Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_JEzNTYWu3zcpBGDi_Vwl09L3RI.roa
File: _JEzNTYWu3zcpBGDi_Vwl09L3RI.roa (raw, json)
Hash identifier: t2KvpccIgvEXWfva3bSWQolFqJDY12pfkDOqZZ3J61g=
Subject key identifier: FC:91:33:35:36:16:BB:7C:DC:A4:11:83:8B:F5:70:97:4F:4B:DD:12
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019855E15EBCE9E85D4C9B28309882CE1CFA
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_JEzNTYWu3zcpBGDi_Vwl09L3RI.roa
Signing time: Tue 29 Jul 2025 11:11:29 +0000
ROA not before: Tue 29 Jul 2025 11:11:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56971
IP address blocks: 31.56.48.0/24 maxlen: 24
31.56.113.0/24 maxlen: 24
31.56.146.0/24 maxlen: 24
31.56.196.0/23 maxlen: 24
31.56.204.0/23 maxlen: 24
31.56.206.0/24 maxlen: 24
31.56.222.0/24 maxlen: 24
31.56.227.0/24 maxlen: 24
31.57.46.0/23 maxlen: 24
31.57.61.0/24 maxlen: 24
31.57.62.0/23 maxlen: 24
31.57.92.0/23 maxlen: 24
31.57.105.0/24 maxlen: 24
31.57.106.0/23 maxlen: 24
31.57.108.0/23 maxlen: 24
31.57.118.0/24 maxlen: 24
31.58.50.0/24 maxlen: 24
31.58.87.0/24 maxlen: 24
31.58.134.0/24 maxlen: 24
31.58.171.0/24 maxlen: 24
31.58.220.0/24 maxlen: 24
31.58.226.0/24 maxlen: 24
31.59.40.0/23 maxlen: 24
31.59.120.0/23 maxlen: 24
31.59.136.0/24 maxlen: 24
31.59.138.0/23 maxlen: 24
31.59.170.0/24 maxlen: 24
31.59.174.0/23 maxlen: 24
94.183.182.0/23 maxlen: 24
94.183.184.0/21 maxlen: 24
94.183.232.0/22 maxlen: 24
217.60.36.0/22 maxlen: 24
217.60.248.0/23 maxlen: 24
217.60.252.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 00:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:55:e1:5e:bc:e9:e8:5d:4c:9b:28:30:98:82:ce:1c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 29 11:11:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fc9133353616bb7cdca411838bf570974f4bdd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:97:e8:23:55:5c:75:2b:42:05:9b:6d:68:db:
8b:c3:69:60:58:67:ad:cb:9b:df:46:35:03:f1:4f:
b2:f0:27:06:d1:af:26:cc:64:61:ac:5d:ea:57:5f:
e4:3c:f0:15:6b:3b:62:91:0a:81:35:76:9a:37:57:
b8:9f:47:90:61:55:a8:ca:a2:16:34:dc:3e:41:e8:
66:be:11:1b:52:4e:bb:4f:1d:9f:ea:e3:75:e6:2f:
db:8c:c5:81:40:d1:23:b0:2d:18:2d:d2:a3:8d:2f:
14:56:dc:13:18:1e:86:80:37:50:01:ee:8d:a7:4e:
c2:24:43:a7:f5:49:f2:70:dd:90:d2:a2:9d:a8:1b:
5a:ff:fb:8c:40:e4:ae:30:03:11:16:5d:53:38:c6:
ac:3a:ef:31:01:39:7e:2c:37:59:e1:8c:45:e3:00:
e4:b0:7a:c0:d0:9a:fc:92:d6:02:4a:5b:6d:40:0e:
fe:95:0f:35:19:9b:00:93:73:29:9b:25:9e:bf:f6:
b3:e1:1e:b7:df:4b:55:a4:e6:dc:82:08:5c:6d:1c:
ae:f4:5b:9f:c3:72:fa:db:90:65:fb:41:62:66:a5:
9f:13:46:44:1c:7a:e2:86:6f:09:00:ba:15:31:f1:
f7:f6:ed:16:18:25:dc:01:95:be:a1:07:ba:d7:19:
7b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:91:33:35:36:16:BB:7C:DC:A4:11:83:8B:F5:70:97:4F:4B:DD:12
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_JEzNTYWu3zcpBGDi_Vwl09L3RI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.48.0/24
31.56.113.0/24
31.56.146.0/24
31.56.196.0/23
31.56.204.0-31.56.206.255
31.56.222.0/24
31.56.227.0/24
31.57.46.0/23
31.57.61.0-31.57.63.255
31.57.92.0/23
31.57.105.0-31.57.109.255
31.57.118.0/24
31.58.50.0/24
31.58.87.0/24
31.58.134.0/24
31.58.171.0/24
31.58.220.0/24
31.58.226.0/24
31.59.40.0/23
31.59.120.0/23
31.59.136.0/24
31.59.138.0/23
31.59.170.0/24
31.59.174.0/23
94.183.182.0-94.183.191.255
94.183.232.0/22
217.60.36.0/22
217.60.248.0/23
217.60.252.0/24
Signature Algorithm: sha256WithRSAEncryption
71:22:eb:bc:a0:06:3b:20:7c:70:8b:44:f2:44:94:96:1c:ba:
04:6b:a4:cb:f6:47:e4:60:2d:e1:02:40:4b:e7:03:37:4d:c6:
c6:e4:21:ce:c2:40:12:bb:be:5a:d8:f2:03:3e:2a:2b:d7:b3:
4c:48:aa:80:06:30:53:20:35:26:70:89:f6:3d:e0:a1:0e:3e:
a5:61:67:fb:d1:78:ad:81:4d:ac:a7:e5:fb:84:65:1b:2b:4d:
85:33:38:07:9d:9c:cb:5a:c4:d2:ab:08:72:49:6d:19:4a:8e:
62:fe:df:53:bb:3a:04:b0:0d:3c:4a:bc:87:8f:4b:05:38:70:
bd:7a:71:ec:68:a9:27:bf:19:0e:2b:88:54:e4:cd:89:1a:b3:
4f:fe:6e:a0:65:93:f4:81:aa:90:2a:f3:b2:69:99:3b:1c:64:
4e:41:4d:85:96:51:46:3a:fc:b5:40:fc:28:85:cd:06:1e:5f:
b9:b7:b3:25:20:32:ef:e2:92:15:cb:e5:d0:73:31:29:5a:5b:
6c:9e:74:59:a9:46:58:8a:2b:af:b3:9e:10:f2:8f:83:e1:d1:
12:fd:33:ff:34:3d:03:cb:28:37:27:12:bf:89:45:cc:8a:0c:
14:c1:94:54:44:26:07:a5:ec:85:1c:a2:52:fe:a2:20:bf:ad:
63:f9:a5:c5
-----BEGIN CERTIFICATE-----
MIIFyjCCBLKgAwIBAgISAZhV4V686ehdTJsoMJiCzhz6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2
YjI1YzUwHhcNMjUwNzI5MTExMTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzkxMzMzNTM2MTZiYjdjZGNhNDExODM4YmY1NzA5NzRmNGJkZDEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZfoI1VcdStCBZttaNuLw2lgWGet
y5vfRjUD8U+y8CcG0a8mzGRhrF3qV1/kPPAVaztikQqBNXaaN1e4n0eQYVWoyqIW
NNw+QehmvhEbUk67Tx2f6uN15i/bjMWBQNEjsC0YLdKjjS8UVtwTGB6GgDdQAe6N
p07CJEOn9UnycN2Q0qKdqBta//uMQOSuMAMRFl1TOMasOu8xATl+LDdZ4YxF4wDk
sHrA0Jr8ktYCSlttQA7+lQ81GZsAk3MpmyWev/az4R6330tVpObcgghcbRyu9Fuf
w3L625Bl+0FiZqWfE0ZEHHrihm8JALoVMfH39u0WGCXcAZW+oQe61xl7tQIDAQAB
o4IC1jCCAtIwHQYDVR0OBBYEFPyRMzU2Frt83KQRg4v1cJdPS90SMB8GA1UdIwQY
MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt
YjgxMWNmY2I5ZmQ1LzEvX0pFek5UWVd1M3pjcEJHRGlfVndsMDlMM1JJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1
LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHrBggrBgEFBQcBBwEB/wSB2zCB2DCB1QQCAAEwgc4DBAAf
ODADBAAfOHEDBAAfOJIDBAEfOMQwDAMEAh84zAMEAB84zgMEAB843gMEAB844wME
AR85LjAMAwQAHzk9AwQGHzkAAwQBHzlcMAwDBAAfOWkDBAEfOWwDBAAfOXYDBAAf
OjIDBAAfOlcDBAAfOoYDBAAfOqsDBAAfOtwDBAAfOuIDBAEfOygDBAEfO3gDBAAf
O4gDBAEfO4oDBAAfO6oDBAEfO64wDAMEAV63tgMEBl63gAMEAl636AMEAtk8JAME
Adk8+AMEANk8/DANBgkqhkiG9w0BAQsFAAOCAQEAcSLrvKAGOyB8cItE8kSUlhy6
BGuky/ZH5GAt4QJAS+cDN03GxuQhzsJAEru+WtjyAz4qK9ezTEiqgAYwUyA1JnCJ
9j3goQ4+pWFn+9F4rYFNrKfl+4RlGytNhTM4B52cy1rE0qsIckltGUqOYv7fU7s6
BLANPEq8h49LBThwvXpx7GipJ78ZDiuIVOTNiRqzT/5uoGWT9IGqkCrzsmmZOxxk
TkFNhZZRRjr8tUD8KIXNBh5fubezJSAy7+KSFcvl0HMxKVpbbJ50WalGWIorr7Oe
EPKPg+HREv0z/zQ9A8soNycSv4lFzIoMFMGUVEQmB6XshRyiUv6iIL+tY/mlxQ==
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:39:48 2025 by rpki-client