Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JRLYr06ZEvz8nNwzpABDxIHO-LU.roa
File: JRLYr06ZEvz8nNwzpABDxIHO-LU.roa (raw, json)
Hash identifier: 9EauQN+8SyO6jKaQjTnv7SueL5PcnpNlDU1ybQsvPfc=
Subject key identifier: 25:12:D8:AF:4E:99:12:FC:FC:9C:DC:33:A4:00:43:C4:81:CE:F8:B5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019715669C53154424F08C53040EEC96AA38
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JRLYr06ZEvz8nNwzpABDxIHO-LU.roa
Signing time: Wed 28 May 2025 05:38:55 +0000
ROA not before: Wed 28 May 2025 05:38:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214481
IP address blocks: 31.56.59.0/24 maxlen: 24
31.57.95.0/24 maxlen: 24
31.58.51.0/24 maxlen: 24
31.59.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:15:66:9c:53:15:44:24:f0:8c:53:04:0e:ec:96:aa:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 28 05:38:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2512d8af4e9912fcfc9cdc33a40043c481cef8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ca:9c:9f:c1:33:6d:9b:bc:8c:a8:3a:4c:8e:
61:fb:79:cd:8f:35:a5:97:d7:93:e7:05:22:78:79:
38:0e:07:82:f4:91:3c:60:0a:e1:3b:3d:4d:6b:1e:
29:38:f0:af:d5:ab:b0:a9:ae:51:09:bc:17:49:0d:
cc:22:79:7e:9d:21:02:73:32:5f:c4:3b:ac:bd:90:
2f:bd:b5:c7:7d:71:0d:a9:89:6d:0f:f1:2b:50:bd:
39:0b:89:6e:af:8f:48:d6:0e:42:20:a2:33:2c:b7:
e8:d8:52:c0:f4:14:3f:a9:48:33:ae:69:3e:03:8d:
43:7e:69:93:e9:c8:c4:5b:1a:d9:38:8d:87:85:4d:
30:3f:77:77:bd:3b:c1:c0:ea:0f:83:d9:09:b3:d5:
54:a9:b5:1e:85:49:d4:49:f7:58:3c:56:88:b6:b2:
da:ce:af:74:6c:41:e8:36:43:73:5f:8a:f8:1f:62:
58:fb:b3:b3:ca:bb:34:7a:4d:b6:7f:92:71:32:73:
ec:01:f2:6f:1e:75:52:fa:94:93:1f:d7:f3:a3:23:
17:9a:f4:c9:9c:bf:c6:08:0e:b5:a0:8c:77:42:8e:
35:ed:53:77:e8:52:57:d6:62:59:eb:bc:6e:c4:e3:
23:7d:47:25:03:06:7f:a6:70:27:d6:5f:c7:97:b5:
3e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:12:D8:AF:4E:99:12:FC:FC:9C:DC:33:A4:00:43:C4:81:CE:F8:B5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JRLYr06ZEvz8nNwzpABDxIHO-LU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.59.0/24
31.57.95.0/24
31.58.51.0/24
31.59.129.0/24
Signature Algorithm: sha256WithRSAEncryption
33:5b:7c:ce:97:d8:81:38:6c:40:92:ef:ab:ad:d0:37:4c:8d:
95:d7:20:77:ef:f9:25:55:aa:c4:d1:83:5f:e7:41:14:37:b4:
5c:b0:a0:d3:aa:c5:1f:4c:06:fd:15:61:5a:32:5a:f2:9a:20:
1c:2f:34:28:d0:fa:91:1a:d6:3d:2c:fc:f7:49:0b:fd:3e:4a:
33:74:98:02:1d:af:9c:ab:e4:78:58:4b:b1:4e:9b:ae:a3:11:
4d:29:ee:fe:7b:7c:19:8c:f2:e4:83:60:9b:85:87:0d:7b:20:
68:f8:b6:cf:d9:8b:5f:25:a2:09:fe:6b:ec:3a:9d:30:ca:66:
c0:0b:61:02:49:8b:7f:d6:12:8c:c6:ae:9f:c3:fc:47:37:b4:
07:b7:c4:7e:b1:c1:79:76:0b:b5:f7:83:ab:46:86:53:21:43:
d3:6e:72:1b:a8:2d:b5:87:f8:e3:5e:44:de:6c:51:a0:d5:91:
aa:03:5e:67:83:cc:0d:6c:c5:b7:d7:19:35:35:63:91:50:77:
ea:6b:99:9c:8c:a5:a8:17:5c:ea:5e:f1:b8:90:d3:bd:96:1e:
21:45:d7:12:fe:34:ac:cc:1d:7a:53:6a:e7:87:a7:5f:6b:00:
c4:f6:4e:36:4a:b4:3d:ff:3c:6a:bc:ce:ad:28:43:76:f0:6a:
b5:e6:e6:e2
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZcVZpxTFUQk8IxTBA7slqo4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNTI4MDUzODU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTEyZDhhZjRlOTkxMmZjZmM5Y2RjMzNhNDAwNDNjNDgxY2VmOGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8qcn8EzbZu8jKg6TI5h+3nNjzWl
l9eT5wUieHk4DgeC9JE8YArhOz1Nax4pOPCv1auwqa5RCbwXSQ3MInl+nSECczJf
xDusvZAvvbXHfXENqYltD/ErUL05C4lur49I1g5CIKIzLLfo2FLA9BQ/qUgzrmk+
A41DfmmT6cjEWxrZOI2HhU0wP3d3vTvBwOoPg9kJs9VUqbUehUnUSfdYPFaItrLa
zq90bEHoNkNzX4r4H2JY+7Ozyrs0ek22f5JxMnPsAfJvHnVS+pSTH9fzoyMXmvTJ
nL/GCA61oIx3Qo417VN36FJX1mJZ67xuxOMjfUclAwZ/pnAn1l/Hl7U+KwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFCUS2K9OmRL8/JzcM6QAQ8SBzvi1MB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvSlJMWXIwNlpFdno4bk53enBBQkR4SUhPLUxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAHzg7AwQA
HzlfAwQAHzozAwQAHzuBMA0GCSqGSIb3DQEBCwUAA4IBAQAzW3zOl9iBOGxAku+r
rdA3TI2V1yB37/klVarE0YNf50EUN7RcsKDTqsUfTAb9FWFaMlrymiAcLzQo0PqR
GtY9LPz3SQv9PkozdJgCHa+cq+R4WEuxTpuuoxFNKe7+e3wZjPLkg2CbhYcNeyBo
+LbP2YtfJaIJ/mvsOp0wymbAC2ECSYt/1hKMxq6fw/xHN7QHt8R+scF5dgu194Or
RoZTIUPTbnIbqC21h/jjXkTebFGg1ZGqA15ng8wNbMW31xk1NWORUHfqa5mcjKWo
F1zqXvG4kNO9lh4hRdcS/jSszB16U2rnh6dfawDE9k42SrQ9/zxqvM6tKEN28Gq1
5ubi
-----END CERTIFICATE-----
Generated at Thu Jun 5 04:09:05 2025 by rpki-client