Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/E8CAkQ4LJUcQaWtspCNeYcPI85s.roa
File: E8CAkQ4LJUcQaWtspCNeYcPI85s.roa (raw, json)
Hash identifier: Vp6sG1GuE3ENUqREFocKIM9fHT4AHMy8iYVQD7bKIL8=
Subject key identifier: 13:C0:80:91:0E:0B:25:47:10:69:6B:6C:A4:23:5E:61:C3:C8:F3:9B
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 018CC2DB202D41CB5C0E210A6644397CF2C1
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/E8CAkQ4LJUcQaWtspCNeYcPI85s.roa
Signing time: Mon 01 Jan 2024 02:29:49 +0000
ROA not before: Mon 01 Jan 2024 02:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206283
IP address blocks: 185.26.26.0/23 maxlen: 23
2a02:f401::/32 maxlen: 32
2a02:f406:fe50::/48 maxlen: 48
2a02:f406:fe90::/48 maxlen: 48
2a02:f402::/32 maxlen: 32
2a02:f403::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 07:03:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:20:2d:41:cb:5c:0e:21:0a:66:44:39:7c:f2:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13c080910e0b254710696b6ca4235e61c3c8f39b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:94:00:00:60:7d:d7:41:04:b7:8f:05:ac:42:
aa:10:c4:c8:96:fc:56:c4:ac:1a:6a:c0:ca:fe:a4:
18:b4:16:d8:c1:93:01:32:6c:ed:34:bb:00:d2:a4:
94:e8:08:5c:c5:a1:59:41:01:93:aa:d9:5e:69:c5:
18:f1:3b:9a:f8:de:72:cd:df:52:1d:66:9d:21:be:
94:83:3a:81:31:38:ec:70:cd:0f:aa:dd:c1:7c:8a:
66:3d:3d:85:00:ff:f5:03:83:99:be:3a:09:c1:96:
07:ea:d0:6c:6c:9d:bc:b8:e9:99:17:00:a1:c6:9f:
eb:e0:68:aa:d5:87:62:d3:87:74:11:bb:83:58:a2:
c3:e6:fd:c8:ee:9d:8a:df:4b:7c:68:81:70:3b:33:
68:b9:ab:54:8a:9b:63:ab:ab:68:92:47:a8:e8:65:
ec:82:19:7a:94:0a:09:0e:af:f8:4b:25:95:27:7d:
e3:16:16:64:f0:74:7c:5e:71:3a:b1:16:c6:0a:32:
dd:20:18:4e:0f:1f:97:93:bf:18:01:80:ab:91:c2:
70:27:85:da:3b:8a:bb:db:f0:f6:ea:c3:bc:7a:73:
62:11:13:35:43:15:db:88:b5:21:73:39:36:98:fe:
15:e8:11:5e:a3:90:01:eb:9c:b2:1a:2c:d7:a2:7f:
d7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C0:80:91:0E:0B:25:47:10:69:6B:6C:A4:23:5E:61:C3:C8:F3:9B
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/E8CAkQ4LJUcQaWtspCNeYcPI85s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.26.0/23
IPv6:
2a02:f401::-2a02:f403:ffff:ffff:ffff:ffff:ffff:ffff
2a02:f406:fe50::/48
2a02:f406:fe90::/48
Signature Algorithm: sha256WithRSAEncryption
ac:69:e8:55:3e:24:9b:ec:45:9e:ce:13:c1:99:0f:59:60:1e:
5d:22:b4:78:7e:c9:0c:e2:9f:91:c2:0d:e9:aa:a8:44:0e:ab:
ee:85:d6:02:ce:8b:c8:9d:5b:06:c2:7f:56:71:27:74:f7:de:
24:6c:e7:b5:fc:7a:7d:7f:b9:4a:57:25:30:c9:1d:d6:40:14:
7d:6f:68:46:22:37:7f:a7:7b:d7:c7:a9:a3:87:a5:57:55:1c:
0b:3d:a6:3f:ff:2d:3e:8f:0e:43:eb:f9:4f:a1:d6:3c:31:36:
84:ce:fa:44:b8:09:78:9c:ee:e0:84:8e:8d:94:ae:42:1b:09:
93:7b:c9:bb:06:48:6a:f9:9b:71:ad:15:ae:ea:b7:db:ce:ba:
a1:ec:85:19:49:53:39:1d:d6:e7:83:f8:f8:f0:be:ae:05:2f:
c4:a6:47:5d:74:cf:6b:ee:85:f1:00:2c:7f:5c:c6:50:6b:20:
5e:ba:07:0a:f2:59:c4:69:78:90:97:51:96:75:48:5e:35:a9:
43:3b:ac:10:10:3b:b1:37:4a:76:70:4d:e9:0e:48:ad:ef:4d:
28:82:6c:54:4b:82:df:0f:a2:b0:c3:90:e6:de:5b:e8:81:2a:
bb:49:6f:5b:c6:ce:32:80:81:58:37:f1:98:14:91:87:54:85:
9a:25:09:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 09:02:52 2024 by rpki-client on console-fra.rpki-client.org