25 +0000
ROA not before: Mon 21 Jul 2025 14:42:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21840
IP address blocks: 31.56.47.0/24 maxlen: 24
31.56.180.0/24 maxlen: 24
31.57.39.0/24 maxlen: 24
31.57.59.0/24 maxlen: 24
31.57.229.0/24 maxlen: 24
31.58.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Jul 2025 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:2d:6f:9c:99:13:98:9c:d7:e8:d3:78:23:08:62:26:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 21 14:42:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ec0142375f2e647a46de827c07aa3f688c5f34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:3e:33:de:b5:4e:9e:61:70:6d:93:86:00:
cd:a8:e7:74:77:8b:a1:fb:c2:88:54:6c:29:a1:60:
51:7b:c6:25:ef:b5:71:7b:27:70:bb:e1:84:c0:d5:
98:5c:5a:c1:88:1f:73:24:d9:f9:38:fb:26:59:49:
c8:73:83:e3:63:c3:fa:19:83:eb:f4:ff:b7:9d:98:
64:f8:16:ed:51:ee:4e:89:3e:a8:2a:5a:fd:8c:c9:
3d:db:b7:3b:07:5b:46:80:ef:50:13:b3:3f:da:67:
29:ae:9d:b5:4d:8b:80:a5:fc:78:1b:a3:0b:5f:e2:
3c:a2:ec:b0:fb:97:d2:dd:5e:09:a8:e0:b0:5d:97:
f3:e4:22:f1:c5:8d:2d:4b:9c:27:14:1b:80:6a:c7:
c3:d4:ea:61:d5:c4:76:ac:a6:04:27:1d:4f:40:26:
a0:9a:39:69:8d:f7:f0:78:ba:31:a6:fa:e9:98:10:
ab:12:de:40:80:39:54:cb:72:5c:b4:08:75:7d:a1:
1e:c2:3a:45:f2:1c:fc:a6:8b:27:1e:93:49:8a:68:
7e:d9:a0:ee:ec:c6:85:f4:ae:e3:0e:95:d3:39:8e:
33:89:ca:9d:83:ff:71:45:6a:7e:63:38:81:68:7d:
f4:62:73:53:d7:8b:c7:55:4a:d9:30:a9:f1:54:e6:
0a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C0:14:23:75:F2:E6:47:A4:6D:E8:27:C0:7A:A3:F6:88:C5:F3:4C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bsAUI3Xy5kekbegnwHqj9ojF80w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.47.0/24
31.56.180.0/24
31.57.39.0/24
31.57.59.0/24
31.57.229.0/24
31.58.101.0/24
Signature Algorithm: sha256WithRSAEncryption
64:0e:7f:ec:48:de:d0:8a:10:b8:51:1b:44:2e:49:e3:fe:39:
94:5b:9d:4a:18:d3:ca:d8:e1:33:27:8a:06:ac:04:c4:7d:6a:
6b:7e:aa:f6:24:25:87:bb:fc:76:2a:d8:7c:86:1a:0a:eb:c5:
2d:8c:2d:18:8c:8c:46:d0:96:89:77:ec:6b:ab:b8:29:77:c7:
45:0f:3e:30:7d:ac:b3:35:58:75:e3:7a:20:67:5c:2e:1a:02:
24:88:35:ba:4c:39:ae:70:e6:3b:47:c8:87:0a:11:58:54:68:
37:3e:39:e5:76:a4:fa:fa:1a:3a:d2:ee:ac:5b:90:49:08:d8:
a8:19:3a:87:90:f6:86:19:9e:2f:8f:da:3a:f3:3f:3d:ad:1e:
80:07:50:2a:92:83:8d:64:b8:a6:c1:3e:67:87:94:49:8c:71:
b1:31:d9:48:c7:ae:9d:b0:c5:e3:53:f0:6a:81:35:11:9e:ab:
9d:42:62:7e:fe:97:b6:3e:44:1f:87:e4:35:b2:a4:59:92:0d:
f6:c0:fa:0a:aa:8d:57:1c:bd:b6:f5:d9:94:4a:8f:5c:11:55:
27:e9:91:7a:39:29:bc:b6:6f:54:38:f8:13:cc:e7:fd:ad:dd:
da:7f:22:1c:d3:01:88:49:0f:7b:0d:f7:0a:6d:6d:ac:20:91:
ea:a5:1e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 11:53:06 2025 by rpki-client