Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/E-1WO9dcqraHAMVRL5U_KJc7mSA.roa
File: E-1WO9dcqraHAMVRL5U_KJc7mSA.roa (raw, json)
Hash identifier: t7REUhNcXwz2s7e+FW+1boWH5E3NztLOclYfYmAdXeg=
Subject key identifier: 13:ED:56:3B:D7:5C:AA:B6:87:00:C5:51:2F:95:3F:28:97:3B:99:20
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019D0C0164CD21FDE417E4E377F4FCFBB4C0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/E-1WO9dcqraHAMVRL5U_KJc7mSA.roa
Signing time: Fri 20 Mar 2026 16:08:31 +0000
ROA not before: Fri 20 Mar 2026 16:08:31 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204457
IP address blocks: 31.57.217.0/24 maxlen: 24
31.59.37.0/24 maxlen: 24
94.183.152.0/24 maxlen: 24
217.60.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0c:01:64:cd:21:fd:e4:17:e4:e3:77:f4:fc:fb:b4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 20 16:08:31 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=13ed563bd75caab68700c5512f953f28973b9920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:4b:87:07:be:5b:55:37:8a:b5:41:3e:18:
db:f4:b6:c1:34:36:88:d8:3f:3e:0b:75:f2:0e:2b:
e0:18:28:60:9f:38:6d:45:35:aa:8c:b5:b5:b3:30:
06:1c:74:6a:2e:c3:33:9d:d9:04:fa:b5:c6:d3:c0:
64:d3:13:2e:51:a9:5c:60:8d:be:48:1f:c9:38:ff:
43:0d:b8:3e:5f:87:28:e8:d5:60:e7:04:d6:93:59:
84:c4:fb:74:14:b2:3d:11:33:f0:11:ab:11:92:c3:
bd:0c:37:95:d9:bc:21:99:32:80:f8:fb:43:35:cc:
cf:f2:25:58:84:a4:a0:3a:ac:59:39:d2:a6:a9:e6:
a0:32:cb:46:fa:42:4d:7c:e3:77:9d:e7:86:74:11:
38:97:54:89:8d:65:02:62:6f:75:87:c9:5e:53:20:
a8:34:26:bd:a5:6e:70:f7:ef:9d:4a:10:0c:52:5c:
eb:4d:4b:d9:47:a0:1e:ec:4c:f7:7f:5d:39:89:7c:
78:a8:02:97:e2:19:d4:2c:85:d5:1e:34:5d:00:4a:
ae:06:69:95:31:a3:36:06:31:38:21:a6:e0:89:3a:
50:3d:e2:62:14:ca:91:71:33:17:ea:4d:80:b0:4b:
1f:96:e2:9c:58:da:7e:73:20:6c:62:d5:a0:cc:00:
9a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:ED:56:3B:D7:5C:AA:B6:87:00:C5:51:2F:95:3F:28:97:3B:99:20
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/E-1WO9dcqraHAMVRL5U_KJc7mSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.217.0/24
31.59.37.0/24
94.183.152.0/24
217.60.242.0/24
Signature Algorithm: sha256WithRSAEncryption
46:db:c2:99:b8:49:e0:7f:d3:96:ee:6d:65:3f:d4:8c:27:58:
1c:5b:17:24:c5:cb:eb:20:f6:6c:d3:f1:02:8a:51:c8:70:e5:
9d:34:b3:8e:a8:2a:60:14:93:90:6c:8c:42:3a:0f:ef:5a:07:
49:cd:99:10:17:e4:c6:5b:71:a8:47:61:d0:a7:ee:38:8e:70:
ed:b1:dd:3b:d6:2c:5b:69:d1:be:54:b6:88:35:59:59:31:2d:
42:1c:5d:40:4a:9c:1e:9e:52:5c:08:80:4d:02:e1:ca:34:c1:
fd:7d:b0:06:11:61:0d:86:e4:8b:9c:fd:dd:44:2a:fb:38:23:
fe:49:bc:ef:b6:7a:b7:d0:9c:6f:05:a1:51:e7:fe:69:79:d2:
d9:e7:6e:74:6f:6f:cc:0e:c3:db:fb:88:b3:d3:b5:9a:a6:f6:
b1:61:43:c8:e4:a7:6d:63:ab:f6:6e:8e:f8:2e:69:fc:b0:86:
94:60:62:da:f5:1a:98:8d:0f:f3:a8:bd:4c:bd:2a:1b:46:8c:
61:92:ec:4f:9b:e4:30:c5:cf:d0:35:38:a2:f0:e2:6d:10:b5:
c8:c2:4d:87:9f:e7:33:1e:a8:39:6e:48:ac:e8:c8:ea:e5:35:
19:7c:cc:6f:79:31:3f:26:34:83:23:42:95:d2:b2:1f:60:86:
18:19:f1:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:16:30 2026 by rpki-client