Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wibi4PcnVHMNdJ79swDgUbC4fos.roa
File: wibi4PcnVHMNdJ79swDgUbC4fos.roa (raw, json)
Hash identifier: uR21yMKZmILPJltLztyZhOAGQaknzMiJP66Gx+HCjXE=
Subject key identifier: C2:26:E2:E0:F7:27:54:73:0D:74:9E:FD:B3:00:E0:51:B0:B8:7E:8B
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0197A1D28F4F088629E526F6441545E64FC0
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wibi4PcnVHMNdJ79swDgUbC4fos.roa
Signing time: Tue 24 Jun 2025 12:03:40 +0000
ROA not before: Tue 24 Jun 2025 12:03:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 45.67.136.0/24 maxlen: 24
45.92.218.0/24 maxlen: 24
45.134.36.0/24 maxlen: 24
45.142.105.0/24 maxlen: 24
45.151.56.0/24 maxlen: 24
92.118.204.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft
rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:a1:d2:8f:4f:08:86:29:e5:26:f6:44:15:45:e6:4f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jun 24 12:03:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c226e2e0f72754730d749efdb300e051b0b87e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:74:a7:a5:0f:35:19:8a:cf:0a:ae:62:58:
1a:05:01:74:c0:d4:88:b3:56:2b:1a:88:6a:4f:f5:
e6:52:8c:c8:60:a3:b7:da:2b:f9:7d:a2:85:9c:9b:
7d:15:38:8c:c4:7d:ee:e5:bd:6c:f8:ab:a2:b4:2b:
79:67:26:07:11:48:2e:38:a3:c7:8b:7e:7a:4f:e6:
37:7d:c6:80:97:27:65:57:44:12:bb:56:b2:e3:47:
d8:f5:02:66:5e:be:7a:d9:92:d1:7f:09:07:d4:2f:
73:67:15:c5:ad:30:24:0f:8a:74:1b:d4:5f:e9:21:
84:6a:80:e0:f4:a6:e6:da:4a:75:ea:5f:4b:c9:78:
7e:07:3c:9d:39:80:9c:b5:c5:d9:b0:cd:1c:38:66:
ff:19:1a:e2:91:55:8e:4c:8b:82:b2:0a:a3:ca:cf:
c5:94:eb:0d:ed:25:5a:bf:54:7b:33:04:cf:a4:91:
a0:ad:39:64:7a:93:d3:75:e3:5a:9b:9b:ae:c6:75:
9f:8d:74:76:35:ca:bc:17:ac:fb:87:ac:70:5f:c5:
74:19:22:77:00:bf:23:5a:d4:a1:7d:13:83:c4:04:
e6:15:68:11:4d:f6:bc:98:e4:4d:d8:db:26:4a:40:
c4:21:47:c8:f2:3e:1e:ca:53:6c:6d:25:3c:6e:91:
c9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:26:E2:E0:F7:27:54:73:0D:74:9E:FD:B3:00:E0:51:B0:B8:7E:8B
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/wibi4PcnVHMNdJ79swDgUbC4fos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.136.0/24
45.92.218.0/24
45.134.36.0/24
45.142.105.0/24
45.151.56.0/24
92.118.204.0/22
Signature Algorithm: sha256WithRSAEncryption
93:1e:4f:33:ef:81:13:00:f6:49:3f:61:21:e6:fa:b7:7a:ef:
6d:13:ad:c8:59:f4:1f:8d:0e:8c:dc:07:73:e5:53:b9:c9:07:
b9:a9:c0:b0:6f:4d:ae:84:6f:8d:2d:d5:62:19:f3:7f:38:9c:
4e:92:28:36:63:fd:30:32:74:94:13:e2:54:d5:1f:0e:20:19:
98:3c:ca:31:5f:c1:bd:c6:79:0d:e5:44:ec:5f:28:4e:4f:f4:
e3:12:e1:7b:2c:7f:e6:68:58:65:c4:a3:96:03:a6:e3:69:39:
cb:5c:b2:3e:ae:d8:66:8a:4e:5a:ae:d2:80:90:a1:ab:0e:a0:
d5:33:43:24:4d:38:ed:5e:d2:42:1f:f6:2c:ce:38:f7:6c:e2:
70:43:f8:aa:99:21:2f:cf:e2:7e:0f:17:79:80:b7:74:67:df:
3b:9a:ee:dc:23:80:de:03:4d:d6:55:1c:50:ec:8d:67:54:9f:
9d:ad:f2:cb:7a:94:f2:d8:b3:8a:8a:14:84:76:93:f6:e3:d1:
61:7b:87:08:51:10:ac:d0:1e:c8:06:39:d4:74:d1:4e:a5:17:
23:22:0e:2a:5f:24:42:73:fe:0e:0d:62:28:31:06:ae:94:81:
0d:d6:e0:08:d4:2b:18:6b:f3:ef:1c:f9:d4:87:f3:e7:b0:e3:
c3:f0:1c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:39:28 2025 by rpki-client