Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5laKmoxb5JTONbQ64rd2dt8Y8U.roa
File: e5laKmoxb5JTONbQ64rd2dt8Y8U.roa (raw, json)
Hash identifier: 3b9g1S1He84Gtp2Cam4D8SHMoqSWtZCXm24QrXIamKE=
Subject key identifier: 7B:99:5A:2A:6A:31:6F:92:53:38:D6:D0:EB:8A:DD:D9:DB:7C:63:C5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019D2EF2D46D81C8BA283AE42B24FC4B5F94
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5laKmoxb5JTONbQ64rd2dt8Y8U.roa
Signing time: Fri 27 Mar 2026 10:59:18 +0000
ROA not before: Fri 27 Mar 2026 10:59:18 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63199
IP address blocks: 31.56.34.0/24 maxlen: 24
31.56.46.0/24 maxlen: 24
31.56.64.0/24 maxlen: 24
31.56.75.0/24 maxlen: 24
31.57.13.0/24 maxlen: 24
31.57.143.0/24 maxlen: 24
31.59.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 08:23:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2e:f2:d4:6d:81:c8:ba:28:3a:e4:2b:24:fc:4b:5f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 27 10:59:18 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7b995a2a6a316f925338d6d0eb8addd9db7c63c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:92:e1:37:bc:1f:72:84:fa:e4:54:5d:ab:48:
5b:6d:98:84:16:61:87:9d:67:ef:ce:38:e9:c0:67:
61:f0:2d:52:b8:e0:0b:06:df:44:14:f1:ec:dc:0b:
9f:c7:d2:c0:21:cd:a1:a4:22:46:ca:1b:20:a4:b1:
cd:0a:07:26:7d:bc:e9:25:66:43:61:b1:c1:e3:02:
a0:0e:d0:58:3c:4c:a3:48:ec:6d:07:55:98:d8:52:
31:8c:08:35:f5:bf:be:b2:5b:22:5e:86:9c:02:71:
2e:b3:4e:0d:c2:14:4c:38:5a:c5:7c:11:cd:8c:71:
cc:8b:95:55:1a:30:2a:dd:04:2c:89:bb:ff:50:8d:
74:80:6f:46:04:a0:36:86:42:2c:59:de:7f:d8:1b:
a1:b5:3d:96:a4:7a:07:12:1a:2a:ed:f3:b8:f7:71:
ca:73:6d:34:59:9f:30:13:0b:ea:58:ac:be:5f:19:
08:3d:0c:b4:0e:e5:11:7b:14:42:22:ad:4e:5e:19:
69:af:45:ba:63:cd:3d:7b:f6:2b:31:72:d3:ba:df:
38:c2:f1:10:71:49:30:54:0d:1c:a1:f1:0c:d4:d5:
c0:31:64:93:7e:fc:f6:d0:60:6a:2a:ec:c4:c4:31:
de:c1:6b:6d:16:cc:c1:c0:b0:ed:1e:1d:c6:6f:34:
63:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:99:5A:2A:6A:31:6F:92:53:38:D6:D0:EB:8A:DD:D9:DB:7C:63:C5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/e5laKmoxb5JTONbQ64rd2dt8Y8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.34.0/24
31.56.46.0/24
31.56.64.0/24
31.56.75.0/24
31.57.13.0/24
31.57.143.0/24
31.59.52.0/24
Signature Algorithm: sha256WithRSAEncryption
21:02:41:58:da:7f:27:2c:cd:c7:97:9a:0b:14:7c:a0:ba:26:
4c:3b:55:92:d1:94:51:9a:5a:7d:55:aa:82:d1:f4:17:89:0f:
40:43:ff:38:cf:99:2a:b2:92:cc:9d:ac:5d:18:e1:ce:3c:79:
98:13:20:22:41:0b:1c:ea:1e:09:8e:47:00:8e:77:95:26:c0:
81:97:f8:e8:14:db:76:09:4c:15:9d:1c:cc:4d:a7:ff:e4:9d:
b2:65:b6:f8:cb:3e:70:06:e1:a4:5e:51:ab:10:84:06:98:16:
21:48:1a:01:be:39:5f:00:f4:83:5b:04:ac:68:bc:58:cf:41:
f0:41:99:5d:8c:4f:5b:c4:48:04:71:4c:53:0a:3a:2e:67:07:
3f:d9:fd:be:dc:08:19:ee:28:f8:05:8b:c8:79:e2:ba:e2:4f:
ea:ba:16:00:e9:ac:a8:f1:a1:b0:5f:e8:2d:db:a5:09:63:5a:
e7:11:a2:c5:d3:f7:5e:37:78:60:0b:60:0a:9d:e3:05:d1:01:
0b:91:6c:1d:a8:eb:2a:bc:92:cb:35:3f:d6:38:a1:98:32:c8:
58:13:3e:c2:c9:c6:79:b6:91:53:7d:fb:bc:ef:64:3a:1d:b2:
08:7d:e7:0e:6f:fd:ad:08:df:3b:7b:2c:23:d3:a3:19:4c:19:
05:3c:bb:e9
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZ0u8tRtgci6KDrkKyT8S1+UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjYwMzI3MTA1OTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Yjk5NWEyYTZhMzE2ZjkyNTMzOGQ2ZDBlYjhhZGRkOWRiN2M2M2M1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5LhN7wfcoT65FRdq0hbbZiEFmGH
nWfvzjjpwGdh8C1SuOALBt9EFPHs3Aufx9LAIc2hpCJGyhsgpLHNCgcmfbzpJWZD
YbHB4wKgDtBYPEyjSOxtB1WY2FIxjAg19b++slsiXoacAnEus04NwhRMOFrFfBHN
jHHMi5VVGjAq3QQsibv/UI10gG9GBKA2hkIsWd5/2BuhtT2WpHoHEhoq7fO493HK
c200WZ8wEwvqWKy+XxkIPQy0DuURexRCIq1OXhlpr0W6Y809e/YrMXLTut84wvEQ
cUkwVA0cofEM1NXAMWSTfvz20GBqKuzExDHewWttFszBwLDtHh3GbzRj6wIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFHuZWipqMW+SUzjW0OuK3dnbfGPFMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvZTVsYUttb3hiNUpUT05iUTY0cmQyZHQ4WThVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQAHzgiAwQA
HzguAwQAHzhAAwQAHzhLAwQAHzkNAwQAHzmPAwQAHzs0MA0GCSqGSIb3DQEBCwUA
A4IBAQAhAkFY2n8nLM3Hl5oLFHyguiZMO1WS0ZRRmlp9VaqC0fQXiQ9AQ/84z5kq
spLMnaxdGOHOPHmYEyAiQQsc6h4JjkcAjneVJsCBl/joFNt2CUwVnRzMTaf/5J2y
Zbb4yz5wBuGkXlGrEIQGmBYhSBoBvjlfAPSDWwSsaLxYz0HwQZldjE9bxEgEcUxT
CjouZwc/2f2+3AgZ7ij4BYvIeeK64k/quhYA6ayo8aGwX+gt26UJY1rnEaLF0/de
N3hgC2AKneMF0QELkWwdqOsqvJLLNT/WOKGYMshYEz7CycZ5tpFTffu872Q6HbII
fecOb/2tCN87eywj06MZTBkFPLvp
-----END CERTIFICATE-----
Generated at Sat Mar 28 17:00:13 2026 by rpki-client