Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bCKznhMTLFRYf_1Tc1JKd205HSI.roa
File: bCKznhMTLFRYf_1Tc1JKd205HSI.roa (raw, json)
Hash identifier: PaHu8lyRzsMJjiNd2hSVzB6zLQaX2ExhkYoAToaPwKg=
Subject key identifier: 6C:22:B3:9E:13:13:2C:54:58:7F:FD:53:73:52:4A:77:6D:39:1D:22
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019CFF93EEB1F9DF61F458E37524B6152B3B
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bCKznhMTLFRYf_1Tc1JKd205HSI.roa
Signing time: Wed 18 Mar 2026 06:13:30 +0000
ROA not before: Wed 18 Mar 2026 06:13:30 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 174
IP address blocks: 31.57.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:18:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ff:93:ee:b1:f9:df:61:f4:58:e3:75:24:b6:15:2b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Mar 18 06:13:30 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=6c22b39e13132c54587ffd5373524a776d391d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:41:4c:cf:1f:6a:d2:71:d8:e8:be:5b:a7:5b:
cf:8a:bb:24:7b:bd:77:ab:7e:a5:94:86:52:fe:72:
d2:83:2b:61:27:ca:12:41:62:3a:51:a8:af:50:2d:
3d:6e:a1:95:44:87:3f:94:12:70:eb:d0:56:dc:1f:
ff:33:2c:a7:c0:7b:4c:9c:2b:8b:8e:9d:20:e9:bc:
be:c2:52:1a:5d:c2:9a:ca:af:36:70:40:8a:f2:ce:
30:11:cc:c9:69:a4:01:1b:c2:78:77:55:24:62:e3:
72:93:77:0b:5a:41:3e:9c:2b:cb:91:10:52:9a:98:
2a:ee:66:52:47:e0:f4:fb:bf:39:0c:55:e0:fe:64:
ed:69:da:2a:87:19:a8:27:a2:48:27:48:75:3e:05:
1f:3b:58:a4:7d:b3:aa:32:7b:d3:c5:4d:1b:52:0d:
20:6a:0e:de:af:83:03:d3:1b:9b:03:ae:9a:b9:b9:
bc:9f:f5:ed:84:d0:ae:16:a8:ac:cf:b3:52:81:a8:
97:13:03:2c:61:ef:94:fc:61:5c:d7:89:f6:94:6e:
13:b5:9a:48:12:13:d8:c7:8e:b9:7e:13:41:b7:f0:
25:ce:2c:6d:ae:78:6c:2d:b9:e6:bb:03:d0:fd:ad:
ba:91:93:06:8c:f6:56:a5:30:c0:4a:0c:eb:1d:11:
02:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:22:B3:9E:13:13:2C:54:58:7F:FD:53:73:52:4A:77:6D:39:1D:22
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/bCKznhMTLFRYf_1Tc1JKd205HSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.226.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a8:e0:35:35:6e:c4:ba:bd:c4:e6:c7:df:05:7c:0c:5a:3a:
d1:c5:32:a4:20:90:e6:5e:d4:9a:16:b8:e3:dd:14:d7:8a:98:
bb:9b:05:79:ac:82:e3:67:cd:2a:ee:6a:03:84:bb:16:79:8f:
58:ae:fa:94:41:42:b0:50:50:ab:38:dd:16:c6:e9:b9:48:62:
41:19:16:a5:47:f1:f5:14:93:44:c9:5a:34:84:d3:91:79:4c:
4b:40:47:61:c2:7e:2e:bd:64:3a:4e:f1:01:a6:62:7b:2a:79:
7b:cc:89:3e:d5:f3:4a:da:66:c5:6a:09:95:30:3b:be:9f:a2:
a4:30:ea:95:fb:25:c7:9c:d1:91:44:32:3d:9d:7a:ec:23:59:
40:e7:13:22:ca:80:aa:08:65:cd:68:5d:d9:2d:8e:21:bc:5b:
54:19:34:f9:e9:96:3e:24:b9:9d:1c:df:a9:5d:62:4a:01:09:
26:b6:62:b2:8a:97:59:7b:81:5f:78:d6:69:78:d7:21:79:23:
16:35:35:96:59:81:c5:cb:83:17:20:9c:24:e2:36:15:d3:7a:
5e:dc:5a:69:3c:bd:b4:b6:17:2b:c3:cf:e2:43:f4:93:3e:47:
20:26:c2:a5:96:d8:e5:f0:49:c0:44:d9:4e:db:c6:3d:4f:74:
8c:e3:07:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 22:55:24 2026 by rpki-client