Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5-OXHimBYyEkBL8nWpv24fg8cv4.roa
File: 5-OXHimBYyEkBL8nWpv24fg8cv4.roa (raw, json)
Hash identifier: SMXJYgTX6trwOiKlBXZCajIWT7+skMyM9Obwe+hAAsU=
Subject key identifier: E7:E3:97:1E:29:81:63:21:24:04:BF:27:5A:9B:F6:E1:F8:3C:72:FE
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019D82DF8D9BBC4C554654BB34595D944352
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5-OXHimBYyEkBL8nWpv24fg8cv4.roa
Signing time: Sun 12 Apr 2026 18:06:21 +0000
ROA not before: Sun 12 Apr 2026 18:06:21 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 63199
IP address blocks: 31.56.46.0/24 maxlen: 24
31.57.13.0/24 maxlen: 24
31.57.143.0/24 maxlen: 24
31.58.44.0/24 maxlen: 24
31.59.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:82:df:8d:9b:bc:4c:55:46:54:bb:34:59:5d:94:43:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 12 18:06:21 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=e7e3971e298163212404bf275a9bf6e1f83c72fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a0:0d:5e:d7:02:9a:71:42:39:2c:0b:92:50:
5c:9e:b2:cb:c8:6b:08:28:a5:fb:45:ed:81:e8:05:
04:aa:c7:9e:34:ad:69:b7:06:52:54:ac:32:c0:2a:
c0:2b:06:22:f7:4a:d0:22:ea:5c:38:6f:77:44:4c:
e6:cb:76:ae:47:be:f4:50:be:cf:fe:47:8b:1f:e5:
56:d7:af:80:4d:8e:4b:1c:5f:92:60:bd:e4:fa:43:
57:5b:61:5a:2f:d3:73:46:8f:d8:45:82:86:f6:89:
96:9b:50:bd:f6:07:eb:5c:06:97:42:bb:0b:a5:a9:
74:1f:ac:8f:8a:25:9e:b0:ed:9a:93:e0:9c:c8:c7:
e9:05:df:ee:e0:1c:34:26:4a:ca:c2:7e:ff:34:26:
d3:b5:38:3f:9d:d8:d9:4b:87:5e:8f:37:35:58:31:
84:bc:e9:eb:04:f9:35:72:61:c6:6a:87:8e:56:9b:
3b:0b:3a:61:d8:f2:64:67:f5:5d:4c:ab:fd:00:28:
45:ec:e5:42:51:46:c9:b7:37:a0:2f:a3:da:eb:79:
6a:16:6c:16:c7:ed:3a:f1:f8:ed:3d:f2:04:77:00:
2c:6b:e6:db:2c:2e:5f:88:c6:0a:bd:b1:4f:4c:bc:
73:f1:f0:09:73:51:2c:2f:84:80:4a:ac:f2:59:1f:
38:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E3:97:1E:29:81:63:21:24:04:BF:27:5A:9B:F6:E1:F8:3C:72:FE
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/5-OXHimBYyEkBL8nWpv24fg8cv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.46.0/24
31.57.13.0/24
31.57.143.0/24
31.58.44.0/24
31.59.52.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:fb:48:0f:43:54:88:d5:e6:68:39:b7:8f:0e:68:e7:6d:53:
ce:c4:72:64:1d:96:11:06:fb:9d:dd:c5:e6:25:0d:e0:4e:b0:
6f:22:c2:cb:34:92:df:e2:64:dd:fe:e0:b5:ac:5f:ae:4c:8b:
56:8a:9b:9a:fe:7a:d9:64:b4:50:64:b7:8c:c3:f7:9d:f8:dd:
16:1c:08:dd:a6:9c:55:eb:b6:32:3c:b3:b1:f5:ed:e9:7c:78:
4b:03:8a:c6:d1:c7:08:1c:06:f2:60:ae:b7:78:72:fe:b5:0a:
ec:76:93:cf:d4:26:59:9f:8e:85:c4:2f:02:63:79:03:b2:ab:
e0:81:2b:1e:2b:9e:cc:5c:99:d4:ac:f1:5d:90:ca:5d:bc:e9:
24:ce:65:a5:c6:56:d7:8a:14:da:76:07:93:97:2b:1c:99:2e:
11:e2:93:2d:97:7a:d3:b0:a5:11:73:28:9b:de:3c:7e:9e:80:
16:c5:95:7d:19:82:60:13:ab:dd:3d:77:fd:a6:c8:4b:4c:bf:
06:f8:10:41:c4:e9:d6:70:16:46:89:a5:df:e8:62:9f:88:05:
52:93:b4:1d:1e:ab:83:20:36:c6:65:27:ff:03:f2:2f:8b:8f:
70:43:ea:b5:69:b6:19:fe:b8:0c:00:44:b9:41:b0:2e:06:20:
cb:eb:f2:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:48:07 2026 by rpki-client