Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/ukTsh__PD-e49THfmeczO06Ewzg.roa
File: ukTsh__PD-e49THfmeczO06Ewzg.roa (raw, json)
Hash identifier: 2pxpwWB8nzVKK5ZFAoaYU/qGI9s7E3tcdxUF1upjgL8=
Subject key identifier: BA:44:EC:87:FF:CF:0F:E7:B8:F5:31:DF:99:E7:33:3B:4E:84:C3:38
Certificate issuer: /CN=c334a35abfa82d549e490704d68bbe658005d63c
Certificate serial: 0194244496BAD9EBF4BBDA9BAD8370642453
Authority key identifier: C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/ukTsh__PD-e49THfmeczO06Ewzg.roa
Signing time: Wed 01 Jan 2025 23:47:42 +0000
ROA not before: Wed 01 Jan 2025 23:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21371
IP address blocks: 37.46.0.0/21 maxlen: 21
80.69.0.0/19 maxlen: 19
89.187.96.0/19 maxlen: 19
185.2.164.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:96:ba:d9:eb:f4:bb:da:9b:ad:83:70:64:24:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c334a35abfa82d549e490704d68bbe658005d63c
Validity
Not Before: Jan 1 23:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba44ec87ffcf0fe7b8f531df99e7333b4e84c338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:0c:2c:d7:c0:9b:55:62:2d:2b:ec:ce:0b:
06:c0:ef:17:69:8c:22:54:05:63:c7:fe:6a:bc:91:
16:b0:54:2a:8c:a3:d8:90:6c:84:8a:17:96:da:ec:
b7:1a:17:c8:fa:ef:b3:c6:a5:14:ae:f2:de:bc:20:
1a:07:35:90:ac:1a:b9:5c:47:97:a6:37:f8:32:d6:
2c:c9:14:5e:fd:43:9b:80:a9:90:ce:27:86:3a:3f:
2b:11:19:35:a0:86:ff:39:e8:76:b0:5d:75:ec:e6:
d4:fb:99:49:2b:cc:0b:11:fc:10:eb:9e:56:61:62:
33:ba:d8:f9:49:40:80:66:78:0a:ca:9d:85:71:73:
2a:c1:d2:df:5f:72:cb:62:ae:16:34:ec:63:ff:38:
32:35:49:99:16:5f:c9:b4:22:7e:cd:79:45:92:2c:
2e:be:8c:6c:eb:1a:c1:4a:ab:84:01:72:5b:19:af:
62:d7:c2:34:33:31:44:ea:8e:94:ec:f0:44:19:4e:
16:9b:ea:61:24:11:a3:ff:1a:38:76:ae:86:9f:26:
f0:f0:93:50:51:46:3b:3e:a5:59:bd:07:7a:32:25:
a9:24:10:f8:8e:7b:53:98:80:e4:c4:f0:55:3f:ea:
80:32:63:ea:ca:48:ad:14:6a:ad:f0:3e:13:88:1c:
7e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:44:EC:87:FF:CF:0F:E7:B8:F5:31:DF:99:E7:33:3B:4E:84:C3:38
X509v3 Authority Key Identifier:
keyid:C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/ukTsh__PD-e49THfmeczO06Ewzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.0.0/21
80.69.0.0/19
89.187.96.0/19
185.2.164.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:f6:4f:0f:2a:9e:91:45:d4:8e:31:f9:b4:69:88:2f:02:07:
7f:57:75:64:32:17:16:fe:77:46:e4:33:47:fb:df:8b:9d:80:
5e:55:b7:de:30:34:1e:92:68:65:a9:d3:cc:34:f6:c4:35:78:
e2:23:0c:e1:35:a3:3c:b8:43:b6:01:e4:e0:4a:78:8a:e8:bb:
11:59:d8:a1:21:c4:a5:4e:2b:23:34:01:80:9f:83:be:1a:0c:
5c:97:08:b9:74:0d:0d:61:17:7f:49:4a:6d:74:25:9c:fe:94:
5e:d7:f4:75:08:a7:83:be:2a:d3:d0:79:63:82:ae:df:ce:ec:
c4:78:51:90:4e:ed:51:a0:bc:70:2a:8f:bf:18:15:ed:9c:7f:
5a:05:18:c4:32:51:f2:67:b8:76:85:83:3c:32:09:52:1c:09:
80:c8:26:e5:54:6a:b7:29:e0:14:19:39:a0:1f:29:7e:72:fc:
86:8a:43:78:38:db:8d:81:88:83:cd:de:17:8a:a2:7c:e8:b6:
5d:e5:9c:6f:58:8b:0b:7e:1f:42:b2:f0:b0:c5:2c:1c:a2:a0:
80:11:bd:89:59:3b:3d:99:1a:52:f2:dc:de:ad:08:fe:27:d0:
14:fc:a3:1f:ed:19:cd:17:fe:10:ac:ea:15:2a:b2:0d:38:e2:
fa:28:d6:98
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAZQkRJa62ev0u9qbrYNwZCRTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzMzRhMzVhYmZhODJkNTQ5ZTQ5MDcwNGQ2OGJiZTY1ODAw
NWQ2M2MwHhcNMjUwMTAxMjM0NzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTQ0ZWM4N2ZmY2YwZmU3YjhmNTMxZGY5OWU3MzMzYjRlODRjMzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+kMLNfAm1ViLSvszgsGwO8XaYwi
VAVjx/5qvJEWsFQqjKPYkGyEiheW2uy3GhfI+u+zxqUUrvLevCAaBzWQrBq5XEeX
pjf4MtYsyRRe/UObgKmQzieGOj8rERk1oIb/Oeh2sF117ObU+5lJK8wLEfwQ655W
YWIzutj5SUCAZngKyp2FcXMqwdLfX3LLYq4WNOxj/zgyNUmZFl/JtCJ+zXlFkiwu
voxs6xrBSquEAXJbGa9i18I0MzFE6o6U7PBEGU4Wm+phJBGj/xo4dq6Gnybw8JNQ
UUY7PqVZvQd6MiWpJBD4jntTmIDkxPBVP+qAMmPqykitFGqt8D4TiBx+wQIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFLpE7If/zw/nuPUx35nnMztOhMM4MB8GA1UdIwQY
MBaAFMM0o1q/qC1UnkkHBNaLvmWABdY8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3pTaldyLW9MVlNlU1FjRTFvdS1aWUFGMWp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8zOWIwOGQtZWIwMS00M2IwLWI1NmMt
MjczODg0YjUzYzZlLzEvdWtUc2hfX1BELWU0OVRIZm1lY3pPMDZFd3pnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8zOWIwOGQtZWIwMS00M2IwLWI1NmMtMjczODg0YjUzYzZl
LzEvd3pTaldyLW9MVlNlU1FjRTFvdS1aWUFGMWp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQDJS4AAwQF
UEUAAwQFWbtgAwQCuQKkMA0GCSqGSIb3DQEBCwUAA4IBAQC09k8PKp6RRdSOMfm0
aYgvAgd/V3VkMhcW/ndG5DNH+9+LnYBeVbfeMDQekmhlqdPMNPbENXjiIwzhNaM8
uEO2AeTgSniK6LsRWdihIcSlTisjNAGAn4O+Ggxclwi5dA0NYRd/SUptdCWc/pRe
1/R1CKeDvirT0Hljgq7fzuzEeFGQTu1RoLxwKo+/GBXtnH9aBRjEMlHyZ7h2hYM8
MglSHAmAyCblVGq3KeAUGTmgHyl+cvyGikN4ONuNgYiDzd4XiqJ86LZd5ZxvWIsL
fh9CsvCwxSwcoqCAEb2JWTs9mRpS8tzerQj+J9AU/KMf7RnNF/4QrOoVKrINOOL6
KNaY
-----END CERTIFICATE-----
Generated at Thu Apr 17 18:56:51 2025 by rpki-client