Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/ZCzZ6B2u5Zf0R9Y8Y6T2rnCnCK0.roa
File: ZCzZ6B2u5Zf0R9Y8Y6T2rnCnCK0.roa (raw, json)
Hash identifier: BwRWZGhT6pSvo1byUoJl9cETFO/GPicyDq7ilzu/Egw=
Subject key identifier: 64:2C:D9:E8:1D:AE:E5:97:F4:47:D6:3C:63:A4:F6:AE:70:A7:08:AD
Certificate issuer: /CN=586329f307b98285b71d22c7197ec19b701ded67
Certificate serial: 01941FFA1A627CB8CE1E3F2B655D4B6A11F0
Authority key identifier: 58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/ZCzZ6B2u5Zf0R9Y8Y6T2rnCnCK0.roa
Signing time: Wed 01 Jan 2025 03:47:51 +0000
ROA not before: Wed 01 Jan 2025 03:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42586
IP address blocks: 77.36.128.0/17 maxlen: 21
77.36.128.0/18 maxlen: 18
77.36.128.0/19 maxlen: 19
77.36.128.0/20 maxlen: 20
77.36.144.0/20 maxlen: 20
77.36.160.0/19 maxlen: 19
77.36.160.0/20 maxlen: 20
77.36.163.0/24 maxlen: 24
77.36.164.0/24 maxlen: 24
77.36.165.0/24 maxlen: 24
77.36.166.0/24 maxlen: 24
77.36.176.0/20 maxlen: 20
77.36.192.0/18 maxlen: 18
77.36.192.0/19 maxlen: 19
77.36.192.0/20 maxlen: 20
77.36.208.0/20 maxlen: 20
77.36.224.0/19 maxlen: 19
77.36.224.0/20 maxlen: 20
77.36.240.0/20 maxlen: 20
185.194.244.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.mft
rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:1a:62:7c:b8:ce:1e:3f:2b:65:5d:4b:6a:11:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586329f307b98285b71d22c7197ec19b701ded67
Validity
Not Before: Jan 1 03:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=642cd9e81daee597f447d63c63a4f6ae70a708ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:41:12:3a:3b:bd:49:c5:f0:0e:e0:a8:3e:
ce:b6:08:f9:f4:68:39:b2:d2:b0:6a:ba:3d:12:5c:
55:66:0e:77:00:c2:13:23:1b:be:83:dd:18:fc:98:
87:9b:ed:06:37:cc:68:1a:42:bc:46:33:51:9b:fb:
77:57:4d:9b:60:eb:1e:c9:55:09:a1:ca:93:c2:ea:
3d:a6:57:0c:3f:69:fa:7a:45:87:a7:ea:46:e7:ee:
6b:3f:5e:a0:0c:0d:26:05:ee:77:d5:91:33:23:60:
83:05:ab:a9:a3:90:f5:c8:c8:8a:0b:1b:13:45:ad:
21:17:b1:d0:75:17:9b:1f:6b:97:cb:aa:71:a6:b5:
9c:62:54:43:48:80:6e:ed:c5:28:24:77:3d:4a:51:
34:38:79:40:31:38:17:23:9f:27:57:46:9b:e9:ea:
65:6a:3f:15:34:93:7e:81:0a:93:4a:88:87:fc:d5:
ff:57:83:e3:fc:85:53:26:f6:e2:6e:d0:67:58:41:
00:4b:b6:fd:7c:1e:17:15:96:9b:a8:3e:7d:94:27:
0a:72:0f:43:fc:42:32:9f:78:23:03:fb:49:66:c4:
3a:40:d9:84:d6:5e:eb:15:5e:77:e7:f3:6b:2d:43:
f3:ad:27:cb:60:dd:c8:78:1c:e5:99:5b:55:6d:23:
43:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:2C:D9:E8:1D:AE:E5:97:F4:47:D6:3C:63:A4:F6:AE:70:A7:08:AD
X509v3 Authority Key Identifier:
keyid:58:63:29:F3:07:B9:82:85:B7:1D:22:C7:19:7E:C1:9B:70:1D:ED:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/ZCzZ6B2u5Zf0R9Y8Y6T2rnCnCK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0ee2ab-07d9-4a81-abf0-e0e4be6696f9/1/WGMp8we5goW3HSLHGX7Bm3Ad7Wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.128.0/17
185.194.244.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:6f:fc:8d:39:89:81:6b:cd:ca:96:4b:76:4c:d3:e7:bb:ac:
eb:35:3c:88:8e:bb:4d:1c:dd:56:39:c0:10:bb:4b:53:b9:30:
ad:5f:00:7c:f2:08:48:44:d3:55:ec:41:46:91:6e:e3:62:ad:
34:98:0c:55:af:1f:9b:6e:a9:fd:69:28:d0:9c:8e:41:ba:06:
2d:4c:02:b3:27:13:3a:20:dc:93:de:1e:d9:86:f6:d2:dc:a5:
a7:7c:e1:37:3a:ef:ad:5d:aa:9a:23:d6:59:5f:72:90:82:73:
b1:f0:e3:f7:42:41:0f:14:e9:01:81:77:d4:31:e0:82:6f:74:
4c:b3:26:9a:18:a9:56:c2:ca:e4:b1:51:c9:fa:dc:4c:cc:1c:
22:68:fd:4e:27:b0:10:3a:ea:57:46:df:9d:07:82:8e:57:a8:
60:47:7b:c9:84:e0:b7:cd:95:a0:22:6d:a9:80:0f:0f:7c:23:
f8:bb:d7:fc:50:9c:0b:f5:1b:ae:70:58:bc:41:db:a3:79:c6:
2e:2c:a6:72:c1:cd:a3:5c:b2:0b:93:64:bd:50:47:fc:d7:a0:
3b:1f:5e:f3:e1:b2:ec:f9:dd:0b:ad:da:b1:61:a4:e8:43:69:
92:59:5e:c2:ed:a7:f3:8f:83:14:8c:c6:5c:b6:47:ab:e9:34:
1f:46:c4:15
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQf+hpifLjOHj8rZV1LahHwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NjMyOWYzMDdiOTgyODViNzFkMjJjNzE5N2VjMTliNzAx
ZGVkNjcwHhcNMjUwMTAxMDM0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDJjZDllODFkYWVlNTk3ZjQ0N2Q2M2M2M2E0ZjZhZTcwYTcwOGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmRBEjo7vUnF8A7gqD7Otgj59Gg5
stKwaro9ElxVZg53AMITIxu+g90Y/JiHm+0GN8xoGkK8RjNRm/t3V02bYOseyVUJ
ocqTwuo9plcMP2n6ekWHp+pG5+5rP16gDA0mBe531ZEzI2CDBaupo5D1yMiKCxsT
Ra0hF7HQdRebH2uXy6pxprWcYlRDSIBu7cUoJHc9SlE0OHlAMTgXI58nV0ab6epl
aj8VNJN+gQqTSoiH/NX/V4Pj/IVTJvbibtBnWEEAS7b9fB4XFZabqD59lCcKcg9D
/EIyn3gjA/tJZsQ6QNmE1l7rFV535/NrLUPzrSfLYN3IeBzlmVtVbSNDpQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGQs2egdruWX9EfWPGOk9q5wpwitMB8GA1UdIwQY
MBaAFFhjKfMHuYKFtx0ixxl+wZtwHe1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0dNcDh3ZTVnb1czSFNMSEdYN0JtM0FkN1djLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wZWUyYWItMDdkOS00YTgxLWFiZjAt
ZTBlNGJlNjY5NmY5LzEvWkN6WjZCMnU1WmYwUjlZOFk2VDJybkNuQ0swLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8wZWUyYWItMDdkOS00YTgxLWFiZjAtZTBlNGJlNjY5NmY5
LzEvV0dNcDh3ZTVnb1czSFNMSEdYN0JtM0FkN1djLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHTSSAAwQC
ucL0MA0GCSqGSIb3DQEBCwUAA4IBAQAPb/yNOYmBa83Klkt2TNPnu6zrNTyIjrtN
HN1WOcAQu0tTuTCtXwB88ghIRNNV7EFGkW7jYq00mAxVrx+bbqn9aSjQnI5BugYt
TAKzJxM6INyT3h7ZhvbS3KWnfOE3Ou+tXaqaI9ZZX3KQgnOx8OP3QkEPFOkBgXfU
MeCCb3RMsyaaGKlWwsrksVHJ+txMzBwiaP1OJ7AQOupXRt+dB4KOV6hgR3vJhOC3
zZWgIm2pgA8PfCP4u9f8UJwL9RuucFi8QdujecYuLKZywc2jXLILk2S9UEf816A7
H17z4bLs+d0LrdqxYaToQ2mSWV7C7afzj4MUjMZctker6TQfRsQV
-----END CERTIFICATE-----
Generated at Sun Feb 2 09:52:47 2025 by rpki-client