Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/31WGNidSandr9euyp3MWEMrhhgA.roa
File: 31WGNidSandr9euyp3MWEMrhhgA.roa (raw, json)
Hash identifier: x8vN4oWKPx+2cHAvBJjaBV1Li/LtuBIrATot66gBDS8=
Subject key identifier: DF:55:86:36:27:52:6A:77:6B:F5:EB:B2:A7:73:16:10:CA:E1:86:00
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0194258FA214D3A7C1506A78EAB2999A8F25
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/31WGNidSandr9euyp3MWEMrhhgA.roa
Signing time: Thu 02 Jan 2025 05:49:17 +0000
ROA not before: Thu 02 Jan 2025 05:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50795
IP address blocks: 188.75.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:a2:14:d3:a7:c1:50:6a:78:ea:b2:99:9a:8f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 2 05:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df55863627526a776bf5ebb2a7731610cae18600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7a:30:bd:a9:8e:ae:cc:e4:f0:5c:69:f5:62:
34:59:f0:32:0f:0b:23:53:a5:22:83:e1:e6:0a:fb:
99:3e:b3:b8:12:a7:1b:2f:1a:86:b9:e9:cd:aa:ad:
05:95:95:27:da:57:b6:e7:20:73:08:4c:50:96:f6:
2c:3f:4c:cf:49:b5:43:ba:11:21:d3:d6:2a:93:94:
1e:2e:1a:7e:49:18:14:d6:ab:44:16:de:48:ee:fe:
e2:5b:31:17:7d:d0:79:5e:e3:64:85:e4:0d:14:3d:
f7:f6:f8:ea:7e:cd:8a:ec:9e:51:b9:ad:85:b1:ff:
7f:b9:6b:74:38:63:5d:21:05:f8:be:ff:f0:39:0f:
76:a4:4d:85:63:ac:b9:f3:1f:12:46:d5:89:14:3f:
14:7b:30:33:c3:53:2c:6b:f0:c3:0b:83:fe:81:21:
f6:0c:f7:6f:89:02:6a:e7:b9:eb:0c:22:ec:c0:10:
2b:e3:a4:6e:fa:b0:e1:14:63:78:12:3c:a8:ef:7c:
cd:4b:19:02:46:45:2a:45:67:0d:8e:21:be:84:ce:
f8:d3:1b:09:fb:4f:ad:36:07:c5:eb:05:1e:5c:02:
f4:a4:2c:a8:1d:b0:12:1a:97:68:82:96:30:9d:b2:
b1:25:17:5d:9f:d5:04:d1:60:4c:98:87:1a:4c:c0:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:55:86:36:27:52:6A:77:6B:F5:EB:B2:A7:73:16:10:CA:E1:86:00
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/31WGNidSandr9euyp3MWEMrhhgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.75.112.0/24
Signature Algorithm: sha256WithRSAEncryption
28:c9:a8:ce:ab:b9:3e:2a:94:b0:5a:ab:b7:39:74:26:16:44:
4f:33:10:71:19:f6:f1:6b:c8:24:58:eb:6c:18:53:b5:62:20:
ed:d9:38:0c:75:f9:76:7a:14:fc:92:ee:ae:b4:d9:d5:ed:93:
4b:21:56:85:40:3c:b7:0c:bb:ba:7f:d0:55:fb:9c:8f:bd:18:
cf:65:b8:35:18:80:18:37:de:0a:31:55:1d:9c:aa:6e:c7:ad:
50:72:07:59:ed:38:d9:13:64:9c:1a:29:10:4d:c7:c0:09:69:
35:6a:b0:08:e1:f5:a8:ec:74:2b:8b:d3:ee:d0:f3:c3:c3:bc:
c6:78:34:4d:13:aa:4c:7e:ea:15:bd:87:c1:1c:63:bd:8b:1d:
6c:d9:c9:f5:de:5c:ae:86:47:94:e9:11:fa:9d:dd:f2:a5:84:
0e:d2:73:c4:1b:6b:8a:a6:a8:cb:24:a2:d2:35:52:05:d2:f7:
85:e5:ff:ff:83:1c:de:53:6f:46:3c:96:74:1f:d1:4d:a5:b3:
a3:08:21:6c:8b:a8:4d:9a:69:ad:4a:30:b3:27:0a:e7:d8:e1:
41:d7:6a:bf:24:15:f5:15:7b:a7:b0:29:64:1f:a8:40:c5:08:
6c:07:9a:7e:6e:f8:50:33:37:43:d1:1c:16:2c:20:e4:00:d6:
32:76:42:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlj6IU06fBUGp46rKZmo8lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNjk4YzRiNjEyYWZlZTJjYmIxY2RkNTA5ZTRmMDI0NmZi
YjgwZTEwHhcNMjUwMTAyMDU0OTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjU1ODYzNjI3NTI2YTc3NmJmNWViYjJhNzczMTYxMGNhZTE4NjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHowvamOrszk8Fxp9WI0WfAyDwsj
U6Uig+HmCvuZPrO4EqcbLxqGuenNqq0FlZUn2le25yBzCExQlvYsP0zPSbVDuhEh
09Yqk5QeLhp+SRgU1qtEFt5I7v7iWzEXfdB5XuNkheQNFD339vjqfs2K7J5Rua2F
sf9/uWt0OGNdIQX4vv/wOQ92pE2FY6y58x8SRtWJFD8UezAzw1Msa/DDC4P+gSH2
DPdviQJq57nrDCLswBAr46Ru+rDhFGN4Ejyo73zNSxkCRkUqRWcNjiG+hM740xsJ
+0+tNgfF6wUeXAL0pCyoHbASGpdogpYwnbKxJRddn9UE0WBMmIcaTMBHAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN9VhjYnUmp3a/XrsqdzFhDK4YYAMB8GA1UdIwQY
MBaAFFtpjEthKv7iy7HN1Qnk8CRvu4DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMt
Y2MyZmFmZTNhOGI0LzEvMzFXR05pZFNhbmRyOWV1eXAzTVdFTXJoaGdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9jMTZmNTUtYjQ0ZC00MGMzLTlkYWMtY2MyZmFmZTNhOGI0
LzEvVzJtTVMyRXFfdUxMc2MzVkNlVHdKRy03Z09FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvEtwMA0G
CSqGSIb3DQEBCwUAA4IBAQAoyajOq7k+KpSwWqu3OXQmFkRPMxBxGfbxa8gkWOts
GFO1YiDt2TgMdfl2ehT8ku6utNnV7ZNLIVaFQDy3DLu6f9BV+5yPvRjPZbg1GIAY
N94KMVUdnKpux61QcgdZ7TjZE2ScGikQTcfACWk1arAI4fWo7HQri9Pu0PPDw7zG
eDRNE6pMfuoVvYfBHGO9ix1s2cn13lyuhkeU6RH6nd3ypYQO0nPEG2uKpqjLJKLS
NVIF0veF5f//gxzeU29GPJZ0H9FNpbOjCCFsi6hNmmmtSjCzJwrn2OFB12q/JBX1
FXunsClkH6hAxQhsB5p+bvhQMzdD0RwWLCDkANYydkKW
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:49:51 2025 by rpki-client