Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/nj_A9SiKma_xTYyoLoYeMX3bbWk.roa
File: nj_A9SiKma_xTYyoLoYeMX3bbWk.roa (raw, json)
Hash identifier: BvOa6kTlSnmkh9BxXFThQ9YRzyGEI5P6pmK0ZnAneyI=
Subject key identifier: 9E:3F:C0:F5:28:8A:99:AF:F1:4D:8C:A8:2E:86:1E:31:7D:DB:6D:69
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019EC653601A3E1AC0C8DCAEE96CAFAADF85
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/nj_A9SiKma_xTYyoLoYeMX3bbWk.roa
Signing time: Sun 14 Jun 2026 13:30:13 +0000
ROA not before: Sun 14 Jun 2026 13:30:13 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51082
IP address blocks: 31.56.122.0/24 maxlen: 24
31.58.146.0/24 maxlen: 24
31.59.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c6:53:60:1a:3e:1a:c0:c8:dc:ae:e9:6c:af:aa:df:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 14 13:30:13 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=9e3fc0f5288a99aff14d8ca82e861e317ddb6d69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:34:38:fb:f4:20:88:e0:50:cc:6c:8c:11:
d4:2b:e0:98:b9:0b:ff:f5:07:9e:3d:58:b9:ad:7c:
07:49:e3:c2:0e:6e:3e:fc:d7:ea:17:e9:9f:29:89:
ec:c1:5e:25:02:c9:31:8d:f0:ca:8d:60:01:57:01:
5f:98:14:28:9b:bb:78:50:29:81:b6:e3:90:57:a8:
c1:f0:16:eb:a7:d8:ed:6a:7f:29:3a:4c:38:4b:97:
0d:6f:11:f6:be:36:26:41:52:38:cb:b9:c0:5b:a5:
16:df:36:d0:f8:e1:e7:14:76:2d:16:8d:50:03:34:
78:ba:10:87:22:b3:23:41:a5:b2:e9:2c:28:bd:a3:
19:5f:16:18:df:7d:ca:8a:1f:5a:1b:db:1d:11:22:
0f:76:50:63:e2:31:a1:0d:67:29:39:ec:93:1e:fa:
e9:c7:5e:dc:2a:bb:48:d7:e3:3c:d6:0b:d1:8a:3d:
1f:4b:7d:48:a6:05:92:d7:1a:bb:1e:0f:71:84:d9:
8f:ad:03:db:cb:a7:28:e4:81:8e:41:68:20:ce:72:
5b:fc:c0:d8:0c:9e:01:15:08:bb:db:c3:9b:99:e2:
c7:1f:79:ca:53:a8:e7:6f:29:b2:1b:91:db:e0:ed:
59:13:cb:f8:d2:d8:7b:5c:6a:f7:c1:fc:b6:5c:c5:
98:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:3F:C0:F5:28:8A:99:AF:F1:4D:8C:A8:2E:86:1E:31:7D:DB:6D:69
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/nj_A9SiKma_xTYyoLoYeMX3bbWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.122.0/24
31.58.146.0/24
31.59.232.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:ab:8a:a9:86:d5:55:a1:13:56:a9:f1:b6:c5:75:05:89:aa:
32:08:b3:1b:f4:08:ad:64:fd:ac:36:66:d0:71:68:1e:46:3e:
af:09:46:d0:48:0e:5a:f4:10:09:07:9b:06:2f:15:6b:44:60:
a1:8a:2d:c8:15:36:5b:5f:cd:ee:fc:60:8e:45:98:a3:5a:ce:
03:9d:f7:b1:48:b4:37:ab:63:c5:aa:82:2d:42:91:b4:2c:9c:
df:b7:e5:6c:89:3a:83:d2:6c:68:1a:b3:cc:06:16:ae:f4:3d:
02:70:e6:83:ab:73:5d:4e:ce:0c:be:ac:15:29:99:c1:bb:df:
d3:84:3c:73:e5:f8:30:10:c3:3f:1d:7c:0c:67:50:29:d1:de:
81:f4:f7:25:a3:67:26:1b:b4:cb:a2:b5:e2:69:3c:41:03:c5:
34:0e:ec:65:77:f2:b6:01:56:69:e1:c0:2e:08:87:93:bc:2c:
96:a7:c7:73:cd:a2:94:3c:29:b8:fb:07:46:13:c2:63:0a:05:
f7:ef:ea:11:3a:b5:d4:c3:1b:1b:e1:00:69:fe:49:1c:3d:5b:
41:f7:9f:0b:7c:6b:ca:08:c0:19:52:41:0b:92:74:95:99:86:
d5:a1:2a:ac:5d:6d:da:c9:17:57:be:1e:70:52:ca:8d:7f:36:
b1:45:0e:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:02:35 2026 by rpki-client