Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JzCqK-oJ9hraexVeQiREKM_uf3I.roa
File: JzCqK-oJ9hraexVeQiREKM_uf3I.roa (raw, json)
Hash identifier: sw0PdOpvjtELKWDgrE0cayHiJjKDT9U6ah4/LKo/8T4=
Subject key identifier: 27:30:AA:2B:EA:09:F6:1A:DA:7B:15:5E:42:24:44:28:CF:EE:7F:72
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019857658F6D421FE1D744B1A2ED368CB739
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JzCqK-oJ9hraexVeQiREKM_uf3I.roa
Signing time: Tue 29 Jul 2025 18:15:30 +0000
ROA not before: Tue 29 Jul 2025 18:15:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205733
IP address blocks: 31.57.134.0/24 maxlen: 24
31.58.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 14:37:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:57:65:8f:6d:42:1f:e1:d7:44:b1:a2:ed:36:8c:b7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 29 18:15:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2730aa2bea09f61ada7b155e42244428cfee7f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b7:1e:5e:5b:a6:cf:dd:38:89:f9:fa:02:f3:
97:c3:66:0d:fb:9e:c5:2e:23:54:24:a7:15:36:28:
51:dc:14:0d:e1:ef:b3:72:c3:56:63:2c:7e:47:a5:
28:f1:eb:18:b2:81:b5:0d:70:43:e3:aa:e3:66:0c:
3c:2b:e7:88:1b:51:f9:ad:9d:17:22:7e:eb:bc:6a:
21:48:f6:ac:e1:20:56:a5:dd:e6:85:06:19:1d:e8:
4b:9d:49:c5:3d:01:fc:63:f1:56:81:6b:cd:f9:67:
81:d9:c1:29:4f:d7:8a:bd:5a:77:2e:ad:eb:64:ed:
32:6c:a8:49:27:4a:35:84:49:1a:15:6f:f4:0d:af:
07:12:8f:d7:05:28:8d:66:fa:4d:dd:b8:d4:bf:5a:
ec:dc:a8:94:e3:e1:82:37:8f:51:ec:da:2b:f8:83:
36:f3:66:07:9b:28:55:7e:68:ef:1c:09:05:73:8f:
4b:43:83:14:93:a0:49:53:f1:e6:cb:27:56:13:35:
7d:88:07:64:01:f9:4a:9c:78:5f:02:4c:83:21:72:
57:a8:bf:6c:53:64:c0:23:5c:b3:3c:59:53:39:28:
b2:27:e8:fd:e4:e4:d6:6b:e0:3d:a9:3d:e0:ce:60:
71:09:8a:9e:87:d7:22:00:c3:1b:76:ba:a0:3e:1c:
04:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:30:AA:2B:EA:09:F6:1A:DA:7B:15:5E:42:24:44:28:CF:EE:7F:72
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/JzCqK-oJ9hraexVeQiREKM_uf3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.134.0/24
31.58.236.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:f5:63:96:2d:a3:2d:85:48:bb:cd:8b:cd:8c:8c:e3:01:64:
63:18:5a:66:ea:25:3b:80:a1:28:45:c8:e2:2e:cc:66:1b:f5:
3c:11:4c:28:b0:15:9c:3b:c4:fc:bf:80:5e:9c:0c:9e:5b:7f:
54:d0:d6:3c:1e:b7:65:d8:d0:22:4b:72:b6:46:38:60:6e:d6:
86:39:e4:0d:05:e6:e6:3c:d4:ee:28:76:7c:43:e9:73:4e:16:
b1:1f:51:c3:26:23:5d:52:65:2a:90:5b:7e:a0:32:52:97:b6:
9c:dd:23:1c:6e:03:2e:03:9f:e5:58:4d:b4:4a:e7:ac:80:66:
b2:b0:00:c9:32:06:55:20:cd:60:e7:88:df:d8:0e:45:2b:75:
63:e5:22:b1:0c:88:f6:7d:58:bf:3d:b9:d7:57:58:be:17:b8:
c9:91:b5:39:0b:cc:aa:32:07:65:23:46:fc:39:b1:0e:e5:48:
2b:0f:40:da:7a:49:b2:4e:15:a5:dc:c4:75:4b:4f:aa:60:6c:
03:bc:89:9f:b9:7b:8f:b6:f7:f7:7f:48:ae:b1:23:91:ca:06:
a6:41:6e:a2:da:fd:ed:80:d6:e6:a1:17:06:d6:64:35:ca:a2:
cc:8a:7b:d7:62:67:e6:12:a7:a8:dc:5c:45:10:88:5d:c3:b4:
0b:d5:a3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:34:58 2025 by rpki-client