Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DtIE7TdASn7x9ft6wM87-e6vDjU.roa
File: DtIE7TdASn7x9ft6wM87-e6vDjU.roa (raw, json)
Hash identifier: uM2BsOr7JiGKbt0L3Q/x7yE4lWoAoVb3uW668rADofY=
Subject key identifier: 0E:D2:04:ED:37:40:4A:7E:F1:F5:FB:7A:C0:CF:3B:F9:EE:AF:0E:35
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019730E75C8E8A2358B0CEDB8983C8BD965C
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DtIE7TdASn7x9ft6wM87-e6vDjU.roa
Signing time: Mon 02 Jun 2025 13:49:18 +0000
ROA not before: Mon 02 Jun 2025 13:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207625
IP address blocks: 31.58.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:30:e7:5c:8e:8a:23:58:b0:ce:db:89:83:c8:bd:96:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 2 13:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0ed204ed37404a7ef1f5fb7ac0cf3bf9eeaf0e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:51:f2:40:bc:8e:a2:43:4b:00:08:48:34:1f:
ba:09:03:aa:e6:b2:84:cd:a1:8c:80:8b:7d:0a:08:
1a:aa:31:45:18:0e:ea:83:62:e0:41:7c:3b:7f:e1:
a8:9d:01:b2:5d:88:f5:10:ff:6f:9b:03:b9:e8:2f:
c8:80:c7:3c:4c:c5:aa:63:5e:ac:d0:c0:1f:b8:e3:
6a:05:72:de:dc:8f:95:c2:49:79:7c:70:28:4e:3f:
a6:27:57:82:f7:a5:70:9e:b2:f2:5e:ff:20:fe:3f:
63:eb:46:6a:16:1d:f9:0e:91:b5:2d:1c:28:f9:f2:
23:6e:9d:a5:15:8b:80:86:0a:ea:f3:e0:55:6c:52:
a5:ea:a2:2f:c7:c1:5e:e1:69:75:2b:11:ea:02:d4:
dc:0f:7b:77:c4:22:d3:46:00:fa:8d:08:f2:6f:43:
c6:74:1d:12:6e:f7:a8:02:1f:63:03:bb:77:6d:bc:
ca:d7:b0:ef:c8:73:e5:d1:60:f2:aa:90:4a:a6:e6:
a1:ef:cd:a4:ec:95:fb:77:3a:70:48:b9:97:21:7a:
ac:11:9b:f7:d8:2e:b1:b9:63:0f:44:70:b5:8d:f5:
e4:5d:bb:81:47:65:98:e3:41:3e:25:34:66:7b:0e:
8a:f2:eb:bc:a0:4e:ec:18:d2:8e:5a:03:9c:8b:e0:
0e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D2:04:ED:37:40:4A:7E:F1:F5:FB:7A:C0:CF:3B:F9:EE:AF:0E:35
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/DtIE7TdASn7x9ft6wM87-e6vDjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.247.0/24
Signature Algorithm: sha256WithRSAEncryption
70:ea:16:e2:9c:e7:6c:20:c7:4c:f0:77:bf:cf:0d:39:af:24:
b3:2c:e3:a1:5e:11:e4:e4:a8:f5:2c:2e:da:ad:f5:c9:77:bd:
69:1f:f3:b3:46:a8:dd:de:c2:4e:ed:36:b6:d1:bc:8e:b7:6d:
ca:2d:a3:9b:10:e5:ec:dd:1a:32:68:d0:78:68:c1:e3:ae:1c:
5b:02:02:e6:c6:23:2a:07:a2:31:35:b2:e1:61:ad:1e:84:7a:
6a:7f:94:24:64:66:20:f1:c5:56:ae:69:34:2d:73:93:e2:d0:
10:a0:6d:b4:69:eb:03:f0:92:af:52:6e:bb:5b:77:aa:a5:2e:
c5:92:a6:ef:42:8e:89:e0:dd:3b:da:e6:0c:11:f6:01:23:fb:
4c:11:f3:ff:88:43:e2:1f:31:7b:77:ea:85:92:4a:36:3f:a5:
e6:74:e0:ab:10:57:59:e8:88:be:25:11:c5:e1:27:dd:0d:9a:
77:e7:5a:ba:3a:3c:fa:53:ea:ec:d6:ab:a5:91:fb:f2:b9:f3:
24:cc:ab:3f:fc:ed:6e:a4:0f:01:bf:1f:a3:33:df:81:6f:8a:
3c:e6:59:77:bf:a9:5a:21:b4:90:6e:91:d1:a3:46:84:d4:14:
c8:58:02:51:f7:04:18:b6:95:fc:e5:f5:36:ab:f8:d2:be:95:
c9:68:2b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 03:38:11 2025 by rpki-client