Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/Ill1sGHntv2NjO44PFxzLc8pAyQ.roa
File: Ill1sGHntv2NjO44PFxzLc8pAyQ.roa (raw, json)
Hash identifier: cZce0SUqpvdD8d8H5dRsacFanZX3g3NgwBrmmLqOXcs=
Subject key identifier: 22:59:75:B0:61:E7:B6:FD:8D:8C:EE:38:3C:5C:73:2D:CF:29:03:24
Certificate issuer: /CN=cb1d7efd6bacf42f145df4d528b0a8320ffc37b9
Certificate serial: 018CC349644B9A81D50A38C0236A37876438
Authority key identifier: CB:1D:7E:FD:6B:AC:F4:2F:14:5D:F4:D5:28:B0:A8:32:0F:FC:37:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yx1-_Wus9C8UXfTVKLCoMg_8N7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/Ill1sGHntv2NjO44PFxzLc8pAyQ.roa
Signing time: Mon 01 Jan 2024 04:30:16 +0000
ROA not before: Mon 01 Jan 2024 04:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60720
IP address blocks: 185.26.195.0/24 maxlen: 24
185.26.194.0/24 maxlen: 24
185.26.193.0/24 maxlen: 24
185.116.202.0/23 maxlen: 23
185.116.200.0/24 maxlen: 24
2a00:8d60::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/yx1-_Wus9C8UXfTVKLCoMg_8N7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/yx1-_Wus9C8UXfTVKLCoMg_8N7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/yx1-_Wus9C8UXfTVKLCoMg_8N7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 08 Jun 2024 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:64:4b:9a:81:d5:0a:38:c0:23:6a:37:87:64:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1d7efd6bacf42f145df4d528b0a8320ffc37b9
Validity
Not Before: Jan 1 04:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=225975b061e7b6fd8d8cee383c5c732dcf290324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:52:a9:02:48:6e:09:57:9c:67:cb:3f:55:94:
ae:3d:a9:54:2e:f5:4a:59:37:54:6d:79:e1:a1:e2:
88:d0:b5:99:22:17:ea:ea:45:56:9f:83:c6:a2:35:
83:de:69:d2:53:35:45:37:f5:f6:5f:1d:7e:26:fa:
12:24:de:fe:a5:94:48:2b:0a:50:8b:bc:a0:01:c6:
90:96:2f:5e:7d:63:89:7a:e7:f3:bd:c7:22:7a:f6:
6a:60:4d:81:7a:06:90:04:27:22:16:4e:5a:85:68:
34:6f:8b:3d:f7:c3:ad:09:72:9c:13:3a:b9:99:1b:
49:67:80:9b:fa:92:33:74:f3:3b:ea:71:c4:5d:57:
6d:c1:84:f9:03:41:71:b3:eb:82:f8:08:39:30:d9:
e9:38:22:8d:7a:f8:24:54:7a:ee:dc:b0:b2:8d:b4:
15:bb:62:51:9c:a9:bc:00:69:a0:55:60:e8:3f:1e:
f8:7d:21:07:ba:21:e0:83:17:95:86:f4:c0:b0:fc:
d2:54:e7:ec:13:30:a5:75:68:e3:88:5c:96:a0:f3:
34:41:80:a9:4b:5c:e2:da:44:cc:73:62:21:db:68:
ae:09:12:34:d9:32:77:60:86:38:7f:7e:b1:a5:6a:
77:e2:7b:55:6b:47:88:25:94:6d:0e:eb:65:03:57:
f9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:59:75:B0:61:E7:B6:FD:8D:8C:EE:38:3C:5C:73:2D:CF:29:03:24
X509v3 Authority Key Identifier:
keyid:CB:1D:7E:FD:6B:AC:F4:2F:14:5D:F4:D5:28:B0:A8:32:0F:FC:37:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yx1-_Wus9C8UXfTVKLCoMg_8N7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/Ill1sGHntv2NjO44PFxzLc8pAyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bad3b5-bd9f-4461-ba87-99f683206388/1/yx1-_Wus9C8UXfTVKLCoMg_8N7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.193.0-185.26.195.255
185.116.200.0/24
185.116.202.0/23
IPv6:
2a00:8d60::/32
Signature Algorithm: sha256WithRSAEncryption
1a:da:a7:e3:b3:a5:d7:e5:b7:5f:d7:29:f5:41:76:ac:47:63:
79:17:0b:f7:89:78:1a:db:98:93:d5:b4:f4:4d:a4:51:8f:a0:
bb:e7:f2:e6:ad:eb:1d:7c:5a:f5:81:79:00:bc:71:f2:9b:e1:
ee:2f:75:d5:ed:10:9d:09:85:24:bd:37:e9:49:b0:05:b3:c7:
f2:b0:4b:a7:e0:0f:83:ce:b0:ee:d8:44:ad:08:f7:16:8f:af:
df:e5:36:c7:35:ae:26:db:a0:48:67:f5:4b:cb:06:61:19:10:
07:24:a2:81:84:54:fb:50:95:62:11:a5:56:ba:6e:27:aa:2a:
99:17:e3:ec:ac:b6:6c:df:b7:f4:7c:05:18:3f:a7:ea:da:f3:
3c:b1:cf:b9:d4:f7:08:42:12:68:bb:14:9f:39:2b:72:ae:c2:
fe:f4:8e:ee:70:d3:62:50:a1:1d:52:a7:58:9b:33:cb:d1:41:
d0:90:df:64:2c:ce:e3:63:85:94:7c:7e:33:d5:7f:c5:ad:d4:
77:ab:21:6f:90:d3:3f:26:04:11:4c:f0:a1:0b:dc:cd:21:df:
d1:e8:17:5c:a7:af:f9:df:a4:b2:d1:45:46:7d:82:33:5e:07:
6a:7e:ce:f8:2d:e4:2c:47:4e:6a:85:e8:2a:5f:1a:27:3c:df:
44:ff:16:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:50:46 2024 by rpki-client on console-ams.rpki-client.org