Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HV0NBPG4vBquWxIM3lSbqCTOM3o.roa
File: HV0NBPG4vBquWxIM3lSbqCTOM3o.roa (raw, json)
Hash identifier: p0bOGFbBOP5+AzBnBIYMHe3rKFkQT7TMIjgt7CZGvug=
Subject key identifier: 1D:5D:0D:04:F1:B8:BC:1A:AE:5B:12:0C:DE:54:9B:A8:24:CE:33:7A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0199430E0582E2C3C9E28BC68CEE8CE72AA4
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HV0NBPG4vBquWxIM3lSbqCTOM3o.roa
Signing time: Sat 13 Sep 2025 12:30:16 +0000
ROA not before: Sat 13 Sep 2025 12:30:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 31.57.53.0/24 maxlen: 24
94.183.160.0/24 maxlen: 24
94.183.178.0/24 maxlen: 24
94.183.181.0/24 maxlen: 24
217.60.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Sep 2025 05:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:43:0e:05:82:e2:c3:c9:e2:8b:c6:8c:ee:8c:e7:2a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 13 12:30:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d5d0d04f1b8bc1aae5b120cde549ba824ce337a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:87:b6:08:89:19:11:87:86:30:08:c9:a7:95:
c6:20:c7:45:74:d4:aa:bf:8c:da:9b:bf:62:e1:02:
cd:e3:33:bd:6b:b5:02:fb:bb:bf:d8:e6:91:e6:c9:
8f:db:ec:c5:20:5f:eb:cb:f9:58:54:01:37:58:c3:
4f:14:86:15:db:b7:bc:5d:20:cd:67:6e:3b:51:b7:
cb:df:6d:6e:d8:6f:10:57:f2:bc:2b:86:d7:ff:0d:
df:18:f9:d1:6a:42:e7:f6:56:6e:d9:13:1d:a9:6a:
4b:cd:18:cf:ab:45:15:9b:06:b5:52:2b:2b:fd:4b:
d8:ca:3c:83:bb:55:e9:49:49:58:a6:eb:5a:57:d2:
ca:e8:3d:02:92:e4:f3:46:18:59:9a:f3:fd:67:91:
c5:13:a2:e7:b3:55:55:61:92:84:a7:e7:a9:cd:c4:
f8:76:0e:8b:86:02:7b:09:07:0c:01:b9:f3:1e:82:
d7:f9:bc:dd:5c:03:2b:95:a0:a8:1f:35:39:7b:40:
70:b5:73:d1:cd:24:9d:f0:31:e7:f1:e7:69:6c:12:
c5:7f:94:79:87:10:57:0d:ce:10:a7:d4:c3:2c:df:
6c:88:d8:7c:c9:ea:0c:db:47:1e:59:f2:a2:15:69:
7b:23:05:0f:de:e6:c6:c3:28:df:99:d2:2f:52:02:
54:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5D:0D:04:F1:B8:BC:1A:AE:5B:12:0C:DE:54:9B:A8:24:CE:33:7A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/HV0NBPG4vBquWxIM3lSbqCTOM3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.53.0/24
94.183.160.0/24
94.183.178.0/24
94.183.181.0/24
217.60.14.0/24
Signature Algorithm: sha256WithRSAEncryption
92:a3:46:30:3a:63:80:81:82:58:5a:9c:fc:60:76:ac:ab:84:
84:62:e9:fe:a5:3c:b8:31:85:46:a7:1a:1b:e8:3a:30:9c:0f:
d1:84:71:e7:0e:b3:98:97:75:91:77:94:97:89:df:9d:47:17:
2d:35:12:55:af:90:63:2d:56:48:ef:16:10:dc:74:ef:11:97:
35:51:74:65:33:17:fd:d3:7a:ca:9a:f5:08:9b:a9:6c:b8:c2:
3d:4d:21:70:60:ce:72:09:0e:3a:2c:74:77:fa:5a:42:d5:46:
13:ac:b9:49:82:b9:4a:96:43:e9:b0:13:c5:01:3b:97:17:78:
f0:72:ec:0e:dd:56:ce:5a:fe:c6:16:a3:6c:ff:40:c9:c8:7a:
2b:eb:58:a5:8a:8e:4a:68:ec:f4:ea:8b:bf:40:70:14:7f:4b:
7e:c6:26:2d:77:9d:ea:7e:e1:f5:a5:cb:4e:b5:ad:f4:8d:be:
78:bb:65:12:d6:6c:cb:15:b7:8a:40:88:2f:ee:69:1c:0c:e5:
b9:f3:52:6f:69:12:b1:26:7c:78:15:1d:ee:f1:d2:a4:95:44:
39:27:50:f0:6d:8c:aa:4f:c3:78:93:81:6f:ab:9f:12:9d:63:
fb:61:1a:d8:67:82:6e:41:c9:18:3f:25:72:6e:06:f5:b0:8a:
ec:5d:bb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 14 12:00:17 2025 by rpki-client