Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GPjTYDsrfHTqB1G7tkx0ZDS92XM.roa
File: GPjTYDsrfHTqB1G7tkx0ZDS92XM.roa (raw, json)
Hash identifier: 2xwHDuxcDEE4g+hx2wYIpOhs1c1Gi6RMWZoMNKlC934=
Subject key identifier: 18:F8:D3:60:3B:2B:7C:74:EA:07:51:BB:B6:4C:74:64:34:BD:D9:73
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019F039A64DDDBF06307BFD738BDEAEC4813
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GPjTYDsrfHTqB1G7tkx0ZDS92XM.roa
Signing time: Fri 26 Jun 2026 11:04:37 +0000
ROA not before: Fri 26 Jun 2026 11:04:37 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 64439
IP address blocks: 31.56.208.0/24 maxlen: 24
31.56.211.0/24 maxlen: 24
94.183.155.0/24 maxlen: 24
217.60.10.0/24 maxlen: 24
217.60.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:03:9a:64:dd:db:f0:63:07:bf:d7:38:bd:ea:ec:48:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 26 11:04:37 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=18f8d3603b2b7c74ea0751bbb64c746434bdd973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:18:f3:87:16:3a:e0:71:19:b8:04:85:0a:57:
ad:a9:e8:b8:c1:b5:04:3c:60:5d:c9:25:3d:cc:77:
cf:8a:50:d8:f3:d7:a5:44:5e:44:08:76:26:c0:9c:
55:6c:3a:65:bd:68:bf:af:b7:a5:1e:78:2b:d6:61:
3b:0a:84:21:0c:d9:41:42:9e:ee:19:5b:81:03:a9:
14:ce:da:9e:26:8d:b6:b9:6a:02:9b:f9:74:39:dd:
4f:49:ec:5b:4c:85:3e:5d:bd:3d:25:11:fc:c5:6a:
b9:b6:d0:c0:45:17:d2:e0:53:91:4f:f6:42:1d:31:
ae:90:30:bb:89:7a:78:c9:06:61:03:48:0a:53:41:
27:27:2b:8a:b9:b8:1c:76:60:7b:05:a8:63:e1:02:
91:20:4c:06:c3:0e:cc:f1:40:ac:e6:7c:81:13:37:
0d:49:70:bb:07:47:dc:57:8c:de:27:2a:68:a3:b3:
09:c0:4e:96:11:a6:8d:1a:8e:43:c9:c5:d0:bd:a8:
a0:b9:e4:ce:80:66:e6:33:09:80:4a:86:66:75:ad:
4d:35:99:c6:39:ed:1b:6f:94:93:b5:eb:b2:19:cc:
6a:58:f7:04:c8:bb:79:18:65:a7:72:25:0c:3f:9b:
99:f5:44:4f:ff:51:fe:15:af:76:4b:7a:ae:b2:b5:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:F8:D3:60:3B:2B:7C:74:EA:07:51:BB:B6:4C:74:64:34:BD:D9:73
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/GPjTYDsrfHTqB1G7tkx0ZDS92XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.208.0/24
31.56.211.0/24
94.183.155.0/24
217.60.10.0/24
217.60.186.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:1c:67:60:be:3b:6d:9f:7c:6a:8e:d3:02:8c:3e:8f:47:e2:
6c:e5:e6:74:85:12:2b:ef:c6:47:f0:f5:5d:82:6d:08:3b:ef:
bd:7c:be:06:07:e6:e8:c7:0e:2a:61:2d:5e:13:93:0c:31:3f:
a2:e8:24:d0:b1:51:43:56:34:86:9a:6d:cf:f2:8d:d5:e9:7d:
f7:35:b3:e1:63:57:5e:55:fc:d4:54:b5:01:60:90:e9:31:ae:
89:6e:22:b7:45:96:da:21:78:f4:80:3d:65:e4:a6:13:1d:82:
1b:51:50:67:cb:70:00:81:d4:18:bc:e2:81:f0:9f:23:bf:b6:
86:71:6e:cf:48:ee:d8:d9:a1:f5:f8:80:f4:6e:cf:54:0d:b8:
b4:01:2f:a2:53:60:15:d2:a1:6e:02:12:01:07:71:8e:f7:5e:
50:46:6e:65:fb:6a:fc:84:bd:a7:c2:0e:1c:89:44:86:2f:61:
ac:b6:f4:d2:29:01:d2:9f:10:da:2e:96:88:b2:6a:20:5a:da:
9e:54:e8:86:be:37:78:22:ba:1f:1f:83:fb:67:62:90:9a:8f:
a4:42:e6:c2:e8:75:f3:0d:76:4c:27:92:d2:5c:8b:ac:c1:98:
4d:13:20:ea:4b:1e:72:9c:54:a6:db:aa:ad:11:7a:42:5d:b1:
b1:5e:8e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:00:36 2026 by rpki-client