Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/26WG3lW2CeeQhqTJKNIM1OUzanw.roa
File: 26WG3lW2CeeQhqTJKNIM1OUzanw.roa (raw, json)
Hash identifier: RT+oJ3l89LojuSHwWDQoLWSSs5HGpFD7t675gDUfqV0=
Subject key identifier: DB:A5:86:DE:55:B6:09:E7:90:86:A4:C9:28:D2:0C:D4:E5:33:6A:7C
Certificate issuer: /CN=c3c18527e3a206af2842028d95aec41338e8daf8
Certificate serial: 01916ECEF6025EDD1E6C4C76BA26A4FC38C2
Authority key identifier: C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/26WG3lW2CeeQhqTJKNIM1OUzanw.roa
Signing time: Tue 20 Aug 2024 08:02:22 +0000
ROA not before: Tue 20 Aug 2024 08:02:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44090
IP address blocks: 62.60.147.0/24 maxlen: 24
213.176.2.0/24 maxlen: 24
213.176.7.0/24 maxlen: 24
213.176.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6e:ce:f6:02:5e:dd:1e:6c:4c:76:ba:26:a4:fc:38:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c18527e3a206af2842028d95aec41338e8daf8
Validity
Not Before: Aug 20 08:02:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dba586de55b609e79086a4c928d20cd4e5336a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8e:ce:6a:f8:c7:fe:f1:66:50:7a:15:a6:da:
8f:59:da:86:ec:f7:a3:17:f1:53:d1:10:3b:48:39:
68:45:a7:3b:69:c2:40:8c:c3:e5:a2:d3:a1:12:31:
f0:a3:1b:c6:9a:c5:7b:4d:6a:cd:d3:78:93:6f:21:
da:1b:b8:ef:ea:44:13:bf:22:70:a8:a0:42:0e:d8:
32:26:ef:bc:0b:32:bc:94:48:27:be:c5:2c:e4:f2:
6e:9a:e2:02:e8:09:43:c5:8e:3f:1b:6c:53:97:cc:
1d:71:a0:59:61:8b:25:09:a4:cb:79:82:fe:cd:7f:
bc:24:75:86:41:dc:4c:e6:bc:c0:1f:19:a4:8b:c9:
87:a3:76:1e:51:8e:1c:64:e6:c4:f3:9a:56:4e:7d:
80:ca:4c:50:22:4d:49:a0:24:65:05:a5:bd:70:97:
cb:5d:da:83:ea:68:d5:bd:6b:96:02:e5:b9:d6:be:
6d:7b:5c:a1:f5:34:b2:2c:34:e8:9d:53:b7:e1:fd:
01:d8:28:6f:71:66:3e:76:3f:5a:c4:86:f2:c0:d7:
9d:80:94:f5:9f:05:dd:f9:9a:b0:ab:af:fa:8d:43:
b4:2d:8f:85:90:9c:db:0a:56:27:a4:5e:17:d9:23:
04:66:53:fa:05:a4:c8:ee:6c:e7:b4:05:f6:c5:a2:
32:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A5:86:DE:55:B6:09:E7:90:86:A4:C9:28:D2:0C:D4:E5:33:6A:7C
X509v3 Authority Key Identifier:
keyid:C3:C1:85:27:E3:A2:06:AF:28:42:02:8D:95:AE:C4:13:38:E8:DA:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8GFJ-OiBq8oQgKNla7EEzjo2vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/26WG3lW2CeeQhqTJKNIM1OUzanw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/1339df-8e06-41de-94f3-0cba33efc5bb/1/w8GFJ-OiBq8oQgKNla7EEzjo2vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.60.147.0/24
213.176.2.0/24
213.176.7.0/24
213.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e6:55:3c:47:55:9c:d1:c5:ef:30:c0:fa:e8:d6:a0:23:28:
5b:b9:db:13:3f:39:70:a5:d6:62:c6:44:aa:da:c6:7a:6f:70:
95:ec:af:84:11:f8:de:4c:d6:63:2b:f1:a4:5e:87:58:a8:2d:
e0:60:ad:9c:f5:c4:5f:43:75:6b:5a:be:81:fd:52:8a:79:1b:
50:74:4f:03:a9:f2:66:5c:57:86:9a:da:6f:9b:ae:46:a8:e3:
35:6e:38:f6:d8:0e:bb:66:8b:d8:d8:9b:a9:92:ff:ed:2d:a5:
4f:51:61:f2:e3:f2:44:22:7d:0c:f8:8a:2b:6b:e1:4f:2d:82:
50:e1:4e:6d:62:8d:24:4a:db:f1:f4:89:23:83:e3:2a:b9:fd:
ec:84:a1:2c:ed:c1:98:3a:28:26:c9:34:a8:e9:cf:68:4a:c6:
2c:d9:e0:9e:c6:f6:4a:38:89:40:c2:52:1a:50:16:ee:a5:97:
a6:1f:e7:2b:19:5b:ac:91:58:07:78:21:a4:ed:2b:32:29:dc:
0b:30:87:ad:8a:44:5a:03:60:37:06:a1:25:e3:48:ee:a1:5b:
82:05:fa:80:d3:cf:4b:64:92:30:3b:06:e8:8e:d5:db:20:54:
11:44:f8:d0:60:75:fa:63:d3:22:f2:d3:2e:28:31:56:37:78:
3c:71:97:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:19:26 2024 by rpki-client on console-fra.rpki-client.org