Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/PWqnw0c_B4f5uiecMpdwpL-VvcE.roa
File: PWqnw0c_B4f5uiecMpdwpL-VvcE.roa (raw, json)
Hash identifier: U77gGzVbzz3/VE1ufiaUseYNuoW+zWwbp+s9nBJADUU=
Subject key identifier: 3D:6A:A7:C3:47:3F:07:87:F9:BA:27:9C:32:97:70:A4:BF:95:BD:C1
Certificate issuer: /CN=6ea2be3732f6efd59c7de5ab03072a012c71b5ed
Certificate serial: 019420D5E4D08A2243507071592D457E4A72
Authority key identifier: 6E:A2:BE:37:32:F6:EF:D5:9C:7D:E5:AB:03:07:2A:01:2C:71:B5:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqK-NzL279WcfeWrAwcqASxxte0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/PWqnw0c_B4f5uiecMpdwpL-VvcE.roa
Signing time: Wed 01 Jan 2025 07:47:56 +0000
ROA not before: Wed 01 Jan 2025 07:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197991
IP address blocks: 89.150.46.0/24 maxlen: 24
89.150.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/bqK-NzL279WcfeWrAwcqASxxte0.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/bqK-NzL279WcfeWrAwcqASxxte0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bqK-NzL279WcfeWrAwcqASxxte0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 20 Feb 2025 19:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:e4:d0:8a:22:43:50:70:71:59:2d:45:7e:4a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea2be3732f6efd59c7de5ab03072a012c71b5ed
Validity
Not Before: Jan 1 07:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3d6aa7c3473f0787f9ba279c329770a4bf95bdc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b5:74:4c:84:a1:56:fe:34:32:1c:7f:a7:4a:
ba:aa:fe:33:3e:94:30:13:59:3c:c6:b7:b1:99:52:
d2:91:5e:30:e3:88:8c:17:60:9b:d2:44:6d:8d:cd:
d7:9b:02:76:1d:16:11:cb:ae:ab:17:09:65:e5:dc:
10:11:5b:75:b1:e1:e0:40:09:22:b7:2e:31:c4:dd:
74:58:2f:52:dc:61:05:ef:74:69:36:18:2b:77:e7:
b5:2d:a9:30:7c:19:48:9a:62:ed:86:a8:a1:9f:fe:
0e:71:cc:3c:66:b2:78:09:69:b0:61:4f:c2:ea:86:
5b:c6:0a:ff:c2:65:08:8a:56:d1:2d:10:19:d5:a5:
72:90:02:a6:5d:0c:cf:49:23:35:e7:83:9d:54:2a:
48:7f:31:3e:67:ac:ac:91:fa:44:a6:d7:1d:e9:ad:
88:dd:ba:06:00:3b:2c:04:6c:9f:78:23:53:7c:cf:
59:46:b5:94:06:84:8a:ee:1e:bd:6f:04:9b:98:6d:
b0:99:e8:51:27:df:a8:d8:c0:f4:09:c0:9b:ea:46:
bf:2d:50:e8:60:f9:30:45:51:84:49:15:37:d9:38:
29:5c:83:78:60:e5:4d:21:8f:f5:eb:73:40:43:f0:
1f:e3:7e:d2:25:12:17:88:ac:cc:b1:c8:92:e3:fb:
0a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6A:A7:C3:47:3F:07:87:F9:BA:27:9C:32:97:70:A4:BF:95:BD:C1
X509v3 Authority Key Identifier:
keyid:6E:A2:BE:37:32:F6:EF:D5:9C:7D:E5:AB:03:07:2A:01:2C:71:B5:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqK-NzL279WcfeWrAwcqASxxte0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/PWqnw0c_B4f5uiecMpdwpL-VvcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/16ba11-773b-4e7e-b0dd-13086ecff9d5/1/bqK-NzL279WcfeWrAwcqASxxte0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.150.46.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:6b:56:4c:61:99:e6:8c:72:bf:40:86:7c:c8:75:84:2d:d5:
b4:b5:d1:52:a0:97:13:47:51:a4:9e:58:5b:7d:d8:bb:23:d8:
45:fd:a9:34:86:0b:d4:7c:d0:56:5f:9a:cc:f4:84:0d:5a:6c:
c7:0a:cd:8d:ca:09:ce:93:b7:3e:68:eb:9e:28:ac:10:8e:74:
62:fe:4f:93:ce:2f:c5:9e:29:bc:5c:97:c3:cb:07:29:5c:10:
af:7d:fc:4a:ea:23:f7:0b:b4:4b:8e:2e:c6:b6:27:f4:c3:01:
a1:07:c0:6b:26:1f:48:1d:9d:1b:4b:4e:e3:31:48:5e:60:e0:
41:62:b2:c7:97:5b:5b:6e:62:f3:7a:5a:cd:b0:ef:41:49:3d:
6e:49:a2:8a:9d:2f:9c:be:17:b1:d5:7e:95:e5:a1:24:55:ef:
20:a9:2f:5f:aa:d5:a5:4f:a9:fa:5c:6c:15:a3:f5:d3:ba:e2:
17:21:8d:29:7a:1c:fc:8a:63:32:88:4a:66:3a:a9:64:03:93:
3b:51:ec:fc:af:1d:47:0a:1b:a0:24:99:05:1b:ed:78:17:23:
3f:a6:95:2f:87:c0:05:92:ba:a1:d6:d3:5d:66:c4:e3:76:1c:
b7:e0:ae:46:36:32:1e:cf:c3:c0:f3:4d:d3:2b:f5:98:79:a6:
28:53:3f:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1eTQiiJDUHBxWS1FfkpyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYTJiZTM3MzJmNmVmZDU5YzdkZTVhYjAzMDcyYTAxMmM3
MWI1ZWQwHhcNMjUwMTAxMDc0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDZhYTdjMzQ3M2YwNzg3ZjliYTI3OWMzMjk3NzBhNGJmOTViZGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxrV0TIShVv40Mhx/p0q6qv4zPpQw
E1k8xrexmVLSkV4w44iMF2Cb0kRtjc3XmwJ2HRYRy66rFwll5dwQEVt1seHgQAki
ty4xxN10WC9S3GEF73RpNhgrd+e1LakwfBlImmLthqihn/4Occw8ZrJ4CWmwYU/C
6oZbxgr/wmUIilbRLRAZ1aVykAKmXQzPSSM154OdVCpIfzE+Z6yskfpEptcd6a2I
3boGADssBGyfeCNTfM9ZRrWUBoSK7h69bwSbmG2wmehRJ9+o2MD0CcCb6ka/LVDo
YPkwRVGESRU32TgpXIN4YOVNIY/163NAQ/Af437SJRIXiKzMsciS4/sKHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD1qp8NHPweH+bonnDKXcKS/lb3BMB8GA1UdIwQY
MBaAFG6ivjcy9u/VnH3lqwMHKgEscbXtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnFLLU56TDI3OVdjZmVXckF3Y3FBU3h4dGUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xNmJhMTEtNzczYi00ZTdlLWIwZGQt
MTMwODZlY2ZmOWQ1LzEvUFdxbncwY19CNGY1dWllY01wZHdwTC1WdmNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8xNmJhMTEtNzczYi00ZTdlLWIwZGQtMTMwODZlY2ZmOWQ1
LzEvYnFLLU56TDI3OVdjZmVXckF3Y3FBU3h4dGUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBWZYuMA0G
CSqGSIb3DQEBCwUAA4IBAQCMa1ZMYZnmjHK/QIZ8yHWELdW0tdFSoJcTR1Gknlhb
fdi7I9hF/ak0hgvUfNBWX5rM9IQNWmzHCs2NygnOk7c+aOueKKwQjnRi/k+Tzi/F
nim8XJfDywcpXBCvffxK6iP3C7RLji7Gtif0wwGhB8BrJh9IHZ0bS07jMUheYOBB
YrLHl1tbbmLzelrNsO9BST1uSaKKnS+cvhex1X6V5aEkVe8gqS9fqtWlT6n6XGwV
o/XTuuIXIY0pehz8imMyiEpmOqlkA5M7Uez8rx1HChugJJkFG+14FyM/ppUvh8AF
krqh1tNdZsTjdhy34K5GNjIez8PA803TK/WYeaYoUz+S
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:51:10 2025 by rpki-client