Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/W0vfHfnhVzz-PV6bZBY983PqBpI.roa
File: W0vfHfnhVzz-PV6bZBY983PqBpI.roa (raw, json)
Hash identifier: qtQnmmO0QDVyNsGuu+y/eLYkCOojFWhb3MUn3abBNtA=
Subject key identifier: 5B:4B:DF:1D:F9:E1:57:3C:FE:3D:5E:9B:64:16:3D:F3:73:EA:06:92
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01942828187C5B50668531E2A6C72A378BFF
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/W0vfHfnhVzz-PV6bZBY983PqBpI.roa
Signing time: Thu 02 Jan 2025 17:55:03 +0000
ROA not before: Thu 02 Jan 2025 17:55:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44525
IP address blocks: 92.247.104.0/22 maxlen: 22
92.247.104.0/24 maxlen: 24
92.247.105.0/24 maxlen: 24
92.247.106.0/24 maxlen: 24
92.247.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:18:7c:5b:50:66:85:31:e2:a6:c7:2a:37:8b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b4bdf1df9e1573cfe3d5e9b64163df373ea0692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:66:4b:de:12:41:e8:98:3a:28:a5:8f:42:
36:89:27:6b:a5:d2:92:17:ae:ce:c0:3a:3a:04:ac:
28:93:35:f0:96:14:2a:c6:2a:9f:d3:45:48:f8:83:
48:fb:17:7d:e1:a6:d3:6a:49:cd:f0:4b:44:c7:29:
05:e7:2a:8e:e1:2c:49:7f:f3:6c:a4:12:a7:e5:4d:
e2:af:90:f1:04:46:60:94:48:54:19:de:a7:5e:22:
1a:c0:f4:e0:a7:1f:bf:cd:db:59:49:a4:55:56:bd:
ff:5b:14:86:96:f5:00:54:10:58:3b:a5:6f:ba:c2:
25:e4:c1:1e:37:a2:98:56:f1:42:d2:13:45:1e:28:
bb:96:74:5f:37:4f:92:66:63:f6:3d:74:81:63:ae:
85:01:3d:17:cd:8b:0e:25:93:f4:6f:b7:e3:79:92:
05:bf:0d:93:dc:b0:ef:d9:e4:00:53:2b:9a:b2:b2:
67:68:ce:0b:54:82:20:22:61:d8:c1:c7:c3:98:56:
eb:6e:60:0a:e0:9d:1e:77:0b:b8:57:3e:d5:f8:b4:
b2:c7:03:e7:43:85:53:04:18:d3:1e:c6:ac:77:d1:
60:d1:0a:c8:49:ab:a1:af:38:b1:8b:b4:4f:00:e7:
e3:1c:22:1b:14:fe:e9:c3:25:b6:23:34:8a:7d:30:
95:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4B:DF:1D:F9:E1:57:3C:FE:3D:5E:9B:64:16:3D:F3:73:EA:06:92
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/W0vfHfnhVzz-PV6bZBY983PqBpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.247.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:db:48:10:93:6f:9c:93:28:38:56:af:0b:73:8f:51:c5:4d:
28:a8:ba:5b:c6:40:03:44:ed:69:03:20:bb:db:cd:df:3d:9b:
54:b7:6c:33:b3:1b:79:64:13:35:59:fb:a8:91:87:a8:50:31:
eb:a4:04:89:e6:32:f0:fe:85:7c:cb:03:31:a8:9d:98:fb:b4:
bd:32:30:64:5f:f3:31:d3:eb:ca:d7:fd:dd:76:95:d9:ea:cf:
f6:90:00:fd:a3:18:4f:eb:e1:1a:a0:ec:06:b0:47:66:2d:20:
49:98:52:32:f1:4d:96:bc:5d:0a:ca:31:e9:d4:00:26:bb:73:
f0:f5:80:b2:4f:6a:d4:53:54:2c:05:76:78:c7:b3:a6:38:49:
79:8d:a5:86:75:d2:42:63:fc:00:4e:af:37:0a:bc:e3:cf:e1:
ab:14:72:3a:6d:06:b9:8f:a5:4b:39:79:a4:6f:18:8c:c7:cc:
f6:dd:9b:bb:9a:8a:13:23:80:41:d4:aa:ed:4b:ea:10:bf:b9:
da:04:95:c6:66:2b:e6:bf:78:3a:5d:82:83:e9:6c:81:2a:55:
37:d4:3b:ad:08:8c:07:5f:51:3f:f2:ff:8f:bc:89:75:39:84:
66:af:71:e8:bb:a4:c7:b5:54:20:d4:e5:25:a9:cd:96:bc:85:
3a:44:13:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoKBh8W1BmhTHipscqN4v/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjUwMTAyMTc1NTAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjRiZGYxZGY5ZTE1NzNjZmUzZDVlOWI2NDE2M2RmMzczZWEwNjkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw65mS94SQeiYOiilj0I2iSdrpdKS
F67OwDo6BKwokzXwlhQqxiqf00VI+INI+xd94abTaknN8EtExykF5yqO4SxJf/Ns
pBKn5U3ir5DxBEZglEhUGd6nXiIawPTgpx+/zdtZSaRVVr3/WxSGlvUAVBBYO6Vv
usIl5MEeN6KYVvFC0hNFHii7lnRfN0+SZmP2PXSBY66FAT0XzYsOJZP0b7fjeZIF
vw2T3LDv2eQAUyuasrJnaM4LVIIgImHYwcfDmFbrbmAK4J0edwu4Vz7V+LSyxwPn
Q4VTBBjTHsasd9Fg0QrISauhrzixi7RPAOfjHCIbFP7pwyW2IzSKfTCV9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFtL3x354Vc8/j1em2QWPfNz6gaSMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvVzB2ZkhmbmhWenotUFY2YlpCWTk4M1BxQnBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCXPdoMA0G
CSqGSIb3DQEBCwUAA4IBAQBc20gQk2+ckyg4Vq8Lc49RxU0oqLpbxkADRO1pAyC7
283fPZtUt2wzsxt5ZBM1WfuokYeoUDHrpASJ5jLw/oV8ywMxqJ2Y+7S9MjBkX/Mx
0+vK1/3ddpXZ6s/2kAD9oxhP6+EaoOwGsEdmLSBJmFIy8U2WvF0KyjHp1AAmu3Pw
9YCyT2rUU1QsBXZ4x7OmOEl5jaWGddJCY/wATq83Crzjz+GrFHI6bQa5j6VLOXmk
bxiMx8z23Zu7mooTI4BB1KrtS+oQv7naBJXGZivmv3g6XYKD6WyBKlU31DutCIwH
X1E/8v+PvIl1OYRmr3Hou6THtVQg1OUlqc2WvIU6RBMg
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:56:32 2025 by rpki-client