Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SRycexXzLDiuiQet-qVxmusK4fQ.roa
File: SRycexXzLDiuiQet-qVxmusK4fQ.roa (raw, json)
Hash identifier: rAT9syjhuRk+MyR2AXjgelaH+M0jYAGBgv7llAyAWOU=
Subject key identifier: 49:1C:9C:7B:15:F3:2C:38:AE:89:07:AD:FA:A5:71:9A:EB:0A:E1:F4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019D52F91264F694B1819A6F3D3F375479D2
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SRycexXzLDiuiQet-qVxmusK4fQ.roa
Signing time: Fri 03 Apr 2026 10:52:28 +0000
ROA not before: Fri 03 Apr 2026 10:52:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 402289
IP address blocks: 31.57.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Apr 2026 02:28:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:52:f9:12:64:f6:94:b1:81:9a:6f:3d:3f:37:54:79:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 3 10:52:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=491c9c7b15f32c38ae8907adfaa5719aeb0ae1f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:71:a6:de:95:25:7a:9a:cd:ec:46:d4:d5:92:
9f:ad:67:99:91:71:95:82:ee:a4:e6:03:4d:a2:4a:
cf:b2:91:77:92:8f:9d:1c:66:14:bc:3e:14:47:11:
41:6e:52:0f:8b:7d:83:64:c1:70:e3:9e:29:8e:d7:
a6:d8:23:ab:2a:cf:01:14:14:6c:11:f6:18:6c:52:
bd:f1:f0:b8:55:ac:50:24:a0:f3:be:cd:5e:23:99:
44:66:62:99:b0:c1:65:e4:e3:1b:97:80:40:4e:0a:
7d:6e:04:6d:71:5b:b2:09:e2:58:3c:d3:0c:e2:1f:
29:ab:f3:d3:93:5d:9d:a1:83:ad:5b:16:cc:ea:79:
ea:fe:8a:2c:28:75:1d:b2:b3:83:25:02:51:c2:e6:
5c:cd:6f:8d:1f:02:f5:07:7c:3e:db:65:9b:17:6f:
b5:22:2b:e5:aa:7f:e4:5f:6f:5d:c6:53:c7:27:3c:
02:e5:fc:6c:2a:51:6c:09:3c:4b:46:09:84:03:03:
fe:a6:45:0a:20:8b:89:22:15:12:40:70:6c:fd:df:
ef:28:14:5e:d2:9f:d3:7b:b7:b3:c0:75:44:03:d2:
52:22:d5:70:62:ce:fb:0b:69:6d:de:52:1a:0e:db:
1c:2e:53:e8:58:23:d4:08:63:4e:b5:e3:9e:5e:88:
88:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1C:9C:7B:15:F3:2C:38:AE:89:07:AD:FA:A5:71:9A:EB:0A:E1:F4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/SRycexXzLDiuiQet-qVxmusK4fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.222.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:db:4b:d3:83:3d:72:a9:3c:22:d9:60:90:3f:b5:8d:40:66:
b7:e5:dc:ad:d6:9c:7d:ae:63:c6:1d:2b:bf:2f:0e:f7:44:9f:
fa:58:0f:9b:fe:6a:87:f7:6f:55:77:1a:3c:ae:80:ae:25:a4:
b6:4b:d2:46:e4:4e:69:cd:4c:2f:05:e1:89:14:d6:5e:12:bf:
f8:99:6d:4c:c9:02:bc:a9:48:4f:b4:1d:03:d6:c4:d4:cd:cf:
39:ef:67:36:46:88:c4:9e:ef:c7:ad:b4:c6:e4:21:70:44:51:
9a:f9:74:8a:23:77:7f:8a:96:9d:35:41:30:fc:a3:e1:f5:ba:
90:05:bf:27:69:7e:68:4e:65:b4:5a:16:f2:ad:86:a6:29:37:
5f:f7:01:16:26:ef:2e:02:84:48:00:b4:e0:f3:5f:95:22:9a:
da:be:53:64:17:00:28:36:9f:a8:87:29:45:9b:7a:b8:3c:ea:
c1:5b:b3:06:9d:96:84:aa:94:61:15:33:3d:1f:9d:aa:47:4c:
1a:55:91:e3:d1:6b:a6:9a:85:0a:56:b4:88:2a:ff:89:26:b3:
a3:d8:8a:48:d9:cb:6c:da:83:7c:ab:fa:75:ce:7a:a1:91:e9:
c7:f9:f2:58:ca:5e:af:c6:f6:d0:82:56:92:b6:f2:3c:72:4c:
6b:91:e4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 12 08:13:53 2026 by rpki-client