Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Wy47-JT_czuS8UtEK4wylos74Qg.roa
File: Wy47-JT_czuS8UtEK4wylos74Qg.roa (raw, json)
Hash identifier: IexD4xpOcAzhCRHRR7jyELJ6maL3qIN0v+X9l07WADM=
Subject key identifier: 5B:2E:3B:F8:94:FF:73:3B:92:F1:4B:44:2B:8C:32:96:8B:3B:E1:08
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01960F995819D8C3E62E48F0C5FAB7A31BC1
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Wy47-JT_czuS8UtEK4wylos74Qg.roa
Signing time: Mon 07 Apr 2025 09:33:49 +0000
ROA not before: Mon 07 Apr 2025 09:33:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6134
IP address blocks: 45.89.232.0/24 maxlen: 24
88.218.192.0/24 maxlen: 24
88.218.194.0/23 maxlen: 24
176.113.68.0/22 maxlen: 24
176.113.70.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.mft
rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:99:58:19:d8:c3:e6:2e:48:f0:c5:fa:b7:a3:1b:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Apr 7 09:33:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b2e3bf894ff733b92f14b442b8c32968b3be108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:67:b7:de:f8:18:57:27:0a:0d:df:f7:91:34:
ca:bc:51:1a:23:a0:54:32:5a:7d:c3:9d:d1:ed:06:
a1:48:db:d4:f6:f8:d1:18:aa:88:91:6e:aa:68:70:
ff:5b:ef:82:01:de:e4:b6:d2:22:47:52:c9:09:cc:
de:10:c2:85:8c:d5:8f:2c:e4:5d:c5:16:75:47:e7:
30:28:c7:26:29:40:9f:a1:02:d3:61:f8:3d:53:26:
14:19:e7:aa:a9:9a:6a:bc:2c:49:55:d5:57:6c:4c:
f6:92:31:81:71:01:13:d0:a6:06:8b:ed:f0:24:af:
ab:f8:0f:c7:55:07:3a:ac:77:70:85:16:9c:ca:9e:
d6:f0:30:c8:f2:ae:bc:13:38:2c:e8:4c:8d:83:0f:
a7:1d:28:a6:2a:c5:3c:85:31:be:ae:6b:4e:81:c7:
cf:59:22:fa:fe:98:be:55:e9:26:89:4e:e3:43:2f:
35:95:32:b1:16:c5:38:c9:c9:e8:fe:73:bc:38:6d:
17:e1:a1:2a:7c:7f:d5:32:4a:fc:74:4d:69:50:d5:
09:eb:a5:e3:f9:5c:46:33:69:df:b3:1d:6d:60:65:
5b:8f:1b:45:99:95:ac:7c:5a:61:af:ae:3f:a8:4e:
9a:42:cf:27:b0:59:3f:db:6e:8e:27:6e:83:05:20:
df:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:2E:3B:F8:94:FF:73:3B:92:F1:4B:44:2B:8C:32:96:8B:3B:E1:08
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Wy47-JT_czuS8UtEK4wylos74Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.232.0/24
88.218.192.0/24
88.218.194.0/23
176.113.68.0/22
Signature Algorithm: sha256WithRSAEncryption
01:d7:ac:71:d0:28:0d:b9:90:05:96:09:41:1c:ca:6f:79:b7:
96:8f:7d:6c:83:ea:5e:e8:10:84:ad:55:86:5e:50:1a:3f:02:
fb:8b:8e:90:82:ec:69:b8:0e:39:e4:ed:b2:a3:dc:f9:1c:e9:
60:f0:6f:87:6f:c0:82:24:22:6b:b1:93:09:fb:64:fe:d3:21:
c6:ec:fd:80:05:1c:2b:05:f5:29:80:94:63:8a:5f:65:5c:f9:
3a:b8:eb:b0:26:1b:6c:8f:c0:a0:b5:f3:90:91:ac:65:5d:38:
9f:2e:ea:81:2f:8f:2b:c7:58:a2:c6:c3:68:6f:21:5a:f5:1c:
e0:1f:08:cf:d1:ff:99:4d:b9:3a:a9:19:d2:92:ed:f5:b1:b1:
92:44:95:83:02:54:1f:88:43:0f:e8:c5:07:aa:9d:80:9f:91:
30:d2:25:59:04:50:07:d2:3a:0e:76:fd:72:e7:e3:61:b8:24:
29:0e:bf:9a:df:00:e2:f3:63:9b:57:b4:40:64:60:29:7d:d4:
b3:41:1b:6e:79:53:f7:1a:9b:4a:f0:89:f2:a8:79:bd:2d:f6:
69:01:4d:c8:ae:7d:11:5d:f6:f8:bd:27:de:c5:57:02:3c:dd:
1a:ff:a8:22:d8:4d:44:61:dd:fb:f8:09:00:7b:48:60:f4:66:
44:e2:fa:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:07:59 2025 by rpki-client