Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/1-wSj_jNbSFZNPKzrs0H7fMlUYPs.roa
File: 1-wSj_jNbSFZNPKzrs0H7fMlUYPs.roa (raw, json)
Hash identifier: QwucWuCpsfVGmeIL4+WbPwDASjNtyxA0uvqhnVE0kXk=
Subject key identifier: FB:04:A3:FE:33:5B:48:56:4D:3C:AC:EB:B3:41:FB:7C:C9:54:60:FB
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 019421B1E1330B5A13930E5C34E8756CDF48
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/1-wSj_jNbSFZNPKzrs0H7fMlUYPs.roa
Signing time: Wed 01 Jan 2025 11:48:13 +0000
ROA not before: Wed 01 Jan 2025 11:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214275
IP address blocks: 46.107.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft
rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:e1:33:0b:5a:13:93:0e:5c:34:e8:75:6c:df:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 11:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fb04a3fe335b48564d3cacebb341fb7cc95460fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:94:9c:a6:82:a8:2b:c4:7b:3a:b7:af:56:9b:
39:fe:2d:32:8f:66:88:df:41:67:82:0e:54:3a:02:
cb:8b:ee:6d:a2:f7:1b:9d:bc:31:8f:50:d0:8e:cb:
de:da:38:3f:38:62:11:db:e0:af:ca:06:ff:08:5e:
64:8b:29:74:df:a3:44:34:37:8d:dd:e8:8f:42:93:
11:6f:17:dc:60:2a:1d:ca:d6:76:df:76:d3:87:3e:
e1:e7:a1:95:6c:61:13:e1:31:85:44:c3:7e:47:91:
75:24:51:6f:2b:41:e6:6e:97:af:1b:5e:05:c0:16:
eb:2f:81:ea:9c:74:a2:8d:67:6e:b2:6c:68:29:79:
a0:2c:a7:5a:8c:d4:c2:fb:6f:5b:41:95:3b:98:b7:
90:27:23:03:97:e7:cd:cb:98:06:b3:e3:36:20:9f:
04:1a:2a:13:30:f7:8f:b1:71:8c:60:ee:f9:0c:fc:
c4:32:d7:66:46:7d:01:50:0e:a6:c2:58:f8:c0:65:
0e:76:f5:94:9e:ed:a9:db:e8:35:24:af:86:a9:a4:
1e:2d:ad:c5:d0:af:ee:1b:dd:38:55:b1:73:d9:ff:
a2:01:3d:9b:c4:de:56:c7:f9:8a:54:73:1c:ca:fb:
55:f7:c4:3b:f2:3f:76:2c:53:eb:55:ab:b9:87:11:
e3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:04:A3:FE:33:5B:48:56:4D:3C:AC:EB:B3:41:FB:7C:C9:54:60:FB
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/1-wSj_jNbSFZNPKzrs0H7fMlUYPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.107.11.0/24
Signature Algorithm: sha256WithRSAEncryption
15:1b:12:0d:8a:84:3a:67:2b:da:8a:5f:66:6a:3a:e9:c3:a8:
99:ee:1e:17:86:0f:fe:8e:2f:96:3e:05:c6:af:73:5a:c9:31:
2a:36:13:e5:a4:7b:86:b0:14:af:44:ff:8c:0b:05:be:ed:b3:
60:f0:ab:56:1d:0a:c6:1f:28:e3:15:31:4e:4d:32:93:e8:ad:
72:95:63:5d:ef:a9:a4:87:9d:61:6b:21:85:c3:7e:9f:4f:e4:
ec:e1:02:f6:5f:d9:07:07:e1:ab:84:9c:f1:4f:92:95:3b:51:
17:3f:e3:22:0f:45:55:44:df:6c:65:2c:71:38:4f:c2:8d:9f:
51:2c:1d:72:b7:20:67:f6:83:3e:62:4a:41:9a:b5:7f:91:c5:
c6:68:e3:1c:1d:f2:4c:bb:ef:e4:9b:4f:d1:72:43:75:b6:5a:
68:ec:a1:50:91:81:e9:a7:ce:b7:19:64:6b:c6:f0:1b:a6:ca:
cf:5a:db:b6:be:4b:76:9e:28:4f:2b:f8:b7:ef:1c:cb:0f:cf:
e6:dc:e2:ae:f0:4e:ed:bd:ea:6a:62:10:a4:4f:88:fe:2f:33:
3d:68:44:6c:4e:da:b4:5b:0c:2e:57:c6:5c:60:fe:02:09:01:
76:70:a9:7a:11:ad:dd:8f:78:dc:11:09:ca:ec:4a:10:6d:21:
07:88:84:89
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQhseEzC1oTkw5cNOh1bN9IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4
YWFlN2IwHhcNMjUwMTAxMTE0ODEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjA0YTNmZTMzNWI0ODU2NGQzY2FjZWJiMzQxZmI3Y2M5NTQ2MGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJScpoKoK8R7OrevVps5/i0yj2aI
30Fngg5UOgLLi+5tovcbnbwxj1DQjsve2jg/OGIR2+Cvygb/CF5kiyl036NENDeN
3eiPQpMRbxfcYCodytZ233bThz7h56GVbGET4TGFRMN+R5F1JFFvK0HmbpevG14F
wBbrL4HqnHSijWdusmxoKXmgLKdajNTC+29bQZU7mLeQJyMDl+fNy5gGs+M2IJ8E
GioTMPePsXGMYO75DPzEMtdmRn0BUA6mwlj4wGUOdvWUnu2p2+g1JK+GqaQeLa3F
0K/uG904VbFz2f+iAT2bxN5Wx/mKVHMcyvtV98Q78j92LFPrVau5hxHj7QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPsEo/4zW0hWTTys67NB+3zJVGD7MB8GA1UdIwQY
MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt
MjkyYWU0NmU2MzAyLzEvMS13U2pfak5iU0ZaTlBLenJzMEg3Zk1sVVlQcy5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOGQvZTkwOTc2LTNkZDEtNDcxNi1iYmY2LTI5MmFlNDZlNjMw
Mi8xLzhDMnNZRjlHV1hHTUNoWGg5ekxMMVBTS3Jucy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC5rCzAN
BgkqhkiG9w0BAQsFAAOCAQEAFRsSDYqEOmcr2opfZmo66cOome4eF4YP/o4vlj4F
xq9zWskxKjYT5aR7hrAUr0T/jAsFvu2zYPCrVh0Kxh8o4xUxTk0yk+itcpVjXe+p
pIedYWshhcN+n0/k7OEC9l/ZBwfhq4Sc8U+SlTtRFz/jIg9FVUTfbGUscThPwo2f
USwdcrcgZ/aDPmJKQZq1f5HFxmjjHB3yTLvv5JtP0XJDdbZaaOyhUJGB6afOtxlk
a8bwG6bKz1rbtr5Ldp4oTyv4t+8cyw/P5tzirvBO7b3qamIQpE+I/i8zPWhEbE7a
tFsMLlfGXGD+AgkBdnCpehGt3Y943BEJyuxKEG0hB4iEiQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 16:19:38 2025 by rpki-client