Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/btlTysPNtSD16VvTDGwPRcFNQTA.roa
File: btlTysPNtSD16VvTDGwPRcFNQTA.roa (raw, json)
Hash identifier: 4GOMdcwUufKF7whyj8s9iAkFjKwaMeqK7FyHtxPB+Hs=
Subject key identifier: 6E:D9:53:CA:C3:CD:B5:20:F5:E9:5B:D3:0C:6C:0F:45:C1:4D:41:30
Certificate issuer: /CN=70e5b30272e43053208978dbe44bfee10a5d007e
Certificate serial: 019883CEB8342535627BE9DB1915B52479DF
Authority key identifier: 70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/btlTysPNtSD16VvTDGwPRcFNQTA.roa
Signing time: Thu 07 Aug 2025 09:13:39 +0000
ROA not before: Thu 07 Aug 2025 09:13:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48018
IP address blocks: 31.172.64.0/24 maxlen: 24
31.172.66.0/24 maxlen: 24
31.172.67.0/24 maxlen: 24
31.172.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:83:ce:b8:34:25:35:62:7b:e9:db:19:15:b5:24:79:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e5b30272e43053208978dbe44bfee10a5d007e
Validity
Not Before: Aug 7 09:13:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6ed953cac3cdb520f5e95bd30c6c0f45c14d4130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:74:25:86:31:d8:c4:9a:0c:d1:eb:4d:3a:ab:
41:e4:a5:b4:de:6e:6f:45:0b:0f:af:a8:be:80:e6:
16:7c:b6:26:8d:88:ce:2a:75:ad:35:26:a9:b7:08:
d9:c3:2c:31:c7:25:7b:53:e2:07:10:66:70:c1:73:
55:d9:5b:ca:d1:69:b1:de:ab:0f:70:f8:b4:87:da:
8a:3d:4c:cf:bb:a5:23:02:93:c0:86:9b:48:0d:f1:
87:df:87:b6:36:ed:bf:95:c4:ad:a5:9e:d5:29:e8:
75:b5:eb:63:e4:c7:52:de:09:0a:0d:98:32:c0:1c:
e4:1c:b1:a9:79:fe:bf:7d:7e:14:ec:36:b4:e5:7d:
77:dd:83:c0:fd:6f:eb:7b:ef:5c:cb:b4:3d:89:0e:
68:ab:b8:0a:dd:51:79:7a:8e:67:b3:7f:12:de:d0:
2a:71:b0:7e:76:93:38:e4:ba:2f:eb:1a:74:9d:12:
6d:74:87:f4:1c:1a:d1:7e:0f:92:4f:00:72:c7:8e:
8e:a2:b0:f3:af:1c:8d:46:74:83:5b:43:8b:f4:e3:
8c:78:5e:eb:26:fd:30:3d:e1:7d:8d:e2:d3:9d:f7:
44:98:a2:bf:20:34:10:6f:e7:25:62:ea:4d:58:3a:
45:f6:06:d6:32:92:6c:7c:0a:15:e3:79:7e:2f:a3:
dc:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D9:53:CA:C3:CD:B5:20:F5:E9:5B:D3:0C:6C:0F:45:C1:4D:41:30
X509v3 Authority Key Identifier:
keyid:70:E5:B3:02:72:E4:30:53:20:89:78:DB:E4:4B:FE:E1:0A:5D:00:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/btlTysPNtSD16VvTDGwPRcFNQTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/22f1d5-f269-4f4f-bf8a-1fbc641b50b1/1/cOWzAnLkMFMgiXjb5Ev-4QpdAH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.64.0/24
31.172.66.0/23
31.172.76.0/24
Signature Algorithm: sha256WithRSAEncryption
42:7b:64:5b:f0:71:1e:27:01:98:96:4d:ee:c3:06:17:f5:16:
e7:d0:c2:bb:21:0d:40:af:7d:44:41:86:62:93:88:1b:0a:ee:
3e:4a:35:f9:ec:68:2c:4b:90:02:a0:d6:9f:ab:d6:5b:74:1e:
ef:28:27:ff:d0:e6:52:e5:f0:2d:f5:1e:b9:88:90:75:d6:22:
b2:4c:5f:60:ca:e2:21:5c:82:48:e7:94:91:30:23:96:51:ce:
df:a6:af:8c:f9:b9:ee:78:78:40:4e:04:17:d0:08:97:48:98:
2d:19:ef:ae:08:a4:32:ae:ad:57:4c:6d:d1:7f:7c:32:12:74:
83:2f:96:e9:72:5f:c0:fd:1c:b4:91:40:39:63:36:15:42:3c:
94:37:35:2b:e6:ed:c1:5c:7d:cd:07:d8:5a:32:7e:65:14:0d:
62:6c:09:d1:28:3d:24:c9:2d:31:c0:22:23:ef:48:9b:32:96:
4f:9a:ae:97:e7:e4:09:d7:19:4c:b7:6c:7f:7d:41:0f:5e:30:
6a:50:29:da:3e:f8:73:72:f9:ef:43:0e:1c:58:1a:49:7d:5c:
a5:a4:e3:01:1f:f1:52:b5:3e:2f:01:2c:37:c3:74:86:8c:59:
0d:64:b7:4c:51:46:24:c0:93:2c:78:3a:e2:a0:15:e5:3c:bb:
66:22:05:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:48:35 2025 by rpki-client