Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/BIAVf1V83Bi_NMKdQ5d7jiLt4Qg.roa
File: BIAVf1V83Bi_NMKdQ5d7jiLt4Qg.roa (raw, json)
Hash identifier: pDv2S9YnosjIgMKy8k33t7PXQSUno9zx5/UDpnJoO8Q=
Subject key identifier: 04:80:15:7F:55:7C:DC:18:BF:34:C2:9D:43:97:7B:8E:22:ED:E1:08
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 019DFDC8B68D0BFDB357A11C7F19CB86752C
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/BIAVf1V83Bi_NMKdQ5d7jiLt4Qg.roa
Signing time: Wed 06 May 2026 14:54:42 +0000
ROA not before: Wed 06 May 2026 14:54:42 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 62206
IP address blocks: 31.133.80.0/22 maxlen: 24
31.133.88.0/22 maxlen: 24
176.103.224.0/22 maxlen: 22
176.103.232.0/22 maxlen: 24
176.103.236.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fd:c8:b6:8d:0b:fd:b3:57:a1:1c:7f:19:cb:86:75:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: May 6 14:54:42 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=0480157f557cdc18bf34c29d43977b8e22ede108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:6a:bc:d5:2b:13:61:7b:d6:b6:84:2d:42:87:
6d:19:67:fa:b0:bf:2c:2f:91:71:f4:a0:17:c7:dc:
da:e6:04:e6:6a:58:84:9a:8a:b8:df:7c:8d:6c:6c:
32:33:b4:3e:7c:43:7e:90:f4:fe:ec:7f:2d:d2:4c:
f4:d5:f8:36:72:be:1f:87:51:86:6c:d1:8c:0b:82:
f8:f0:3a:a8:63:37:00:39:4e:81:e9:90:46:e6:bc:
e2:9b:73:16:72:6c:b4:3d:29:84:cc:59:d4:49:90:
32:af:5f:a0:57:2e:c2:e1:31:a4:a8:e2:47:60:90:
65:4d:14:01:35:b8:be:1b:37:56:c7:b1:df:5a:18:
49:ae:6e:6a:b2:d0:1d:95:31:7b:0a:4d:75:8a:33:
e1:97:4c:35:6e:c0:a0:05:08:73:28:db:ba:3a:35:
25:1a:ef:9f:5e:59:e4:37:2a:6f:67:55:14:35:b5:
13:30:ed:62:ea:ed:7b:41:3e:14:ce:67:9f:4f:0b:
ed:ca:56:bf:5e:9b:f1:e1:51:e8:8d:4f:81:56:eb:
28:fe:25:da:e5:fa:da:02:d1:df:74:61:31:af:fc:
06:89:59:c7:de:37:47:8b:94:b4:59:ae:69:97:bd:
02:2a:f1:cb:58:d1:ff:24:57:80:8f:c6:27:1b:00:
89:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:80:15:7F:55:7C:DC:18:BF:34:C2:9D:43:97:7B:8E:22:ED:E1:08
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/BIAVf1V83Bi_NMKdQ5d7jiLt4Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.80.0/22
31.133.88.0/22
176.103.224.0/22
176.103.232.0/21
Signature Algorithm: sha256WithRSAEncryption
03:d0:e3:3c:56:9b:4c:b6:76:8c:65:6e:38:5c:31:d0:97:d2:
10:e8:c3:e5:49:66:2c:03:c9:91:d0:17:79:61:cf:7d:69:e9:
72:3b:9a:0b:72:67:d2:5a:bf:45:b6:63:62:ba:de:bf:f4:4d:
d2:fc:d6:49:df:85:04:ab:c0:c4:f9:a3:6f:30:0b:87:df:be:
f5:37:37:30:89:fb:22:56:36:84:57:56:e8:69:e0:91:53:91:
51:c8:98:52:6d:aa:69:bb:c0:94:1c:71:de:6e:62:9c:a5:f7:
58:f8:4b:96:8e:36:b0:75:ca:b8:3a:a7:ff:2c:3b:2c:ec:91:
da:43:2d:ac:c0:38:04:7f:66:b3:ad:b8:46:0a:72:27:62:aa:
04:1c:ca:d8:fd:16:d3:0e:13:35:86:f5:85:3d:60:e0:da:6c:
ef:0a:34:f3:d6:05:da:52:3f:b2:f3:6a:80:5f:67:6b:c7:b7:
d8:88:5d:cb:af:ed:0e:5c:fe:91:3b:18:3b:08:30:90:6b:3b:
6f:28:17:52:62:c8:e4:55:5a:ec:29:60:61:b9:71:06:e3:cd:
a0:86:56:9d:c7:fa:e1:21:fd:5f:d4:90:e5:7a:e4:c4:40:cb:
5f:65:a0:a6:db:5e:2e:63:51:b8:51:70:8a:1e:fd:a9:61:84:
91:af:e2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:25:57 2026 by rpki-client