Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7xgp_eowduZtVDML5RycW9BAcJs.roa
File: 7xgp_eowduZtVDML5RycW9BAcJs.roa (raw, json)
Hash identifier: wU0kIli96UttE0rQrB2A/30/a+bCJhHSrZ0AxfcRo6U=
Subject key identifier: EF:18:29:FD:EA:30:76:E6:6D:54:33:0B:E5:1C:9C:5B:D0:40:70:9B
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EF0B5BB64EC3079834A6CFD8A29313E0E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7xgp_eowduZtVDML5RycW9BAcJs.roa
Signing time: Mon 22 Jun 2026 19:01:41 +0000
ROA not before: Mon 22 Jun 2026 19:01:41 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 16276
IP address blocks: 31.56.219.0/24 maxlen: 24
31.57.161.0/24 maxlen: 24
31.57.199.0/24 maxlen: 24
31.59.68.0/24 maxlen: 24
94.183.158.0/24 maxlen: 24
217.60.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f0:b5:bb:64:ec:30:79:83:4a:6c:fd:8a:29:31:3e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 22 19:01:41 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=ef1829fdea3076e66d54330be51c9c5bd040709b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:23:7f:ed:22:34:9d:35:f6:52:5e:f7:7b:
5a:ae:74:4e:ba:06:e1:d8:a7:de:86:e9:7e:50:e5:
d7:e6:77:52:5f:f4:20:2a:69:27:be:40:a6:b4:af:
e9:d4:82:10:b2:84:73:18:ce:f3:43:c8:00:72:2f:
19:5e:b0:6e:82:c6:ac:f1:a8:17:04:91:99:f3:fc:
12:1a:89:7b:9e:8e:c0:b4:58:81:54:46:55:66:1e:
c9:a0:4f:12:82:01:88:0f:c6:2f:c5:3c:bd:9f:ba:
06:f3:a7:82:28:9f:e7:55:fc:60:94:0a:74:90:7a:
b5:99:5d:91:7c:87:0e:84:92:e4:9e:58:d1:68:a7:
07:40:c8:4e:b4:b4:ac:d1:58:7b:25:d4:5d:66:5e:
07:be:85:1d:d0:b3:79:a6:18:bd:a7:5c:1a:4a:e6:
95:cb:64:32:a5:35:f6:14:18:c3:62:a4:fe:73:60:
4e:f0:27:2b:e6:dc:a7:52:9b:26:a7:bf:6a:af:81:
46:a2:b9:83:79:77:07:33:e6:08:be:53:6b:4e:8f:
1f:db:5b:20:46:42:ee:e9:58:4e:d4:53:85:af:59:
77:c9:bc:51:2a:31:e8:ce:37:b2:cc:e6:c7:91:53:
2d:25:eb:5d:c5:19:3e:68:17:0e:03:6c:6b:51:ec:
d7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:18:29:FD:EA:30:76:E6:6D:54:33:0B:E5:1C:9C:5B:D0:40:70:9B
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7xgp_eowduZtVDML5RycW9BAcJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.219.0/24
31.57.161.0/24
31.57.199.0/24
31.59.68.0/24
94.183.158.0/24
217.60.196.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f1:91:a0:6a:6e:04:28:b8:b4:37:f2:6c:5c:63:d3:05:5f:
09:d0:b4:e0:a3:6b:d2:be:14:74:83:c5:0d:38:c1:51:4d:19:
bc:a3:30:a2:a9:05:a8:f7:07:d2:09:6e:35:b5:19:8c:6b:bd:
a6:48:df:17:10:eb:01:cf:0d:38:e2:b8:b3:92:cd:2d:db:2f:
25:1a:83:0a:6d:68:5e:91:87:aa:8d:63:7b:5a:c3:46:5e:3c:
13:d5:e5:e7:67:f7:df:91:ad:86:33:9a:2a:ad:7f:b1:c9:f6:
2f:bd:db:04:d5:0a:04:3b:e0:ee:84:02:d9:0a:48:58:64:83:
36:f2:b7:bb:2b:ce:ad:fa:4d:bb:72:a1:f2:bb:aa:64:40:07:
a7:d2:b8:4e:1f:aa:a8:77:a0:9e:66:04:94:62:ad:59:91:7f:
ca:59:d5:c4:6b:fd:b8:9f:9b:3c:2d:2e:65:fd:8e:60:74:52:
97:a1:5b:a5:fe:01:6a:a2:3a:d0:43:28:4f:05:cb:6a:c6:99:
5c:e0:82:40:5b:3e:df:bf:8f:9d:2a:76:e9:b5:95:b9:d2:90:
11:57:dc:bc:79:4f:73:56:7d:aa:28:0a:8d:c3:43:ac:24:34:
f0:88:1b:bb:ff:ea:f8:0d:f2:30:03:db:42:4f:53:5d:45:56:
41:cc:55:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:00:34 2026 by rpki-client