Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/UWM-Kz1OP0UjWcYPffeOWK62TZs.roa
File: UWM-Kz1OP0UjWcYPffeOWK62TZs.roa (raw, json)
Hash identifier: lnPff/3R3t0peMh+icEOeZMrkDG2dfoemotH4CHOKR8=
Subject key identifier: 51:63:3E:2B:3D:4E:3F:45:23:59:C6:0F:7D:F7:8E:58:AE:B6:4D:9B
Certificate issuer: /CN=8cad303bc70b12f83dbf89fc1489cb4612cf5526
Certificate serial: 01942444BE0F5AC1BC1F5B5FF8694E340104
Authority key identifier: 8C:AD:30:3B:C7:0B:12:F8:3D:BF:89:FC:14:89:CB:46:12:CF:55:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/UWM-Kz1OP0UjWcYPffeOWK62TZs.roa
Signing time: Wed 01 Jan 2025 23:47:52 +0000
ROA not before: Wed 01 Jan 2025 23:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60258
IP address blocks: 82.194.16.0/24 maxlen: 24
82.194.17.0/24 maxlen: 24
82.194.18.0/24 maxlen: 24
82.194.19.0/24 maxlen: 24
82.194.20.0/24 maxlen: 24
82.194.21.0/24 maxlen: 24
82.194.22.0/24 maxlen: 24
82.194.23.0/24 maxlen: 24
82.194.24.0/24 maxlen: 24
82.194.25.0/24 maxlen: 24
82.194.26.0/24 maxlen: 24
82.194.27.0/24 maxlen: 24
82.194.28.0/24 maxlen: 24
82.194.29.0/24 maxlen: 24
82.194.30.0/24 maxlen: 24
82.194.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:be:0f:5a:c1:bc:1f:5b:5f:f8:69:4e:34:01:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cad303bc70b12f83dbf89fc1489cb4612cf5526
Validity
Not Before: Jan 1 23:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51633e2b3d4e3f452359c60f7df78e58aeb64d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:59:65:e5:c6:a4:37:f9:09:d7:2f:f9:25:65:
40:60:8a:3f:d9:f9:ab:47:d8:79:2d:41:fc:ff:ed:
5f:5c:d8:b2:a6:be:3a:a1:45:02:f2:f0:ef:cb:01:
61:c3:61:4d:68:50:52:3f:4f:4b:08:34:93:4d:45:
06:de:eb:82:4e:d8:65:df:08:2a:dd:d9:9b:de:a0:
ec:7b:6c:9c:73:2a:4a:2c:67:96:6c:f5:8c:b1:fc:
ab:d1:88:39:52:41:26:78:b1:1d:a3:70:63:b4:0c:
b0:46:5c:6a:6f:bf:a7:6c:74:e4:e9:ad:54:10:ee:
95:ad:75:29:b9:04:72:6d:d4:94:f6:8b:fb:2e:60:
56:4f:a9:23:7b:e7:03:84:df:17:48:d8:18:b0:ab:
2d:d0:b8:51:a1:20:5e:74:7b:92:9f:cb:e0:06:fb:
18:8a:eb:72:2d:73:fe:29:cf:e5:3e:ba:61:a9:24:
45:37:e0:5a:40:ba:e2:90:47:9e:90:f8:75:6f:b2:
42:f5:79:18:c7:50:95:47:bf:8d:a5:72:7f:3c:e6:
08:ff:e9:21:99:92:0b:71:06:b0:93:88:7b:f3:a2:
04:47:fb:da:6c:5a:8a:c2:1a:0e:bf:39:c2:eb:4c:
57:d5:dc:2c:b3:47:61:ff:ef:1e:d3:58:8d:a9:76:
b8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:63:3E:2B:3D:4E:3F:45:23:59:C6:0F:7D:F7:8E:58:AE:B6:4D:9B
X509v3 Authority Key Identifier:
keyid:8C:AD:30:3B:C7:0B:12:F8:3D:BF:89:FC:14:89:CB:46:12:CF:55:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jK0wO8cLEvg9v4n8FInLRhLPVSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/UWM-Kz1OP0UjWcYPffeOWK62TZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/1d3f9e-9a6c-4c86-a036-482555452831/1/jK0wO8cLEvg9v4n8FInLRhLPVSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.194.16.0/20
Signature Algorithm: sha256WithRSAEncryption
37:f2:10:a9:b3:9b:a6:6d:5a:d3:85:36:77:fb:fd:ea:a6:9e:
3a:f5:4b:2b:18:8d:b5:2d:bb:5e:c8:48:e4:41:8d:00:6f:5e:
2b:69:80:cd:4b:ba:17:1f:98:4d:5a:3c:aa:39:62:69:2c:e1:
a1:7c:70:99:7d:a5:dc:d8:6d:8f:89:d7:f6:3c:5b:fb:e8:b0:
84:3d:f7:91:6c:52:34:e4:2e:09:6a:7f:38:62:ac:b7:11:bc:
b2:c9:2d:f1:f7:4b:8b:bf:88:b0:90:10:fd:67:db:00:bc:f8:
95:f7:f0:57:e0:85:8d:07:c2:ef:49:da:e5:d6:3f:b0:85:9c:
d7:b1:f7:30:e8:b7:76:f1:94:dd:d1:6b:32:dd:ec:39:2c:3d:
29:8f:60:0e:74:6d:f4:fa:c4:b2:2b:aa:df:9a:20:b3:fe:e8:
ca:28:8f:63:20:32:7e:a9:c1:9a:32:ea:5b:81:6f:26:bb:d5:
c8:6d:16:d5:d7:1c:df:20:80:50:ed:eb:2e:70:65:71:9d:5e:
80:e5:46:98:62:81:e8:73:e5:23:5f:a6:16:da:56:bd:06:42:
b0:ba:05:c1:c2:9f:c5:46:e4:26:b6:b8:48:2e:3a:a0:2f:e8:
15:eb:48:d2:44:fb:80:df:37:bb:9d:99:f3:80:70:f4:1c:7a:
f4:a5:67:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRL4PWsG8H1tf+GlONAEEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjYWQzMDNiYzcwYjEyZjgzZGJmODlmYzE0ODljYjQ2MTJj
ZjU1MjYwHhcNMjUwMTAxMjM0NzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTYzM2UyYjNkNGUzZjQ1MjM1OWM2MGY3ZGY3OGU1OGFlYjY0ZDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvFll5cakN/kJ1y/5JWVAYIo/2fmr
R9h5LUH8/+1fXNiypr46oUUC8vDvywFhw2FNaFBSP09LCDSTTUUG3uuCTthl3wgq
3dmb3qDse2yccypKLGeWbPWMsfyr0Yg5UkEmeLEdo3BjtAywRlxqb7+nbHTk6a1U
EO6VrXUpuQRybdSU9ov7LmBWT6kje+cDhN8XSNgYsKst0LhRoSBedHuSn8vgBvsY
iutyLXP+Kc/lPrphqSRFN+BaQLrikEeekPh1b7JC9XkYx1CVR7+NpXJ/POYI/+kh
mZILcQawk4h786IER/vabFqKwhoOvznC60xX1dwss0dh/+8e01iNqXa4WwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFFjPis9Tj9FI1nGD333jliutk2bMB8GA1UdIwQY
MBaAFIytMDvHCxL4Pb+J/BSJy0YSz1UmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakswd084Y0xFdmc5djRuOEZJbkxSaExQVlNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8xZDNmOWUtOWE2Yy00Yzg2LWEwMzYt
NDgyNTU1NDUyODMxLzEvVVdNLUt6MU9QMFVqV2NZUGZmZU9XSzYyVFpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8xZDNmOWUtOWE2Yy00Yzg2LWEwMzYtNDgyNTU1NDUyODMx
LzEvakswd084Y0xFdmc5djRuOEZJbkxSaExQVlNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUsIQMA0G
CSqGSIb3DQEBCwUAA4IBAQA38hCps5umbVrThTZ3+/3qpp469UsrGI21LbteyEjk
QY0Ab14raYDNS7oXH5hNWjyqOWJpLOGhfHCZfaXc2G2Pidf2PFv76LCEPfeRbFI0
5C4Jan84Yqy3EbyyyS3x90uLv4iwkBD9Z9sAvPiV9/BX4IWNB8LvSdrl1j+whZzX
sfcw6Ld28ZTd0Wsy3ew5LD0pj2AOdG30+sSyK6rfmiCz/ujKKI9jIDJ+qcGaMupb
gW8mu9XIbRbV1xzfIIBQ7esucGVxnV6A5UaYYoHoc+UjX6YW2la9BkKwugXBwp/F
RuQmtrhILjqgL+gV60jSRPuA3ze7nZnzgHD0HHr0pWew
-----END CERTIFICATE-----
Generated at Mon Mar 10 00:37:15 2025 by rpki-client