Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/n-WWUpjJ7MYMStLhmDALvV4BwNw.roa
File: n-WWUpjJ7MYMStLhmDALvV4BwNw.roa (raw, json)
Hash identifier: mz0mPhV6HwUBsMpmeR/WiaLr/mHYJW7gp7wvEAXMlhc=
Subject key identifier: 9F:E5:96:52:98:C9:EC:C6:0C:4A:D2:E1:98:30:0B:BD:5E:01:C0:DC
Certificate issuer: /CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Certificate serial: 0196D30DF9043AFFCB0D0BC5A4348DC36EC8
Authority key identifier: 22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/n-WWUpjJ7MYMStLhmDALvV4BwNw.roa
Signing time: Thu 15 May 2025 08:27:10 +0000
ROA not before: Thu 15 May 2025 08:27:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200845
IP address blocks: 77.75.176.0/21 maxlen: 24
77.75.180.0/24 maxlen: 24
91.209.234.0/24 maxlen: 24
91.219.21.0/24 maxlen: 24
185.154.8.0/22 maxlen: 24
185.184.148.0/22 maxlen: 24
185.193.68.0/22 maxlen: 24
194.116.152.0/23 maxlen: 24
212.121.224.0/19 maxlen: 24
212.121.248.0/24 maxlen: 24
213.148.192.0/19 maxlen: 24
213.148.221.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:0d:f9:04:3a:ff:cb:0d:0b:c5:a4:34:8d:c3:6e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c7cda75f4e15e486dee5a6501cbe2018bc0e0f
Validity
Not Before: May 15 08:27:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fe5965298c9ecc60c4ad2e198300bbd5e01c0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:09:e3:0d:7e:43:cc:83:c1:43:e7:2b:bd:61:
8d:71:10:77:49:70:42:14:c1:8b:7b:6b:b7:63:83:
f2:6a:c8:90:ee:d1:bd:af:2f:55:e6:3f:dd:ae:af:
f3:33:f8:48:0e:c4:24:30:5c:97:1b:00:db:93:7f:
0d:68:33:01:f5:26:36:b3:cf:cd:bb:f5:ce:4e:b4:
52:c8:5d:61:96:b1:d2:6c:07:66:5b:0f:d0:63:51:
51:72:b1:16:c8:d6:7c:04:1f:d4:4c:fb:26:53:44:
f7:99:ae:9a:33:ba:73:27:87:ae:41:1c:14:ff:c2:
47:5d:94:c4:8e:40:80:06:d7:f6:12:dc:6c:6d:80:
24:71:cf:3e:69:66:c9:05:f2:d5:02:26:3f:fa:f6:
ed:0a:a2:2a:fb:97:e5:cf:7d:5f:84:02:20:e2:0e:
0f:ee:41:d3:65:7b:06:33:f6:76:a1:2f:ce:25:8d:
8b:6c:15:90:8f:6c:90:3a:98:33:8e:77:8b:dd:8e:
27:c8:0f:03:ac:e5:0f:94:18:e8:f5:5c:75:be:f3:
9c:d5:74:0c:09:c5:95:ce:bd:8d:3b:b3:4c:85:8e:
04:aa:87:19:a5:2d:d4:7a:c8:08:69:a2:e2:36:ff:
4c:4a:02:74:0f:91:f0:04:c7:73:0e:de:69:85:f5:
8c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E5:96:52:98:C9:EC:C6:0C:4A:D2:E1:98:30:0B:BD:5E:01:C0:DC
X509v3 Authority Key Identifier:
keyid:22:C7:CD:A7:5F:4E:15:E4:86:DE:E5:A6:50:1C:BE:20:18:BC:0E:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsfNp19OFeSG3uWmUBy-IBi8Dg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/n-WWUpjJ7MYMStLhmDALvV4BwNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b92331-2bb4-4a59-9978-751b17d1c437/1/IsfNp19OFeSG3uWmUBy-IBi8Dg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.176.0/21
91.209.234.0/24
91.219.21.0/24
185.154.8.0/22
185.184.148.0/22
185.193.68.0/22
194.116.152.0/23
212.121.224.0/19
213.148.192.0/19
Signature Algorithm: sha256WithRSAEncryption
cd:fa:83:8f:1e:1d:0f:82:78:ee:66:63:6d:c6:23:c1:8c:6b:
d5:17:48:6d:32:40:ab:99:72:e5:ec:38:26:ea:fd:ee:b3:7e:
08:c8:de:8a:16:a5:03:15:3e:5c:35:c5:be:b1:e7:81:c6:bd:
ef:a9:1a:ff:7a:5e:b4:76:e8:ba:72:e4:ee:56:2f:af:94:55:
dd:24:b9:39:7e:28:8e:0d:8e:7b:e3:b2:36:2c:84:09:1e:5f:
81:69:42:11:a0:3e:17:0e:e3:57:d7:e1:5f:0c:5d:0e:f9:2a:
f6:61:1a:51:f0:bc:09:fd:d8:f3:ac:66:a7:67:94:42:20:4b:
bb:7c:8b:aa:c9:a5:af:d9:f1:b7:c8:ea:e9:50:42:a5:fb:0e:
45:a0:c5:a2:38:f0:ae:4f:60:99:93:bc:42:0b:ae:25:c1:27:
6d:68:a4:2d:cc:49:e8:cc:74:43:4e:c9:b0:bf:8c:c6:07:db:
34:ee:d7:74:29:67:ab:f1:b4:8e:de:f5:34:c6:92:9e:64:b9:
43:34:f6:7d:57:fc:0b:44:a6:df:ef:50:80:12:5b:1c:d2:ba:
b5:0b:8b:39:1b:6b:45:50:2b:43:2b:05:ee:f5:d6:da:2a:d1:
64:db:76:53:32:7e:fc:58:95:a5:01:ff:e3:62:f1:47:a8:0d:
8e:2e:d7:99
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgISAZbTDfkEOv/LDQvFpDSNw27IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzdjZGE3NWY0ZTE1ZTQ4NmRlZTVhNjUwMWNiZTIwMThi
YzBlMGYwHhcNMjUwNTE1MDgyNzEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmU1OTY1Mjk4YzllY2M2MGM0YWQyZTE5ODMwMGJiZDVlMDFjMGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgnjDX5DzIPBQ+crvWGNcRB3SXBC
FMGLe2u3Y4PyasiQ7tG9ry9V5j/drq/zM/hIDsQkMFyXGwDbk38NaDMB9SY2s8/N
u/XOTrRSyF1hlrHSbAdmWw/QY1FRcrEWyNZ8BB/UTPsmU0T3ma6aM7pzJ4euQRwU
/8JHXZTEjkCABtf2EtxsbYAkcc8+aWbJBfLVAiY/+vbtCqIq+5flz31fhAIg4g4P
7kHTZXsGM/Z2oS/OJY2LbBWQj2yQOpgzjneL3Y4nyA8DrOUPlBjo9Vx1vvOc1XQM
CcWVzr2NO7NMhY4EqocZpS3UesgIaaLiNv9MSgJ0D5HwBMdzDt5phfWMcQIDAQAB
o4ICOTCCAjUwHQYDVR0OBBYEFJ/lllKYyezGDErS4ZgwC71eAcDcMB8GA1UdIwQY
MBaAFCLHzadfThXkht7lplAcviAYvA4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNmTnAxOU9GZVNHM3VXbVVCeS1JQmk4RGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9iOTIzMzEtMmJiNC00YTU5LTk5Nzgt
NzUxYjE3ZDFjNDM3LzEvbi1XV1Vwako3TVlNU3RMaG1EQUx2VjRCd053LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9iOTIzMzEtMmJiNC00YTU5LTk5NzgtNzUxYjE3ZDFjNDM3
LzEvSXNmTnAxOU9GZVNHM3VXbVVCeS1JQmk4RGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQDTUuwAwQA
W9HqAwQAW9sVAwQCuZoIAwQCubiUAwQCucFEAwQBwnSYAwQF1HngAwQF1ZTAMA0G
CSqGSIb3DQEBCwUAA4IBAQDN+oOPHh0PgnjuZmNtxiPBjGvVF0htMkCrmXLl7Dgm
6v3us34IyN6KFqUDFT5cNcW+seeBxr3vqRr/el60dui6cuTuVi+vlFXdJLk5fiiO
DY5747I2LIQJHl+BaUIRoD4XDuNX1+FfDF0O+Sr2YRpR8LwJ/djzrGanZ5RCIEu7
fIuqyaWv2fG3yOrpUEKl+w5FoMWiOPCuT2CZk7xCC64lwSdtaKQtzEnozHRDTsmw
v4zGB9s07td0KWer8bSO3vU0xpKeZLlDNPZ9V/wLRKbf71CAElsc0rq1C4s5G2tF
UCtDKwXu9dbaKtFk23ZTMn78WJWlAf/jYvFHqA2OLteZ
-----END CERTIFICATE-----
Generated at Sat Jun 7 22:09:21 2025 by rpki-client