Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/y8_NZQV_wPmfjAfZWqHuP9eCjFw.roa
File: y8_NZQV_wPmfjAfZWqHuP9eCjFw.roa (raw, json)
Hash identifier: JurlgzwVXQeTT07R/WxCdRKxfhgU/bq9VIxxsOQI7qg=
Subject key identifier: CB:CF:CD:65:05:7F:C0:F9:9F:8C:07:D9:5A:A1:EE:3F:D7:82:8C:5C
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01916FDD8E93A2F96EA33F9B70B09CF195ED
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/y8_NZQV_wPmfjAfZWqHuP9eCjFw.roa
Signing time: Tue 20 Aug 2024 12:57:56 +0000
ROA not before: Tue 20 Aug 2024 12:57:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208476
IP address blocks: 185.244.26.0/24 maxlen: 24
185.244.29.0/24 maxlen: 24
185.244.30.0/24 maxlen: 24
185.244.31.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6f:dd:8e:93:a2:f9:6e:a3:3f:9b:70:b0:9c:f1:95:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Aug 20 12:57:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbcfcd65057fc0f99f8c07d95aa1ee3fd7828c5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:39:d1:b1:51:d0:97:03:f2:04:79:ce:85:15:
f4:7c:20:1e:5a:28:b1:86:2f:bb:cc:ac:6d:80:ba:
84:1d:9f:3c:bb:03:6b:7d:a0:5b:de:46:ac:97:65:
54:5b:7a:24:d5:5e:02:26:c1:cb:0b:db:5c:99:84:
c4:95:70:1a:0c:c7:9e:45:41:92:ce:64:05:c7:7a:
15:9b:b1:ca:b4:c7:02:e3:ec:14:cf:e7:92:91:2d:
78:f5:68:c6:4c:97:53:3f:0e:fe:c4:66:31:e2:58:
8c:28:a5:2c:79:38:ea:0a:81:a3:7d:42:6c:52:18:
92:74:86:eb:34:0e:e1:39:50:7b:c9:b4:aa:24:76:
63:1b:d7:92:91:93:23:dd:30:0a:a8:30:22:20:07:
48:f1:84:c0:f7:bb:c7:79:57:ec:ec:05:a2:9b:91:
51:68:69:e7:0a:df:82:5b:28:e7:6d:32:1a:a1:e6:
22:e6:c1:21:69:ab:6d:69:79:23:b0:3d:fd:22:9e:
0d:a4:d2:45:99:98:81:40:dd:11:09:49:40:27:ca:
42:b3:23:2d:3c:18:2f:ca:e8:5d:d5:be:53:4e:f9:
c6:82:25:52:9d:45:54:ae:07:9b:0c:31:07:57:3f:
8b:8c:fb:78:34:c5:d6:8b:b1:7c:29:ae:41:36:34:
4e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:CF:CD:65:05:7F:C0:F9:9F:8C:07:D9:5A:A1:EE:3F:D7:82:8C:5C
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/y8_NZQV_wPmfjAfZWqHuP9eCjFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.26.0/24
185.244.29.0-185.244.31.255
Signature Algorithm: sha256WithRSAEncryption
96:b2:9f:52:56:14:54:33:56:72:f9:f0:d3:9e:f0:18:ec:35:
4d:d1:1a:53:65:0d:ab:38:4b:db:02:ce:0e:ae:8a:29:80:1e:
b1:41:2f:f2:38:5e:b8:bb:e1:67:bc:6d:30:0a:b9:8f:a2:89:
8b:ff:f1:73:b2:1e:20:2e:07:26:29:38:53:ac:17:cd:31:6e:
00:cd:70:f2:23:bc:90:7e:35:60:fb:3f:59:aa:d9:6e:28:99:
5d:51:24:d0:b3:51:70:75:19:0c:fe:5a:37:b6:6a:64:44:25:
0d:e0:9a:7a:bc:63:ff:90:05:da:84:2b:0e:ae:a1:7a:fb:92:
c7:4f:66:25:7b:46:87:ad:4d:d8:6c:db:69:89:26:cf:ec:d6:
87:e3:2f:25:42:76:5e:ca:45:c9:75:dc:4a:0f:8d:2d:6f:06:
42:82:c5:c1:7b:8d:13:f2:52:80:1b:18:a1:34:0c:73:58:47:
34:0e:06:fc:42:a8:ef:d8:09:43:ba:9b:fa:ce:f9:57:76:94:
e6:a7:35:9c:f0:f0:b6:19:13:b4:8a:fb:74:d9:be:ba:67:02:
f7:ac:96:d1:8d:b0:ab:5a:af:d1:e6:4d:85:b6:bf:13:1c:fb:
2d:e2:50:19:04:53:93:ea:9f:24:c9:23:ee:8c:e3:e9:48:c5:
03:5d:6c:3f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:30:32 2024 by rpki-client on console-fra.rpki-client.org