Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AkZAuwJB_OP9X8S9replakBZTaU.roa
File: AkZAuwJB_OP9X8S9replakBZTaU.roa (raw, json)
Hash identifier: cAVSBKbbZrF8lmiTjS3yId9krsjqWmbHcCGjFjdWZ/Y=
Subject key identifier: 02:46:40:BB:02:41:FC:E3:FD:5F:C4:BD:AD:EA:65:6A:40:59:4D:A5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EE00D528D5012A345356B631387D48E8F
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AkZAuwJB_OP9X8S9replakBZTaU.roa
Signing time: Fri 19 Jun 2026 13:23:49 +0000
ROA not before: Fri 19 Jun 2026 13:23:49 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 30058
IP address blocks: 31.58.38.0/24 maxlen: 24
31.58.183.0/24 maxlen: 24
31.59.162.0/24 maxlen: 24
31.59.164.0/24 maxlen: 24
94.183.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e0:0d:52:8d:50:12:a3:45:35:6b:63:13:87:d4:8e:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 19 13:23:49 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=024640bb0241fce3fd5fc4bdadea656a40594da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c4:66:c9:b2:c5:3f:4f:b1:f7:a5:60:ed:e9:
3b:bd:3e:48:b6:bd:c4:6c:3a:02:85:70:45:37:ab:
28:07:45:da:45:38:34:56:07:32:59:06:71:a3:25:
6a:86:dd:cf:1b:d6:67:45:1f:1b:2a:74:3d:df:5c:
33:dd:6f:1e:ee:76:e6:1f:69:77:4a:8d:7b:b5:85:
e4:35:56:9f:ff:e5:c9:43:c1:b3:66:03:f1:8c:40:
08:35:0c:ef:36:a2:f6:dd:9f:ce:f8:04:d4:f6:59:
8f:c6:0b:d3:8d:5f:7c:97:f6:a3:1b:88:24:e1:02:
07:0b:5a:94:f9:cc:34:f5:6e:46:d3:69:af:3b:f3:
ea:5d:eb:aa:4a:fb:5b:28:ec:60:65:7a:7c:d3:a6:
58:ce:a1:2f:22:ea:6c:90:b9:4a:7a:fb:ac:78:aa:
2a:45:e0:c2:d1:e2:f0:92:ac:8d:9d:55:d2:b4:05:
4f:d3:fb:96:5f:a2:1d:3d:25:73:28:ec:e0:2e:6b:
76:c2:fa:55:01:63:d9:e8:c1:51:8f:85:cf:1c:fe:
a5:84:f9:18:0a:e6:e9:3b:b4:f6:dd:c4:0c:f0:af:
a4:05:37:4a:61:36:84:00:65:89:57:87:51:d3:b0:
64:9a:16:6e:d3:d4:5c:a2:56:1d:d3:bd:cd:90:c4:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:46:40:BB:02:41:FC:E3:FD:5F:C4:BD:AD:EA:65:6A:40:59:4D:A5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AkZAuwJB_OP9X8S9replakBZTaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.38.0/24
31.58.183.0/24
31.59.162.0/24
31.59.164.0/24
94.183.229.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:10:a4:70:e4:ce:f0:b0:2b:d6:57:80:f0:1a:21:1c:22:c9:
da:7b:7d:3c:82:1e:89:20:4e:67:aa:35:8b:ff:a4:0f:d9:97:
08:bd:8b:ec:29:04:1f:7a:be:fa:bd:87:58:ff:dd:ad:35:c1:
ab:46:5c:7a:ab:d5:5e:c1:2c:80:7d:ec:8c:6b:b7:95:53:c4:
0c:86:3c:e3:7c:c8:eb:f5:22:f1:ad:a9:13:6c:03:87:18:68:
2c:29:de:7a:11:03:90:5d:48:a6:26:f8:61:3f:ea:19:97:2e:
6a:4e:1d:e9:60:c8:40:fb:2c:40:73:16:60:5b:31:d2:03:ae:
91:3c:00:30:ce:cb:34:5e:a6:e9:d5:6a:6e:39:57:b9:81:9b:
aa:b9:9e:8e:78:e0:c1:de:3b:9d:20:b5:f3:fb:d7:2e:b0:d9:
70:ae:be:60:dc:6f:d4:27:01:aa:d3:2d:0b:a8:4a:21:09:2b:
b5:c3:55:e2:30:5b:94:14:ff:af:83:bc:a8:e8:8d:af:56:e9:
bd:a5:a3:16:2e:12:a0:04:32:3c:00:21:b0:9e:31:24:fd:61:
c6:35:0c:d4:90:63:25:e5:bd:78:02:82:88:d8:38:af:00:b6:
8c:ea:fa:ff:b4:b7:47:da:f7:a6:d2:e2:0e:0b:92:a5:90:29:
d2:e6:1c:f7
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAZ7gDVKNUBKjRTVrYxOH1I6PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjYwNjE5MTMyMzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjQ2NDBiYjAyNDFmY2UzZmQ1ZmM0YmRhZGVhNjU2YTQwNTk0ZGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2cRmybLFP0+x96Vg7ek7vT5Itr3E
bDoChXBFN6soB0XaRTg0VgcyWQZxoyVqht3PG9ZnRR8bKnQ931wz3W8e7nbmH2l3
So17tYXkNVaf/+XJQ8GzZgPxjEAINQzvNqL23Z/O+ATU9lmPxgvTjV98l/ajG4gk
4QIHC1qU+cw09W5G02mvO/PqXeuqSvtbKOxgZXp806ZYzqEvIupskLlKevuseKoq
ReDC0eLwkqyNnVXStAVP0/uWX6IdPSVzKOzgLmt2wvpVAWPZ6MFRj4XPHP6lhPkY
CubpO7T23cQM8K+kBTdKYTaEAGWJV4dR07BkmhZu09RcolYd073NkMQFCQIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFAJGQLsCQfzj/V/Eva3qZWpAWU2lMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvQWtaQXV3SkJfT1A5WDhTOXJlcGxha0JaVGFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAHzomAwQA
Hzq3AwQAHzuiAwQAHzukAwQAXrflMA0GCSqGSIb3DQEBCwUAA4IBAQBbEKRw5M7w
sCvWV4DwGiEcIsnae308gh6JIE5nqjWL/6QP2ZcIvYvsKQQfer76vYdY/92tNcGr
Rlx6q9VewSyAfeyMa7eVU8QMhjzjfMjr9SLxrakTbAOHGGgsKd56EQOQXUimJvhh
P+oZly5qTh3pYMhA+yxAcxZgWzHSA66RPAAwzss0Xqbp1WpuOVe5gZuquZ6OeODB
3judILXz+9cusNlwrr5g3G/UJwGq0y0LqEohCSu1w1XiMFuUFP+vg7yo6I2vVum9
paMWLhKgBDI8ACGwnjEk/WHGNQzUkGMl5b14AoKI2DivALaM6vr/tLdH2vem0uIO
C5KlkCnS5hz3
-----END CERTIFICATE-----
Generated at Fri Jun 26 17:01:28 2026 by rpki-client