Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/wnOK7UZLyctxvdFrM0_MBsrY6Sk.roa
File: wnOK7UZLyctxvdFrM0_MBsrY6Sk.roa (raw, json)
Hash identifier: StFoHuCPCRVhF5lkych4OWGCjDHiD4SkofHON47aFCE=
Subject key identifier: C2:73:8A:ED:46:4B:C9:CB:71:BD:D1:6B:33:4F:CC:06:CA:D8:E9:29
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01941F8C109F6445D620632B789A3CC4B2B9
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/wnOK7UZLyctxvdFrM0_MBsrY6Sk.roa
Signing time: Wed 01 Jan 2025 01:47:40 +0000
ROA not before: Wed 01 Jan 2025 01:47:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9199
IP address blocks: 81.180.64.0/22 maxlen: 24
81.180.68.0/23 maxlen: 24
81.180.70.0/23 maxlen: 24
81.180.76.0/22 maxlen: 24
81.180.84.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:10:9f:64:45:d6:20:63:2b:78:9a:3c:c4:b2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2738aed464bc9cb71bdd16b334fcc06cad8e929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c9:bc:89:b4:aa:de:d4:8f:0b:35:d2:26:59:
5d:fc:a6:92:aa:88:b6:10:78:8c:57:dd:f3:69:f2:
2b:ab:7f:ee:13:33:3a:9a:6b:85:f3:64:c4:7a:0a:
dd:ae:08:48:2f:ea:a7:7c:68:f2:06:fd:bb:61:0a:
bf:c3:b1:30:1a:9f:18:07:17:93:b4:0a:5f:80:96:
f2:d4:5c:e8:5c:73:ff:cd:a3:f3:6b:8a:c4:f2:ce:
dd:12:de:74:13:ae:1a:72:4a:24:08:6d:04:38:a2:
ff:db:ae:8d:a5:fb:6a:28:b9:98:37:47:ed:e4:9d:
c6:02:b3:46:c6:71:1b:b3:03:93:d7:09:ba:90:12:
c8:28:d4:df:62:7d:47:70:56:c7:c4:bf:b8:f5:81:
1e:6c:cc:49:ef:e6:77:5a:ea:11:85:2c:f2:fa:92:
0c:95:d9:6d:45:19:8c:3a:5c:bf:a6:cf:ab:06:45:
24:a1:b7:4b:df:4e:73:73:a2:cc:2d:74:67:7b:70:
55:8f:31:5b:3e:57:44:83:35:ba:92:b4:b6:ed:a1:
0b:f4:a9:62:89:3d:aa:af:78:16:bf:65:44:80:4f:
46:9d:b2:03:0e:2a:8f:58:bc:dc:e5:b2:ba:96:a4:
67:56:8f:14:fd:26:03:11:74:e9:88:b1:4b:95:5e:
ff:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:73:8A:ED:46:4B:C9:CB:71:BD:D1:6B:33:4F:CC:06:CA:D8:E9:29
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/wnOK7UZLyctxvdFrM0_MBsrY6Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.180.64.0/21
81.180.76.0/22
81.180.84.0/23
Signature Algorithm: sha256WithRSAEncryption
51:e3:09:5f:45:50:52:0c:a5:f4:65:24:ae:36:75:c6:5d:0a:
46:b6:2a:9f:b0:91:66:3a:98:3e:5f:a6:be:a7:ba:77:9c:be:
2e:07:ef:af:d5:d5:98:e2:6f:d4:00:5a:c1:79:45:7e:e5:81:
2a:6c:62:73:8f:07:12:33:da:9a:f1:90:c2:bd:65:81:7b:bc:
46:7d:1e:7b:77:ab:f0:a0:39:b2:8a:f6:98:7e:bd:42:fb:52:
51:0b:10:3a:6e:c4:60:42:b4:04:e2:c8:7f:b6:a7:b8:7d:76:
f1:71:23:e1:51:86:05:ff:f8:6e:51:33:79:02:d1:2f:de:94:
08:4b:73:5d:d4:41:b4:b4:89:d0:6b:94:b2:92:65:be:0d:f6:
47:62:23:55:f2:0f:2e:26:54:24:58:8b:ec:65:31:b0:bd:ab:
11:28:ac:e9:f1:aa:0f:3d:39:73:4a:40:54:92:1a:ba:0d:a4:
a4:03:16:e8:7d:19:69:f5:ea:d4:4d:94:08:2d:21:de:1d:3c:
0f:bb:f3:a3:ed:67:9d:1e:d7:03:f1:bf:5e:43:41:67:91:7d:
e9:b2:b2:31:63:a3:70:bc:2f:c4:5b:37:cf:f0:a9:5d:cf:05:
96:a7:f9:5b:d7:4c:83:de:f1:b3:23:7e:c7:15:86:52:ee:8c:
05:8e:a7:5d
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQfjBCfZEXWIGMreJo8xLK5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODM3ODU5MTZjZDk4ZDdjNzcwZDY4NTE0NTQ5OWE4YTBh
MTU3MjIwHhcNMjUwMTAxMDE0NzQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjczOGFlZDQ2NGJjOWNiNzFiZGQxNmIzMzRmY2MwNmNhZDhlOTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68m8ibSq3tSPCzXSJlld/KaSqoi2
EHiMV93zafIrq3/uEzM6mmuF82TEegrdrghIL+qnfGjyBv27YQq/w7EwGp8YBxeT
tApfgJby1FzoXHP/zaPza4rE8s7dEt50E64ackokCG0EOKL/266NpftqKLmYN0ft
5J3GArNGxnEbswOT1wm6kBLIKNTfYn1HcFbHxL+49YEebMxJ7+Z3WuoRhSzy+pIM
ldltRRmMOly/ps+rBkUkobdL305zc6LMLXRne3BVjzFbPldEgzW6krS27aEL9Kli
iT2qr3gWv2VEgE9GnbIDDiqPWLzc5bK6lqRnVo8U/SYDEXTpiLFLlV7/7QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMJziu1GS8nLcb3RazNPzAbK2OkpMB8GA1UdIwQY
MBaAFDGDeFkWzZjXx3DWhRRUmaigoVciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEt
ZjUyYzQ3YzIyNWRiLzEvd25PSzdVWkx5Y3R4dmRGck0wX01Cc3JZNlNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83MTkzZGItN2Y4NS00MmJiLWIwOWEtZjUyYzQ3YzIyNWRi
LzEvTVlONFdSYk5tTmZIY05hRkZGU1pxS0NoVnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDUbRAAwQC
UbRMAwQBUbRUMA0GCSqGSIb3DQEBCwUAA4IBAQBR4wlfRVBSDKX0ZSSuNnXGXQpG
tiqfsJFmOpg+X6a+p7p3nL4uB++v1dWY4m/UAFrBeUV+5YEqbGJzjwcSM9qa8ZDC
vWWBe7xGfR57d6vwoDmyivaYfr1C+1JRCxA6bsRgQrQE4sh/tqe4fXbxcSPhUYYF
//huUTN5AtEv3pQIS3Nd1EG0tInQa5SykmW+DfZHYiNV8g8uJlQkWIvsZTGwvasR
KKzp8aoPPTlzSkBUkhq6DaSkAxbofRlp9erUTZQILSHeHTwPu/Oj7WedHtcD8b9e
Q0FnkX3psrIxY6NwvC/EWzfP8KldzwWWp/lb10yD3vGzI37HFYZS7owFjqdd
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:49:59 2025 by rpki-client