Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wx7MDHDb_hPkws2cHcQks3CNdLE.roa
File: Wx7MDHDb_hPkws2cHcQks3CNdLE.roa (raw, json)
Hash identifier: py2NLUDc+i5eBq9qUjD23zf9rONqF3zUoFTWI+ArTuA=
Subject key identifier: 5B:1E:CC:0C:70:DB:FE:13:E4:C2:CD:9C:1D:C4:24:B3:70:8D:74:B1
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019DF402B3176F40983656F2AD1561B75C53
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wx7MDHDb_hPkws2cHcQks3CNdLE.roa
Signing time: Mon 04 May 2026 17:21:50 +0000
ROA not before: Mon 04 May 2026 17:21:50 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 48678
IP address blocks: 31.56.214.0/24 maxlen: 24
31.57.135.0/24 maxlen: 24
31.58.41.0/24 maxlen: 24
31.58.244.0/24 maxlen: 24
31.58.245.0/24 maxlen: 24
31.58.247.0/24 maxlen: 24
31.58.250.0/24 maxlen: 24
31.58.251.0/24 maxlen: 24
217.60.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:f4:02:b3:17:6f:40:98:36:56:f2:ad:15:61:b7:5c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: May 4 17:21:50 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=5b1ecc0c70dbfe13e4c2cd9c1dc424b3708d74b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:06:cc:36:2e:86:71:ec:1b:f4:ab:ea:7f:
ae:ce:ca:05:59:68:2b:1e:bf:ac:8d:9d:12:a9:e4:
df:c4:38:eb:04:3b:37:db:d4:3c:f1:d1:ff:cb:a6:
df:63:bf:7d:28:a7:04:5e:1e:c7:f4:d1:2b:3f:ca:
5c:b9:c5:33:c5:b8:08:31:c7:50:68:14:ec:1f:59:
d3:a6:f4:35:0d:d2:e7:86:12:b1:84:6d:df:d0:04:
8c:7e:df:b5:eb:f2:82:69:16:e9:81:c5:60:d4:22:
f2:e4:d8:74:cd:81:e9:23:ef:da:c2:e6:3d:f8:de:
c9:64:a5:90:e5:8f:02:8c:8f:70:c7:a9:f0:98:ab:
0b:d5:00:d8:e6:7e:29:c4:95:c2:1d:f4:dd:ec:4e:
bd:ba:be:15:b1:23:e1:dc:a7:48:35:53:2c:21:b0:
fc:64:d9:ce:d5:c7:06:51:6a:bd:1f:41:5d:2a:9f:
43:45:d5:60:a3:83:83:49:48:ca:98:be:35:69:0c:
d2:ca:af:9a:e1:0e:22:44:1d:d9:e3:ad:df:0b:5b:
e2:aa:f5:d9:05:36:4b:60:ab:81:a5:33:b1:2f:3b:
fb:0a:8b:67:8f:14:84:7d:d8:5f:2d:b8:57:a1:cc:
19:71:ab:76:74:27:71:d5:3c:e8:25:e5:3a:0f:24:
97:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1E:CC:0C:70:DB:FE:13:E4:C2:CD:9C:1D:C4:24:B3:70:8D:74:B1
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/Wx7MDHDb_hPkws2cHcQks3CNdLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.214.0/24
31.57.135.0/24
31.58.41.0/24
31.58.244.0/23
31.58.247.0/24
31.58.250.0/23
217.60.187.0/24
Signature Algorithm: sha256WithRSAEncryption
15:d1:70:71:0a:74:85:3d:07:b5:fc:95:dc:b4:fb:ac:3e:b9:
b3:5a:69:fa:aa:c5:4c:4c:18:a0:b7:07:54:7d:c1:ed:fc:28:
a4:5d:4a:c1:33:c6:92:41:75:80:5d:92:b1:42:b3:af:70:e1:
c3:d8:39:00:33:2c:6d:8b:7b:e4:4c:e5:27:b6:ea:52:b1:ed:
ac:19:77:07:74:66:bf:1c:6b:e0:f5:7d:ad:dd:57:04:6b:54:
43:4a:1d:01:d8:1b:37:22:74:67:00:b3:15:80:d8:8b:ff:3e:
94:71:80:85:4b:10:a4:88:97:6d:50:2a:ef:ca:9e:70:1a:f6:
b6:5c:1c:c2:ce:70:1a:0a:3b:2f:3f:90:7f:98:67:e0:9c:07:
2d:53:77:88:b1:23:cc:74:d5:af:5e:87:61:90:f0:08:54:46:
ff:ba:ce:8e:8e:94:13:b5:0b:70:27:21:8d:81:bd:9f:9e:63:
64:87:07:bd:4f:ca:6e:ab:62:7e:b7:7a:9f:24:6f:7e:99:9e:
7b:d6:b0:f9:26:09:d6:19:18:34:40:f4:ad:81:09:d2:00:e0:
49:1f:a9:85:52:fd:f8:9e:2c:91:64:f5:61:bc:f6:7c:62:d0:
cd:b1:41:5a:46:46:8f:29:d1:e9:f7:03:e5:4a:b0:4f:62:02:
d5:17:22:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:53:42 2026 by rpki-client