Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/WggPonyi31b-yIkSaCuExsTR9U0.roa
File: WggPonyi31b-yIkSaCuExsTR9U0.roa (raw, json)
Hash identifier: tkUrHPw54S3hnUlb390kJ2ECtbQXaVRTzWQhKus6rlQ=
Subject key identifier: 5A:08:0F:A2:7C:A2:DF:56:FE:C8:89:12:68:2B:84:C6:C4:D1:F5:4D
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01976A20B506989B0BB93BEABA6A77FAAB1A
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/WggPonyi31b-yIkSaCuExsTR9U0.roa
Signing time: Fri 13 Jun 2025 16:30:17 +0000
ROA not before: Fri 13 Jun 2025 16:30:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43733
IP address blocks: 46.130.0.0/16 maxlen: 16
46.130.0.0/17 maxlen: 17
46.130.128.0/17 maxlen: 17
46.130.255.0/24 maxlen: 24
83.139.24.0/21 maxlen: 21
83.139.24.0/22 maxlen: 22
83.139.28.0/22 maxlen: 22
83.139.32.0/22 maxlen: 22
185.36.36.0/22 maxlen: 22
185.36.36.0/24 maxlen: 24
217.76.0.0/20 maxlen: 20
217.76.0.0/21 maxlen: 21
217.76.8.0/21 maxlen: 21
2a00:1f28::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:20:b5:06:98:9b:0b:b9:3b:ea:ba:6a:77:fa:ab:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Jun 13 16:30:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a080fa27ca2df56fec88912682b84c6c4d1f54d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:00:e6:e1:24:31:8e:1c:15:33:2d:e7:80:20:
ee:29:27:65:6e:02:20:03:d5:d1:e5:9f:91:c1:56:
4e:19:7e:77:6c:22:09:4b:a2:0c:33:d9:84:1b:67:
5c:84:f0:27:f6:56:5d:00:f3:ce:d6:4e:0e:4d:cc:
3f:22:28:fd:80:ca:fc:b2:66:48:8d:aa:89:72:4e:
18:57:b3:dd:35:1a:3c:29:f9:8e:57:0c:ae:20:c2:
f5:5b:d5:5b:ea:d6:18:a7:3b:ce:2f:c4:6c:34:38:
69:b6:d9:6e:b4:2a:29:5b:cc:3d:24:19:dc:eb:6a:
da:35:c7:6b:9b:60:7d:e5:a3:1f:06:c7:2f:59:f7:
b1:52:23:03:d5:b8:bd:5d:fb:32:9b:db:a5:2b:79:
4f:79:90:93:da:71:2a:bc:7b:cf:f0:80:b0:c7:7d:
bb:cc:8d:d5:28:c4:79:2f:65:8d:15:71:26:06:11:
c9:38:94:65:7d:29:7f:ac:24:94:3c:a1:92:80:7c:
9c:62:8b:1b:05:dd:0e:fa:ad:64:bb:22:20:86:14:
87:6e:c7:dd:93:d0:57:ad:ed:8d:9c:84:e2:43:7e:
b4:16:f8:a0:4f:39:73:7b:c1:66:4c:a4:93:1b:35:
58:c5:f1:f7:e1:5a:b4:53:c3:03:67:83:5d:ef:0d:
06:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:08:0F:A2:7C:A2:DF:56:FE:C8:89:12:68:2B:84:C6:C4:D1:F5:4D
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/WggPonyi31b-yIkSaCuExsTR9U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.130.0.0/16
83.139.24.0-83.139.35.255
185.36.36.0/22
217.76.0.0/20
IPv6:
2a00:1f28::/32
Signature Algorithm: sha256WithRSAEncryption
7d:53:fb:33:90:a4:7e:9f:36:d0:49:33:af:03:35:b1:7c:e2:
d7:6a:c2:b1:71:d1:bb:ea:d9:c1:2c:60:59:fc:02:6c:a5:26:
9b:16:54:90:c1:4b:6d:a0:a0:6d:ad:69:98:65:19:cc:fd:7d:
f8:7f:45:ab:bf:eb:72:87:ad:22:ef:91:4b:8f:91:4f:38:f5:
f6:6f:81:d8:98:9a:7f:da:6d:98:f3:bb:c6:f0:40:c1:3e:46:
91:90:f0:ae:0e:1d:c6:66:fc:64:70:a9:75:3c:53:dc:2d:37:
0a:23:f1:38:38:06:92:8f:c9:1f:2c:5f:28:9b:e9:81:ea:f3:
a2:9e:2d:b2:0f:67:0d:4f:88:84:f8:a5:1f:84:01:55:67:f9:
55:a0:64:07:0b:50:52:ee:21:29:49:81:05:e6:16:62:92:90:
ce:bc:f6:24:a0:9b:85:ee:65:62:99:57:00:5a:2e:21:0f:f6:
76:a6:ce:05:72:06:7c:fc:02:18:e0:40:9c:3c:c6:ef:8b:7d:
25:05:2e:cb:0a:24:ab:03:77:73:f8:6d:07:1f:98:56:28:d0:
75:19:fa:27:ee:8c:a3:90:b3:05:a7:69:84:2b:f4:26:12:5f:
b5:d5:9e:9f:2d:9e:9c:78:6a:00:68:ee:02:b0:3a:dd:ea:e3:
1b:d1:c3:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 14:42:38 2025 by rpki-client