Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/OwG-LLUDPFPcjmdmUyuwvDvvcNY.roa
File: OwG-LLUDPFPcjmdmUyuwvDvvcNY.roa (raw, json)
Hash identifier: CD1JyBuIPf8PFqVdAHOcB1fn9jcSWuPz5pHGyeSi+ZU=
Subject key identifier: 3B:01:BE:2C:B5:03:3C:53:DC:8E:67:66:53:2B:B0:BC:3B:EF:70:D6
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01965742FFFA4480701DED0B494BF7BE6826
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/OwG-LLUDPFPcjmdmUyuwvDvvcNY.roa
Signing time: Mon 21 Apr 2025 07:32:10 +0000
ROA not before: Mon 21 Apr 2025 07:32:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 36530
IP address blocks: 31.56.72.0/24 maxlen: 24
31.56.84.0/24 maxlen: 24
31.56.91.0/24 maxlen: 24
31.57.104.0/24 maxlen: 24
31.58.88.0/24 maxlen: 24
31.58.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:42:ff:fa:44:80:70:1d:ed:0b:49:4b:f7:be:68:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Apr 21 07:32:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b01be2cb5033c53dc8e6766532bb0bc3bef70d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7c:ea:e9:a1:7b:61:b7:4e:aa:8a:e0:eb:7a:
dc:11:19:ae:f9:67:7b:5e:3b:31:ef:19:bb:9d:6b:
9a:dd:49:d0:76:15:55:d4:47:3c:d4:ab:11:f2:8e:
7b:d5:6c:db:48:60:12:90:b1:1e:7d:3b:98:98:1b:
09:41:60:4b:db:47:99:c1:11:d3:26:13:67:93:7d:
5a:11:ec:43:ca:b7:22:c4:bd:2e:8e:28:3a:ec:20:
01:46:7f:06:dd:ff:a4:4b:52:66:94:55:b6:08:fe:
05:84:0f:31:02:f2:f1:94:c4:61:c6:f7:b7:05:67:
71:63:ff:fc:09:29:08:3c:87:0e:8e:1e:8a:b2:b3:
0c:b6:27:27:5b:98:f0:cf:6b:39:32:35:c3:27:1e:
5d:75:3b:f3:6e:a5:d0:2a:fd:66:56:17:0d:12:f7:
70:7f:88:1c:d9:2d:5c:b9:cb:0d:85:61:79:22:3d:
ae:af:56:0b:3c:e0:91:6f:06:c9:b1:3f:68:60:78:
94:06:68:38:c6:0d:42:01:c6:99:3b:4e:66:99:a1:
27:61:8d:ed:10:3d:33:e9:0d:a2:3a:e4:27:ff:87:
f1:22:81:70:47:d6:f4:27:6b:31:48:e0:ba:bb:78:
2d:99:cf:55:07:fd:22:21:70:08:67:c1:8f:5d:82:
1a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:01:BE:2C:B5:03:3C:53:DC:8E:67:66:53:2B:B0:BC:3B:EF:70:D6
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/OwG-LLUDPFPcjmdmUyuwvDvvcNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.72.0/24
31.56.84.0/24
31.56.91.0/24
31.57.104.0/24
31.58.88.0/23
Signature Algorithm: sha256WithRSAEncryption
35:b8:4a:00:32:83:af:7a:c5:25:d1:c3:fb:2a:a6:af:af:6a:
df:9a:ae:80:46:f2:91:b0:2e:2e:b6:fd:5d:c9:2e:e6:a5:16:
88:1e:46:84:be:27:ed:30:c1:ef:2d:da:e5:c5:d9:9c:9d:c2:
05:37:9d:40:39:60:b5:cb:66:1d:e0:31:8d:52:6e:28:e0:7e:
79:ce:99:60:e9:95:63:b9:8d:b2:8d:71:2b:12:3e:ed:f6:de:
c2:db:53:7b:77:6e:86:f7:fd:92:d6:6d:ca:85:0f:76:49:cc:
75:2a:49:62:da:9f:63:87:91:d8:fd:89:fd:1e:ea:8c:7a:8a:
ad:ff:cf:75:a9:57:92:67:1f:15:ef:ea:6c:bc:25:8d:59:96:
cb:64:b2:6d:42:cb:39:c7:15:31:de:83:e4:f3:42:5f:f0:b3:
f4:e7:02:84:58:9e:8d:d8:1d:53:09:51:b8:fb:5f:ce:fb:a8:
70:5f:1c:7c:f7:8d:e5:20:25:ee:5f:9a:d3:1a:85:9f:e1:0d:
f4:13:56:69:2a:9f:54:39:96:c8:23:1c:49:9d:14:42:d4:82:
78:d5:f8:2d:98:0f:00:78:87:bf:9d:43:3e:ed:42:af:b7:f9:
df:26:9f:9b:2b:9a:42:90:99:17:ae:1b:a2:bd:0b:9e:8a:2d:
01:93:6f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:32:51 2025 by rpki-client