Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EEHBc7_B2LfAx96M1xvPipEIwCA.roa
File: EEHBc7_B2LfAx96M1xvPipEIwCA.roa (raw, json)
Hash identifier: hCz78DnKtA8/JoBv+igEchpOEZF2xox+cDgTbjM52gc=
Subject key identifier: 10:41:C1:73:BF:C1:D8:B7:C0:C7:DE:8C:D7:1B:CF:8A:91:08:C0:20
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0196A4A9C2617BDC3DD7EDF503809D210B88
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EEHBc7_B2LfAx96M1xvPipEIwCA.roa
Signing time: Tue 06 May 2025 08:15:10 +0000
ROA not before: Tue 06 May 2025 08:15:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 63473
IP address blocks: 31.56.62.0/24 maxlen: 24
31.56.232.0/24 maxlen: 24
31.57.218.0/24 maxlen: 24
31.57.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:a9:c2:61:7b:dc:3d:d7:ed:f5:03:80:9d:21:0b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 6 08:15:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1041c173bfc1d8b7c0c7de8cd71bcf8a9108c020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:18:0f:9d:6e:b8:46:1e:d0:b6:79:0a:18:5e:
23:b3:25:2e:b1:f6:94:a3:6a:8b:d2:5e:0a:17:17:
a6:d6:c4:87:a0:e4:9c:ee:12:a4:80:7b:d5:be:18:
69:59:1e:1f:a3:c4:84:d2:69:4b:8c:1b:f6:9a:ba:
f8:93:5f:ef:f6:2e:98:49:21:d7:9e:76:cb:67:0e:
1b:fe:f2:2b:83:d7:69:89:fa:9b:1e:8b:cb:b2:fe:
0b:9f:c6:47:60:ba:74:63:83:07:18:48:73:49:45:
de:6d:33:83:8a:56:e6:a2:09:a5:53:f1:99:c2:6b:
80:42:83:6f:3a:c5:4a:f3:a2:ae:49:5d:4f:06:8a:
4f:3a:df:ed:4e:2e:26:07:05:0f:c0:d4:73:ea:ca:
7d:f7:0a:ac:48:63:e4:01:93:cc:bd:1a:de:e7:7e:
02:af:30:db:b2:f1:c8:7a:77:5a:f7:40:2d:62:1f:
c1:19:c5:ef:83:98:85:92:b3:c3:f5:98:ad:06:ae:
14:7b:2f:ce:98:ba:d9:78:62:ce:62:f2:b8:7a:bd:
fd:a5:94:f6:9f:2f:93:75:1c:43:a3:a8:30:0b:e5:
7e:85:4f:8b:cc:03:69:be:d4:df:6e:da:c4:1d:4f:
54:16:82:92:f0:b0:e3:83:6f:93:8b:fe:a4:13:c6:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:41:C1:73:BF:C1:D8:B7:C0:C7:DE:8C:D7:1B:CF:8A:91:08:C0:20
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/EEHBc7_B2LfAx96M1xvPipEIwCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.62.0/24
31.56.232.0/24
31.57.218.0/24
31.57.224.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:aa:3e:f5:0e:4c:36:2d:22:72:b1:a5:c1:4a:3f:da:30:b3:
ef:8a:a5:aa:44:d9:a5:2b:b6:a9:1c:63:6e:5e:b3:1e:2c:2e:
f3:8a:bc:fd:1a:4e:aa:a1:24:3b:c3:00:1c:ce:f2:1a:c6:6e:
6f:86:b4:04:bc:58:92:77:df:8c:1f:db:9c:3e:8f:68:11:27:
a7:b3:33:d5:51:68:65:1e:ab:ff:19:0b:d0:c4:78:85:93:c7:
c4:bf:3c:a2:09:12:3c:24:79:61:17:0b:a9:d1:65:d9:52:32:
f7:8e:30:92:67:04:c1:93:40:1c:06:21:62:ba:0d:b9:f9:ad:
c1:b8:a7:0a:87:b4:84:9a:8a:ed:2b:0e:fb:2a:e1:60:76:86:
5e:4c:57:55:4d:b7:c8:f9:95:5c:a0:b7:ab:1c:7d:a1:95:09:
e0:a7:a2:bb:1d:98:c2:e1:17:9c:ce:27:bc:16:d1:5a:a8:e9:
c2:cf:e2:45:6b:38:04:ba:69:9d:5b:8b:99:1f:22:ab:e6:f3:
c5:e7:f2:a3:44:b4:d5:82:e4:b1:2d:2d:0e:68:70:8e:11:e8:
52:ab:55:ef:23:32:40:dc:86:5f:12:85:69:fa:f4:c2:cd:b4:
a5:00:0d:cd:3e:b8:6b:86:f0:72:75:56:1f:2d:e0:73:d6:e1:
18:7b:8d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 01:47:23 2025 by rpki-client