Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7_bo5h6JvrCom-Dd4kUmfzg7fYQ.roa
File: 7_bo5h6JvrCom-Dd4kUmfzg7fYQ.roa (raw, json)
Hash identifier: FbGtW78LjHAcPagCOtgpIyxwNYnqWRDP3NgvWzqZDb8=
Subject key identifier: EF:F6:E8:E6:1E:89:BE:B0:A8:9B:E0:DD:E2:45:26:7F:38:3B:7D:84
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019590C601C38E4CDD63CC460C4A637ADEBB
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7_bo5h6JvrCom-Dd4kUmfzg7fYQ.roa
Signing time: Thu 13 Mar 2025 18:30:50 +0000
ROA not before: Thu 13 Mar 2025 18:30:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21859
IP address blocks: 31.56.66.0/24 maxlen: 24
31.57.35.0/24 maxlen: 24
31.57.100.0/24 maxlen: 24
31.57.228.0/24 maxlen: 24
31.57.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:c6:01:c3:8e:4c:dd:63:cc:46:0c:4a:63:7a:de:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 13 18:30:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=eff6e8e61e89beb0a89be0dde245267f383b7d84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:09:f2:be:12:32:7d:26:78:c6:54:c7:78:f0:
07:b0:55:5d:2f:9a:1e:ed:10:51:9c:b6:e1:d2:17:
c3:7b:2c:de:de:4f:c4:1e:27:95:5e:96:a1:e5:66:
e0:34:dc:ea:12:18:86:92:16:e2:3b:9d:ab:13:d9:
57:95:c1:76:ce:d2:a1:c8:f4:fe:0c:c8:6e:84:17:
47:98:12:ea:dc:d2:6d:7a:da:d8:b3:b3:2c:e1:3e:
93:7d:ab:e8:06:a4:d3:b3:dd:45:fc:3e:c1:ce:b0:
3d:85:72:b9:76:54:0c:34:98:8d:e8:a3:8d:df:ef:
f5:b7:33:60:6a:ac:b0:e3:3c:82:b1:fe:7a:3e:47:
0c:e3:c5:46:2c:a1:b2:e5:45:fc:12:1d:c7:e5:85:
c3:a0:ba:5c:3e:94:44:9d:b5:73:12:4d:32:0a:10:
d4:d9:77:8a:34:89:bf:26:4e:5d:68:8a:01:ec:65:
3a:01:12:ac:6a:f3:ee:1e:86:67:f3:41:bb:70:0b:
3d:56:43:bd:68:58:63:8f:46:d6:7a:57:1c:23:4f:
94:33:06:bc:d5:ed:40:2e:3a:1f:05:30:aa:8f:31:
c2:8b:cb:c7:46:9a:91:a2:e3:95:21:6f:57:25:c8:
15:2b:99:13:4d:a6:b2:78:70:62:d8:9f:5d:2c:0c:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F6:E8:E6:1E:89:BE:B0:A8:9B:E0:DD:E2:45:26:7F:38:3B:7D:84
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7_bo5h6JvrCom-Dd4kUmfzg7fYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.66.0/24
31.57.35.0/24
31.57.100.0/24
31.57.228.0/24
31.57.248.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:66:ba:73:d4:0d:f7:55:56:f0:fc:1c:1a:4d:3b:98:c2:a3:
64:d8:d8:a8:a2:cf:16:1a:57:fe:22:ba:62:49:4f:ad:7c:e2:
41:8f:cb:ea:12:e1:23:7a:a6:32:70:5f:ea:1f:76:ab:bf:5f:
53:31:03:53:25:05:6a:6c:21:07:56:3c:eb:3c:5f:87:30:ae:
e9:7e:62:d7:b0:26:a9:8b:c7:18:9b:4f:34:86:61:93:76:e8:
67:3c:e4:74:db:e6:fe:a7:7f:4b:d0:9e:ed:ac:f8:fa:0f:0a:
13:b1:01:dc:15:5a:71:79:7e:cc:98:94:87:61:dd:b4:04:df:
d6:9f:0f:7f:c2:8b:8f:82:c3:c6:49:1f:2f:62:6a:c5:4b:ad:
59:6d:46:a2:d4:0f:c8:c8:38:97:d1:3c:6b:82:73:f8:5b:4e:
10:30:4c:50:76:85:af:75:a9:8f:02:72:9a:9d:fd:35:68:58:
9f:5d:98:88:cb:0b:b6:52:67:15:0b:b7:6e:5f:14:a0:ba:0e:
72:4b:6b:aa:bc:1e:66:10:bc:0e:28:75:7d:29:97:84:65:ce:
86:23:80:e9:28:40:d0:6e:33:f4:2d:15:08:a7:1f:13:a1:ec:
05:c8:72:3a:ce:a8:80:21:60:0e:d6:d4:ef:d7:77:59:d2:b3:
d9:ce:9e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:56:04 2025 by rpki-client