Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/PJVRMSwCuaTF6Wt5Ab_qrSCFprE.roa
File: PJVRMSwCuaTF6Wt5Ab_qrSCFprE.roa (raw, json)
Hash identifier: WQvJvWmSXxW6cpMx4aipy9UMo8UhhROB6wLnhOsN/4c=
Subject key identifier: 3C:95:51:31:2C:02:B9:A4:C5:E9:6B:79:01:BF:EA:AD:20:85:A6:B1
Certificate issuer: /CN=fdf54b1879a145397fac0d358efabd2f5fd0aca1
Certificate serial: 019764DFCCEE189C6FA247886F8A8FCA6531
Authority key identifier: FD:F5:4B:18:79:A1:45:39:7F:AC:0D:35:8E:FA:BD:2F:5F:D0:AC:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_fVLGHmhRTl_rA01jvq9L1_QrKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/PJVRMSwCuaTF6Wt5Ab_qrSCFprE.roa
Signing time: Thu 12 Jun 2025 16:01:17 +0000
ROA not before: Thu 12 Jun 2025 16:01:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8528
IP address blocks: 77.94.230.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/_fVLGHmhRTl_rA01jvq9L1_QrKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/_fVLGHmhRTl_rA01jvq9L1_QrKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/_fVLGHmhRTl_rA01jvq9L1_QrKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:64:df:cc:ee:18:9c:6f:a2:47:88:6f:8a:8f:ca:65:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdf54b1879a145397fac0d358efabd2f5fd0aca1
Validity
Not Before: Jun 12 16:01:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c9551312c02b9a4c5e96b7901bfeaad2085a6b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:03:fd:5a:51:d2:21:14:7e:c5:52:83:79:ae:
80:e8:e2:a6:e7:36:f2:ce:be:5d:d5:b2:00:4e:30:
e1:1e:06:3c:7b:27:af:13:8c:c2:81:d1:3b:40:b6:
92:4f:ae:0f:0a:3a:24:b4:71:f1:9c:25:9e:66:0b:
04:5a:86:2f:e8:a2:56:46:d7:87:5b:5d:dd:83:ae:
9f:e6:cb:1c:44:32:12:c8:4b:f6:14:10:1b:d9:c5:
4c:10:81:53:6e:11:f1:ad:f9:f1:73:7d:66:6c:06:
1d:4c:4f:db:d3:7c:44:4b:1f:4d:b8:35:6b:9c:ee:
24:8b:c4:43:a8:6b:a0:b6:fd:84:8d:58:23:06:6a:
e5:b6:56:66:56:d3:4f:a0:d9:de:47:5d:80:0d:b2:
88:0c:c8:d4:ae:47:f9:e1:a3:71:ff:47:be:2b:76:
7b:7a:e2:04:55:e6:f2:4b:31:db:8e:12:06:28:95:
da:00:2b:c9:1b:c0:3a:a5:c2:43:06:23:24:67:26:
1c:ff:cb:5f:aa:36:7a:5e:80:12:62:59:92:c0:89:
13:10:00:57:c0:c4:c2:59:75:ef:69:e8:17:cc:de:
fb:4f:72:a1:7c:8a:8b:31:da:e4:d1:c1:74:07:20:
dd:64:d2:93:b9:d5:0d:8c:59:d9:bb:d3:38:db:5a:
bd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:95:51:31:2C:02:B9:A4:C5:E9:6B:79:01:BF:EA:AD:20:85:A6:B1
X509v3 Authority Key Identifier:
keyid:FD:F5:4B:18:79:A1:45:39:7F:AC:0D:35:8E:FA:BD:2F:5F:D0:AC:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_fVLGHmhRTl_rA01jvq9L1_QrKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/PJVRMSwCuaTF6Wt5Ab_qrSCFprE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/49b462-75ae-4acc-b52e-71186e2b516a/1/_fVLGHmhRTl_rA01jvq9L1_QrKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.94.230.0/23
Signature Algorithm: sha256WithRSAEncryption
14:cb:8a:e7:40:bf:13:3f:aa:f1:2c:7c:96:fe:76:af:9f:f9:
a0:75:73:f3:6e:e7:0d:26:68:9e:72:8e:5c:2d:ac:b4:fe:84:
70:a5:d9:69:60:7f:65:bb:d2:1f:df:49:cf:eb:83:76:db:55:
7f:44:e0:04:23:f1:be:7d:93:f2:09:e8:a5:31:0a:7c:52:c3:
8e:2d:b8:48:59:1a:46:d1:37:50:62:d1:e9:66:5a:d3:92:a4:
1d:82:2e:45:64:0e:27:0c:6b:4a:40:c3:e2:10:28:a3:1a:2f:
96:66:49:f7:3a:1e:0b:9e:99:c4:8b:8d:fa:22:d7:a9:38:73:
8b:0c:b8:13:74:b9:d1:64:ff:da:c6:89:79:a3:29:68:cb:b8:
d7:74:38:7d:b8:fd:67:17:92:79:6e:43:9d:02:3a:ff:94:1d:
8f:92:94:a5:f6:5c:f7:d6:bc:86:25:47:0b:68:49:f6:57:08:
88:46:57:3a:27:d3:94:de:4e:bc:17:90:23:7f:2a:e4:c1:9a:
1c:c6:f8:0f:38:af:7c:d8:8e:2c:19:cc:a6:a3:29:f3:4d:80:
da:eb:c0:6d:13:5a:c6:bb:c0:2d:15:e0:77:d2:7c:af:40:dd:
d0:33:57:a1:cf:c5:f3:5b:17:51:42:ee:f9:e2:06:ec:7d:f7:
b7:75:71:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZdk38zuGJxvokeIb4qPymUxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZkZjU0YjE4NzlhMTQ1Mzk3ZmFjMGQzNThlZmFiZDJmNWZk
MGFjYTEwHhcNMjUwNjEyMTYwMTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzk1NTEzMTJjMDJiOWE0YzVlOTZiNzkwMWJmZWFhZDIwODVhNmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwP9WlHSIRR+xVKDea6A6OKm5zby
zr5d1bIATjDhHgY8eyevE4zCgdE7QLaST64PCjoktHHxnCWeZgsEWoYv6KJWRteH
W13dg66f5sscRDISyEv2FBAb2cVMEIFTbhHxrfnxc31mbAYdTE/b03xESx9NuDVr
nO4ki8RDqGugtv2EjVgjBmrltlZmVtNPoNneR12ADbKIDMjUrkf54aNx/0e+K3Z7
euIEVebySzHbjhIGKJXaACvJG8A6pcJDBiMkZyYc/8tfqjZ6XoASYlmSwIkTEABX
wMTCWXXvaegXzN77T3KhfIqLMdrk0cF0ByDdZNKTudUNjFnZu9M421q9nwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyVUTEsArmkxelreQG/6q0ghaaxMB8GA1UdIwQY
MBaAFP31Sxh5oUU5f6wNNY76vS9f0KyhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX2ZWTEdIbWhSVGxfckEwMWp2cTlMMV9RcktFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC80OWI0NjItNzVhZS00YWNjLWI1MmUt
NzExODZlMmI1MTZhLzEvUEpWUk1Td0N1YVRGNld0NUFiX3FyU0NGcHJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC80OWI0NjItNzVhZS00YWNjLWI1MmUtNzExODZlMmI1MTZh
LzEvX2ZWTEdIbWhSVGxfckEwMWp2cTlMMV9RcktFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTV7mMA0G
CSqGSIb3DQEBCwUAA4IBAQAUy4rnQL8TP6rxLHyW/navn/mgdXPzbucNJmieco5c
Lay0/oRwpdlpYH9lu9If30nP64N221V/ROAEI/G+fZPyCeilMQp8UsOOLbhIWRpG
0TdQYtHpZlrTkqQdgi5FZA4nDGtKQMPiECijGi+WZkn3Oh4LnpnEi436ItepOHOL
DLgTdLnRZP/axol5oyloy7jXdDh9uP1nF5J5bkOdAjr/lB2PkpSl9lz31ryGJUcL
aEn2VwiIRlc6J9OU3k68F5AjfyrkwZocxvgPOK982I4sGcymoynzTYDa68BtE1rG
u8AtFeB30nyvQN3QM1ehz8XzWxdRQu754gbsffe3dXEy
-----END CERTIFICATE-----
Generated at Tue Jun 17 18:39:40 2025 by rpki-client