Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eDjsZ0ea6U6f9sdqA0KifKsbMDw.roa
File: eDjsZ0ea6U6f9sdqA0KifKsbMDw.roa (raw, json)
Hash identifier: RZt0z6l2ze1LW+9Xeek4uF5zrM7f+4s3e67cUD2U7+8=
Subject key identifier: 78:38:EC:67:47:9A:E9:4E:9F:F6:C7:6A:03:42:A2:7C:AB:1B:30:3C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019E2A0EDECE54FDC910478236A34EA605DF
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eDjsZ0ea6U6f9sdqA0KifKsbMDw.roa
Signing time: Fri 15 May 2026 05:14:38 +0000
ROA not before: Fri 15 May 2026 05:14:38 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 211826
IP address blocks: 31.57.160.0/24 maxlen: 24
31.57.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 May 2026 04:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:0e:de:ce:54:fd:c9:10:47:82:36:a3:4e:a6:05:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 15 05:14:38 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=7838ec67479ae94e9ff6c76a0342a27cab1b303c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:0d:69:f7:41:81:b0:4d:4e:3e:74:92:7a:
67:74:c0:35:e6:6e:ff:4a:87:c3:25:c6:67:8c:1f:
c0:fc:04:24:d7:6d:0d:f8:16:4d:6f:d3:43:e9:8e:
8a:bf:55:d6:92:55:1d:10:b8:e8:ae:dd:c5:c9:b3:
b1:cb:dc:3b:88:8a:ce:38:bf:ba:70:9d:8e:61:b3:
85:fc:06:32:d6:2f:d5:e9:b5:7b:d3:21:55:a4:0d:
8b:6c:bc:fd:19:71:64:87:cc:91:fb:15:ea:e5:0a:
d6:5a:4b:fb:7f:f0:49:c2:81:c4:f2:21:ba:13:8e:
a3:44:dd:d4:c2:3a:1a:7e:7b:5f:ba:ef:bd:6c:f8:
be:0e:09:bc:4b:9b:a2:15:93:2e:18:bc:22:b9:d6:
24:58:c0:9c:b5:34:89:b0:ac:72:e9:35:13:fd:f0:
6e:e5:0a:41:b3:d2:6b:01:b7:49:9c:cd:74:8b:0e:
41:b2:c7:12:15:17:35:9e:b3:b7:c4:b2:0d:99:03:
df:7e:c9:8f:ef:63:d8:db:cd:ad:39:d9:72:63:61:
af:dc:5b:fa:11:12:87:13:4e:46:23:fd:e4:52:7a:
b3:52:03:ff:1b:8c:14:4a:f0:8d:91:e4:f5:74:7c:
d4:57:c4:9c:9d:0b:5b:24:0e:57:65:0f:fb:1c:ce:
bd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:38:EC:67:47:9A:E9:4E:9F:F6:C7:6A:03:42:A2:7C:AB:1B:30:3C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eDjsZ0ea6U6f9sdqA0KifKsbMDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.160.0/24
31.57.173.0/24
Signature Algorithm: sha256WithRSAEncryption
24:fd:78:5f:63:63:4a:92:8a:22:60:d2:8b:bd:8b:c9:de:b2:
9d:58:50:2e:84:8f:77:43:1f:64:7c:93:32:c8:70:be:d3:70:
93:c4:eb:cf:44:20:aa:51:9a:f3:23:ec:b7:77:1b:f6:a0:8e:
cb:1a:a9:57:77:13:b1:00:b0:69:45:c0:40:f7:28:bf:b1:fa:
05:82:05:b9:e6:08:2d:4b:b1:f4:42:aa:73:c9:52:e1:cf:e1:
38:d4:4c:ef:73:30:74:96:8f:7a:86:b6:11:2f:28:c4:d9:db:
cd:90:2b:44:d4:78:71:66:15:2b:2e:3c:bb:0e:66:fc:4a:46:
11:c7:9c:42:ac:15:b6:59:c6:7e:7c:84:e2:20:71:bb:bf:7b:
fa:42:29:61:9c:ef:f5:91:3d:f0:3a:19:0c:26:15:7f:1c:db:
38:c3:01:b3:08:8b:55:8c:bb:30:1f:74:ee:e8:d3:a7:17:fa:
2e:fd:cc:9d:f6:31:04:31:02:70:44:20:a0:ae:1f:53:0b:8b:
16:64:44:ab:bb:46:18:04:46:43:c1:fb:ae:ff:3f:56:c7:20:
76:fa:eb:5b:5b:a2:4f:50:58:8a:5f:e7:5e:0e:ef:18:8c:da:
19:b7:c1:82:53:3d:b6:5e:3b:73:5c:29:24:73:31:4a:4d:18:
d5:8d:96:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 13:11:32 2026 by rpki-client