Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/wVptusVHIdbO2Rty9inFJlCpXfo.roa
File: wVptusVHIdbO2Rty9inFJlCpXfo.roa (raw, json)
Hash identifier: VLpPb0bMQpDYHBCAVfuSVFIISUNTNn9pYkADsImtNL0=
Subject key identifier: C1:5A:6D:BA:C5:47:21:D6:CE:D9:1B:72:F6:29:C5:26:50:A9:5D:FA
Certificate issuer: /CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Certificate serial: 0195433AD19B77002173895B7CA9C4C1F53C
Authority key identifier: C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/wVptusVHIdbO2Rty9inFJlCpXfo.roa
Signing time: Wed 26 Feb 2025 17:08:02 +0000
ROA not before: Wed 26 Feb 2025 17:08:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202391
IP address blocks: 46.34.160.0/22 maxlen: 24
46.34.160.0/24 maxlen: 24
46.34.161.0/24 maxlen: 24
46.34.162.0/24 maxlen: 24
89.42.197.0/24 maxlen: 24
89.42.198.0/24 maxlen: 24
89.47.196.0/24 maxlen: 24
89.47.199.0/24 maxlen: 24
89.47.203.0/24 maxlen: 24
92.114.48.0/23 maxlen: 24
92.114.48.0/24 maxlen: 24
92.114.49.0/24 maxlen: 24
2a01:5500::/29 maxlen: 29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 15 Mar 2025 21:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:43:3a:d1:9b:77:00:21:73:89:5b:7c:a9:c4:c1:f5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6e1c8c65c86e8d26ddbeb68658a39a7a8e27866
Validity
Not Before: Feb 26 17:08:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c15a6dbac54721d6ced91b72f629c52650a95dfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:16:de:16:a4:dd:38:62:a4:18:4a:8b:bd:d6:
03:38:a6:a4:4d:b7:d8:a3:33:98:23:b1:0b:85:53:
68:5c:ee:80:5c:c9:7d:fb:8f:f0:93:8a:c1:5e:dc:
a1:b1:57:cd:5f:b5:ca:00:aa:57:05:8d:31:a2:82:
ff:8f:a5:b0:07:92:59:82:5d:ec:80:9a:0f:19:f4:
0d:20:ce:32:e8:97:f9:4c:5f:ea:41:d4:7e:ea:c9:
07:56:bb:ae:2c:12:b4:56:eb:79:9f:da:6c:41:69:
5f:57:10:32:fb:2c:34:00:8a:3a:8e:a1:91:bf:ad:
1f:74:92:0d:7a:1f:5a:5e:01:fe:26:b9:65:86:78:
1c:9d:a2:9c:21:62:25:cf:89:84:b8:57:8e:b9:c9:
c7:44:f3:6d:eb:43:2e:68:0b:18:14:54:95:9c:09:
55:1c:0d:92:95:0f:ae:65:96:0c:ef:aa:e3:70:8e:
64:45:a4:a9:5b:b5:0c:50:11:a5:46:31:24:d2:f0:
56:c7:ff:b2:56:b5:b2:d0:7d:0b:89:40:c4:c7:92:
32:8b:f1:fc:15:09:5c:24:15:34:eb:8d:e2:a8:88:
2f:b8:82:b0:12:d0:27:1d:c5:71:c9:f6:8d:a7:fa:
31:d6:10:17:1d:a3:03:d4:ad:da:ec:a8:4e:46:dc:
38:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5A:6D:BA:C5:47:21:D6:CE:D9:1B:72:F6:29:C5:26:50:A9:5D:FA
X509v3 Authority Key Identifier:
keyid:C6:E1:C8:C6:5C:86:E8:D2:6D:DB:EB:68:65:8A:39:A7:A8:E2:78:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xuHIxlyG6NJt2-toZYo5p6jieGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/wVptusVHIdbO2Rty9inFJlCpXfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/a453fe-a664-47a2-8b8a-ce5e01e71c91/1/xuHIxlyG6NJt2-toZYo5p6jieGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.160.0/22
89.42.197.0-89.42.198.255
89.47.196.0/24
89.47.199.0/24
89.47.203.0/24
92.114.48.0/23
IPv6:
2a01:5500::/29
Signature Algorithm: sha256WithRSAEncryption
05:5c:56:4d:34:64:26:bf:58:41:4b:69:8f:03:ee:93:6e:9e:
b9:36:02:5e:bc:16:c9:28:da:ac:d3:a2:4e:a3:6c:df:f8:16:
90:06:19:6a:1f:e0:91:27:e5:f7:d9:c1:2d:5e:99:13:96:15:
a6:c1:39:69:c2:81:b0:4d:c8:16:18:2f:3b:f6:1c:dd:60:00:
5f:17:db:17:19:16:b0:1b:63:64:89:d9:2a:85:15:3b:3b:55:
30:27:24:f7:ec:fa:8d:d7:ef:34:69:48:7b:4e:51:63:16:4b:
71:8a:44:31:fd:c5:3f:5a:7a:4d:3d:5f:73:21:08:41:81:2e:
34:69:a2:0f:40:03:53:62:b0:57:53:d7:44:3a:ca:95:e7:b7:
cf:63:b7:74:b8:1c:2f:0e:29:1b:07:db:70:40:97:a5:fb:f2:
c9:fe:b5:74:2c:f1:a2:d0:93:85:c1:f5:c8:70:8b:4f:15:e6:
b1:b7:f4:9a:8b:18:99:c6:86:55:22:38:15:c2:14:e1:68:ae:
51:4c:5f:02:9d:d6:ba:47:04:8c:c6:8c:05:bb:ee:83:9d:57:
b4:10:1b:03:e8:12:72:8a:46:c5:11:ee:b0:33:9a:49:ca:41:
84:6d:97:ca:3a:f5:ed:50:21:ed:fb:27:7b:5e:f5:ad:6c:77:
26:c3:e7:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 15 05:42:06 2025 by rpki-client