Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wDICwdwd1u73uPQNIJN_QhEtjE0.roa
File: wDICwdwd1u73uPQNIJN_QhEtjE0.roa (raw, json)
Hash identifier: XIEVLLUrOQKGAqUdob+F9CPmQ7awGWj155Su2oXqXzI=
Subject key identifier: C0:32:02:C1:DC:1D:D6:EE:F7:B8:F4:0D:20:93:7F:42:11:2D:8C:4D
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019E84F76D5C9A3FEC159260AF723FEA4E16
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wDICwdwd1u73uPQNIJN_QhEtjE0.roa
Signing time: Mon 01 Jun 2026 20:54:28 +0000
ROA not before: Mon 01 Jun 2026 20:54:28 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 51396
IP address blocks: 31.57.37.0/24 maxlen: 24
31.57.185.0/24 maxlen: 24
217.60.197.0/24 maxlen: 24
217.60.241.0/24 maxlen: 24
217.60.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:84:f7:6d:5c:9a:3f:ec:15:92:60:af:72:3f:ea:4e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jun 1 20:54:28 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=c03202c1dc1dd6eef7b8f40d20937f42112d8c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a7:aa:a2:12:f8:92:47:10:5d:ef:21:14:a6:
04:d6:d1:17:75:0f:23:05:04:31:b5:7f:8b:85:3f:
c3:5b:47:89:5d:37:ca:3a:d4:c7:f2:d7:c8:ae:0a:
43:95:a1:e2:33:46:0c:90:69:fb:59:7e:65:ab:42:
24:64:2a:5d:60:48:b0:05:e5:ef:d2:da:e0:b2:61:
5a:f0:72:49:2c:7c:94:cb:15:91:71:dc:b2:f7:fa:
a5:0e:cb:a1:27:35:ec:6e:25:93:e4:21:72:af:79:
0f:c1:9c:a3:73:56:9d:ac:77:01:f7:dc:d1:98:d2:
eb:9c:71:4f:c4:e4:0a:d8:4b:4f:81:d8:eb:eb:a9:
c3:18:bd:a0:11:e9:c1:50:6e:43:04:18:4f:e2:12:
7e:42:99:0e:a0:40:a2:57:0a:7b:b7:f9:a2:8c:6c:
b1:46:31:1b:0b:8c:68:e4:d7:16:50:7f:b5:98:dd:
64:f7:d9:1b:84:1f:d7:5b:3e:1c:69:2a:b2:62:7e:
68:98:06:38:8b:91:5b:6f:45:9d:6e:f4:79:14:45:
34:a0:5f:8b:95:cd:5d:b3:c6:c0:d5:fe:54:c2:04:
57:9c:2d:16:9f:35:74:a9:d1:14:6e:c4:f2:69:ce:
f3:58:5b:62:63:38:fb:2e:7c:e0:87:ad:91:0b:7d:
6f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:32:02:C1:DC:1D:D6:EE:F7:B8:F4:0D:20:93:7F:42:11:2D:8C:4D
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/wDICwdwd1u73uPQNIJN_QhEtjE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.37.0/24
31.57.185.0/24
217.60.197.0/24
217.60.241.0/24
217.60.250.0/24
Signature Algorithm: sha256WithRSAEncryption
23:e1:1c:31:43:2b:64:b8:fb:00:47:75:66:02:0b:94:cc:04:
a2:29:cf:90:a1:70:6b:bd:f4:02:bb:61:2e:8e:1b:36:32:9c:
bc:94:ea:a2:4d:ef:ee:ba:53:41:cb:c6:29:39:d4:c5:78:4f:
0d:3f:1b:0e:67:b5:32:8a:c3:6d:a4:1c:eb:7b:29:95:fa:9f:
d5:10:84:cb:37:e7:a5:7c:93:3f:82:86:be:ae:13:fd:6e:ce:
e1:26:97:d5:d3:29:25:8a:09:e8:58:50:86:86:1c:75:e6:06:
c8:d2:e8:0a:35:93:33:01:34:b8:08:c4:83:f2:e4:c2:a6:04:
bf:68:7c:66:16:34:65:80:50:c0:30:49:e9:b4:59:8c:2b:bb:
13:21:88:7e:bc:3f:67:71:56:37:9d:fe:f1:41:42:0e:d6:9e:
22:77:59:2a:da:cd:72:12:0b:5e:69:6b:82:9a:3d:91:1b:d6:
f7:56:18:99:53:a1:21:ea:27:3a:75:5f:44:ca:3c:e1:64:9e:
0c:64:fb:2f:01:91:a9:5f:4c:86:d3:30:c8:1a:3a:f0:58:43:
70:a4:91:b3:c6:b2:20:3e:51:e5:d2:50:ef:f5:b1:29:bb:26:
a8:cb:13:5c:2f:ac:76:23:06:ce:0c:5d:f0:48:45:1f:92:c2:
e1:d1:66:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 13:02:37 2026 by rpki-client