Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kWF2mxKR_tnJeP_T34YEGZi8MnE.roa
File: kWF2mxKR_tnJeP_T34YEGZi8MnE.roa (raw, json)
Hash identifier: Ktyjh65+Pank6c0gWyRdy/8FY2lOz7fC21RUmOMHI3Q=
Subject key identifier: 91:61:76:9B:12:91:FE:D9:C9:78:FF:D3:DF:86:04:19:98:BC:32:71
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0196D2E0345CEEFFE40B76DD56CC3BCE096B
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kWF2mxKR_tnJeP_T34YEGZi8MnE.roa
Signing time: Thu 15 May 2025 07:37:10 +0000
ROA not before: Thu 15 May 2025 07:37:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43641
IP address blocks: 31.56.90.0/24 maxlen: 24
31.56.115.0/24 maxlen: 24
31.56.116.0/24 maxlen: 24
31.56.127.0/24 maxlen: 24
31.57.192.0/24 maxlen: 24
31.57.193.0/24 maxlen: 24
31.57.195.0/24 maxlen: 24
31.57.232.0/24 maxlen: 24
31.57.233.0/24 maxlen: 24
31.57.234.0/24 maxlen: 24
31.57.235.0/24 maxlen: 24
31.58.141.0/24 maxlen: 24
31.58.145.0/24 maxlen: 24
31.58.148.0/24 maxlen: 24
31.58.149.0/24 maxlen: 24
31.58.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Jun 2025 21:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:e0:34:5c:ee:ff:e4:0b:76:dd:56:cc:3b:ce:09:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 15 07:37:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9161769b1291fed9c978ffd3df86041998bc3271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c2:7a:74:6d:11:c5:cf:54:db:66:82:34:01:
c6:53:8b:85:cf:bc:66:eb:6d:d6:a4:fd:6f:7f:ab:
ce:b6:91:08:6c:df:7c:82:7f:58:66:2a:ac:c7:f8:
ae:1a:06:ac:b4:24:66:5c:30:d3:d8:d0:51:5a:4f:
d8:1b:20:a5:15:2c:d0:b1:82:4a:85:83:c2:ba:02:
96:7a:44:b3:a9:cc:81:a0:32:d7:08:c2:bf:9a:71:
bb:c1:c3:ff:9d:54:ba:ba:e6:22:36:0f:36:3a:49:
ac:30:4a:01:73:4d:9c:f3:3a:ea:b8:89:21:04:08:
3d:b0:ee:9f:52:04:52:14:2d:c8:5c:b6:0c:f4:c7:
17:88:91:9f:e1:56:55:ef:65:2b:cf:ec:e4:0e:51:
55:8b:bd:e2:46:f4:a0:8e:dc:61:42:25:1d:4f:6c:
68:8f:58:ed:3d:1c:a1:4f:e5:ab:cc:18:97:e2:d6:
49:50:97:2c:68:d2:57:cc:8b:66:19:86:04:40:07:
4b:27:33:7b:c8:fb:2a:de:37:96:a7:87:5a:7a:41:
4d:0e:de:0f:a4:84:87:11:91:e2:bd:c2:13:e0:66:
98:cf:de:02:4f:4b:4d:1b:f0:71:f0:73:24:b5:56:
d7:c3:84:89:a9:5b:9b:df:a1:9b:43:b0:89:9d:f2:
4c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:61:76:9B:12:91:FE:D9:C9:78:FF:D3:DF:86:04:19:98:BC:32:71
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kWF2mxKR_tnJeP_T34YEGZi8MnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.90.0/24
31.56.115.0-31.56.116.255
31.56.127.0/24
31.57.192.0/23
31.57.195.0/24
31.57.232.0/22
31.58.141.0/24
31.58.145.0/24
31.58.148.0/23
31.58.151.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:bb:5a:dd:e3:1a:6d:af:28:06:33:e9:dc:2d:17:1c:c7:61:
17:e8:ca:b0:39:cb:e5:36:08:46:94:4f:9c:4b:8f:0d:96:e9:
8b:de:76:6f:ec:a8:49:c3:d5:6b:a5:34:7a:32:8d:1d:91:cb:
07:b6:2f:3d:46:33:05:c7:53:dd:a0:ed:fb:80:d8:1e:e7:35:
18:df:9f:64:45:94:ff:74:2e:da:ee:81:5b:fc:4b:0e:37:4c:
c0:81:d5:5d:a6:a5:58:42:87:f7:46:02:d7:0c:69:5f:cc:c9:
c7:3a:8c:59:b2:27:24:59:f6:3d:72:d8:fb:30:9e:c7:25:18:
26:58:2c:79:1d:25:0c:a9:96:5e:42:af:61:2b:0e:2f:be:7a:
fe:11:e4:89:86:62:1b:ca:88:8f:6c:f2:cc:81:31:55:b6:cf:
d8:f2:12:44:4e:cb:ea:a2:d5:d8:ed:91:a6:75:28:24:b9:f3:
de:d9:b9:1d:91:03:17:be:a3:c1:d0:fd:12:b6:65:b4:af:7c:
cd:d6:ef:7b:82:44:ce:1c:51:bb:1a:23:2b:11:cd:cf:35:79:
53:6c:a5:b9:21:63:a0:71:f4:d5:d7:b2:f3:f8:25:c0:17:60:
55:34:c9:a6:68:f6:46:57:3f:2e:3c:e3:f1:7a:db:9a:48:8c:
a9:0d:b0:0b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 5 04:41:11 2025 by rpki-client