Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/fBgtCyA0VduLUzvA2eGKE6vqyw8.roa
File: fBgtCyA0VduLUzvA2eGKE6vqyw8.roa (raw, json)
Hash identifier: x7k+g0cgqmyV+RfWxRL/CvEYXFSjJNg5vGO1C50et5E=
Subject key identifier: 7C:18:2D:0B:20:34:55:DB:8B:53:3B:C0:D9:E1:8A:13:AB:EA:CB:0F
Certificate issuer: /CN=302d11e852615740076b3281b8aff0fac5ca2f33
Certificate serial: 018CC9BCB5779C95A65D85A9392C7D57D1CB
Authority key identifier: 30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/fBgtCyA0VduLUzvA2eGKE6vqyw8.roa
Signing time: Tue 02 Jan 2024 10:33:56 +0000
ROA not before: Tue 02 Jan 2024 10:33:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39212
IP address blocks: 185.182.26.0/24 maxlen: 24
2a0a:df80:26::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 22 Jun 2024 09:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:b5:77:9c:95:a6:5d:85:a9:39:2c:7d:57:d1:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=302d11e852615740076b3281b8aff0fac5ca2f33
Validity
Not Before: Jan 2 10:33:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c182d0b203455db8b533bc0d9e18a13abeacb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2e:6d:70:e7:a4:07:5b:76:72:28:2d:cb:67:
d5:00:b9:63:2b:0e:a5:39:5a:6d:9d:27:f7:a5:17:
ad:f7:c1:30:5d:4a:59:77:45:19:20:c0:c3:26:59:
b6:3f:e0:ec:9f:7d:a9:89:85:ea:2d:79:de:6f:ad:
ad:d9:60:c9:59:16:b5:7c:c9:69:5f:31:56:3b:64:
01:36:00:23:c4:c6:91:d4:ea:c7:f2:48:72:72:06:
97:0d:df:a9:e0:96:d9:b6:92:43:88:ef:c3:a6:21:
68:d8:0a:24:f7:75:05:66:3b:90:e7:8a:82:81:2f:
2b:ce:84:b2:8b:be:b2:75:7f:d9:6a:92:0c:d9:47:
a8:4b:e6:a8:ae:b0:b0:51:6f:b1:3e:85:6b:ce:43:
67:1a:b9:50:43:1c:61:75:af:4d:16:e5:9a:9d:c9:
62:ba:4f:cf:b9:59:43:8b:37:63:b6:34:6c:56:9b:
3f:0d:d3:28:8e:ca:c7:b7:9e:d9:04:fd:36:b5:e5:
37:43:29:7d:54:ac:5e:d4:04:41:72:a0:6a:54:54:
f8:4e:9d:8d:79:54:95:0a:09:c1:51:9e:09:91:90:
d5:6c:f5:fd:a5:7f:41:f8:67:66:17:55:de:67:fd:
a0:43:c1:1b:66:f4:e1:cd:32:98:95:51:1f:ce:78:
94:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:18:2D:0B:20:34:55:DB:8B:53:3B:C0:D9:E1:8A:13:AB:EA:CB:0F
X509v3 Authority Key Identifier:
keyid:30:2D:11:E8:52:61:57:40:07:6B:32:81:B8:AF:F0:FA:C5:CA:2F:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MC0R6FJhV0AHazKBuK_w-sXKLzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/fBgtCyA0VduLUzvA2eGKE6vqyw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/bd3880-fc26-4121-b2e4-e6d6e8aebef8/1/MC0R6FJhV0AHazKBuK_w-sXKLzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.26.0/24
IPv6:
2a0a:df80:26::/48
Signature Algorithm: sha256WithRSAEncryption
61:2f:cd:55:be:97:0c:69:9c:8e:39:d7:7b:7c:4a:07:ec:88:
b4:75:58:9a:e2:1e:50:48:e7:23:65:b7:8b:a6:db:ee:10:67:
fe:da:e0:3b:58:69:fc:7c:f0:01:42:7d:3e:ed:b9:c9:e9:e4:
48:2c:fa:6c:b4:db:5e:2a:e1:81:b6:72:7c:7c:6e:f3:d1:bc:
9e:14:f5:64:aa:04:05:bf:de:5c:30:76:4f:62:cd:f4:09:3e:
99:1e:49:59:cd:d6:af:4b:ca:02:ef:15:9f:bc:f3:d7:81:3b:
10:7e:05:f0:0e:01:db:78:83:58:18:70:3f:be:82:fb:12:d3:
09:bd:8b:19:d5:4b:78:64:75:f1:5f:5f:6a:d1:9d:1c:95:6e:
a6:9b:0f:b1:0c:a8:0c:c2:58:7d:e3:39:05:4c:64:0d:9c:32:
2b:e4:6d:66:c3:e0:9b:69:e0:f2:78:e7:0a:f1:9b:8b:be:41:
83:d2:d4:dd:82:87:37:95:d9:e9:96:38:4e:70:66:e0:1b:ef:
36:d0:5c:2d:4b:43:6a:aa:74:a9:b2:ec:14:2b:b0:61:13:e9:
ab:26:37:1a:a7:3f:52:2a:f5:05:37:be:33:66:46:af:83:f1:
b9:c4:39:a3:60:4f:1d:61:51:b7:9d:ca:10:65:ce:42:c5:6e:
dd:08:fd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 16:55:18 2024 by rpki-client on console-fra.rpki-client.org