Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Pw5pxgxh4YBOMaORn77EabF2Fu4.roa
File: Pw5pxgxh4YBOMaORn77EabF2Fu4.roa (raw, json)
Hash identifier: lNnvoxEegRirRWi6CISuNrIIhIeHd871suCGDkEiThs=
Subject key identifier: 3F:0E:69:C6:0C:61:E1:80:4E:31:A3:91:9F:BE:C4:69:B1:76:16:EE
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 019425FDEE349D527FA5ADCD9F0BD8EC64E9
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Pw5pxgxh4YBOMaORn77EabF2Fu4.roa
Signing time: Thu 02 Jan 2025 07:49:46 +0000
ROA not before: Thu 02 Jan 2025 07:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214625
IP address blocks: 2a0a:79c0:500::/44 maxlen: 44
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 16:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ee:34:9d:52:7f:a5:ad:cd:9f:0b:d8:ec:64:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 07:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f0e69c60c61e1804e31a3919fbec469b17616ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:54:bb:ca:a8:27:e2:a4:2e:aa:18:a3:fa:c3:
04:dc:03:5c:53:98:71:43:c8:b1:0b:43:89:d2:bf:
73:1d:39:3e:81:4d:8f:d2:a5:92:e4:57:85:e1:33:
9b:94:e2:87:a6:8e:09:b4:72:e8:5a:ff:1e:aa:2b:
4e:4a:ff:d2:bf:90:c7:7a:5f:24:54:66:25:ad:de:
67:d1:a9:0a:88:11:b0:18:c1:cd:70:a7:e5:4d:d9:
72:40:f9:fc:61:9b:cf:35:bc:6f:30:19:4f:66:42:
a0:83:f8:74:8b:22:74:d8:e2:0f:9d:f8:5b:63:71:
d5:81:d9:6c:03:73:2d:c6:e7:5b:25:7e:96:20:d8:
92:9d:5b:31:7b:0e:cd:dd:ce:24:a8:47:65:56:25:
be:3b:3d:78:f0:d2:cc:62:a7:b0:46:3d:99:40:0d:
aa:9d:40:04:da:77:68:5d:dc:07:e1:8d:d1:6e:54:
3a:27:72:88:0a:5e:6e:14:11:25:d1:f4:84:50:44:
9a:86:88:77:a7:96:51:07:13:c5:74:86:2d:5a:45:
6a:1a:33:53:56:d6:60:ec:96:15:94:5d:47:ec:dd:
5e:fa:3b:3e:53:9b:ab:b2:a4:d4:74:ae:fa:6a:70:
cb:a8:a0:46:37:7b:21:bd:dc:b2:c9:5a:9f:8a:2d:
c3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0E:69:C6:0C:61:E1:80:4E:31:A3:91:9F:BE:C4:69:B1:76:16:EE
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/Pw5pxgxh4YBOMaORn77EabF2Fu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:79c0:500::/44
Signature Algorithm: sha256WithRSAEncryption
c5:f8:e9:de:02:c8:b5:98:bf:e7:34:22:50:e0:53:9d:d8:bf:
31:77:05:8e:d9:80:51:68:7e:7e:d0:bd:83:d6:1e:42:c7:a6:
ca:49:ca:10:46:56:1c:b0:ed:9c:97:31:4f:27:4c:36:9a:63:
ec:cd:e9:34:79:08:86:17:b9:20:62:3b:26:a1:cd:35:27:13:
8f:96:48:07:0c:3b:93:87:f3:67:f2:13:4e:43:d6:9a:e4:1e:
13:49:2f:2b:37:83:5f:13:32:5f:0b:53:70:32:6e:09:50:c3:
76:60:fc:d2:e4:1b:5c:72:30:c2:e3:5c:1b:0f:cf:a5:4f:c7:
0c:e8:aa:d0:ec:41:71:6b:d7:11:a8:56:f6:4e:05:da:54:84:
42:a4:66:f1:6d:66:7b:14:e4:c0:85:3a:c6:e8:e4:45:94:81:
b3:51:f6:15:c9:2b:4f:29:b3:df:fa:4d:8d:5a:77:ae:32:d5:
67:5d:f9:fe:e5:cf:37:2d:a9:f0:ea:80:4d:6b:0f:d0:a3:11:
91:72:4b:09:9e:53:88:3e:b5:bf:dc:8f:42:8c:b9:21:f2:dd:
7b:bc:cf:48:a4:51:38:3c:08:3b:fa:db:ee:7d:86:15:25:e4:
51:e2:f8:c7:0e:de:fc:2e:6d:82:52:df:fb:13:99:d5:ad:87:
e9:53:0d:77
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQl/e40nVJ/pa3NnwvY7GTpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl
ZDc5NTQwHhcNMjUwMTAyMDc0OTQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjBlNjljNjBjNjFlMTgwNGUzMWEzOTE5ZmJlYzQ2OWIxNzYxNmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA71S7yqgn4qQuqhij+sME3ANcU5hx
Q8ixC0OJ0r9zHTk+gU2P0qWS5FeF4TOblOKHpo4JtHLoWv8eqitOSv/Sv5DHel8k
VGYlrd5n0akKiBGwGMHNcKflTdlyQPn8YZvPNbxvMBlPZkKgg/h0iyJ02OIPnfhb
Y3HVgdlsA3MtxudbJX6WINiSnVsxew7N3c4kqEdlViW+Oz148NLMYqewRj2ZQA2q
nUAE2ndoXdwH4Y3RblQ6J3KICl5uFBEl0fSEUESahoh3p5ZRBxPFdIYtWkVqGjNT
VtZg7JYVlF1H7N1e+js+U5ursqTUdK76anDLqKBGN3shvdyyyVqfii3DSQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFD8OacYMYeGATjGjkZ++xGmxdhbuMB8GA1UdIwQY
MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt
M2Q5MWVkZTViMmIxLzEvUHc1cHhneGg0WUJPTWFPUm43N0VhYkYyRnU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx
LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgp5wAUA
MA0GCSqGSIb3DQEBCwUAA4IBAQDF+OneAsi1mL/nNCJQ4FOd2L8xdwWO2YBRaH5+
0L2D1h5Cx6bKScoQRlYcsO2clzFPJ0w2mmPszek0eQiGF7kgYjsmoc01JxOPlkgH
DDuTh/Nn8hNOQ9aa5B4TSS8rN4NfEzJfC1NwMm4JUMN2YPzS5BtccjDC41wbD8+l
T8cM6KrQ7EFxa9cRqFb2TgXaVIRCpGbxbWZ7FOTAhTrG6ORFlIGzUfYVyStPKbPf
+k2NWneuMtVnXfn+5c83Lanw6oBNaw/QoxGRcksJnlOIPrW/3I9CjLkh8t17vM9I
pFE4PAg7+tvufYYVJeRR4vjHDt78Lm2CUt/7E5nVrYfpUw13
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:00:03 2025 by rpki-client