Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/YHpquuguZ-CZiLAA81CDrmbcyiU.roa
File: YHpquuguZ-CZiLAA81CDrmbcyiU.roa (raw, json)
Hash identifier: 17opisra1j4NDjd9X0pXaAYUyyCy52lRZDGTY0vrTAA=
Subject key identifier: 60:7A:6A:BA:E8:2E:67:E0:99:88:B0:00:F3:50:83:AE:66:DC:CA:25
Certificate issuer: /CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Certificate serial: 018F825D50828AA8F3E96BE064BC7870128C
Authority key identifier: CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/YHpquuguZ-CZiLAA81CDrmbcyiU.roa
Signing time: Thu 16 May 2024 17:05:04 +0000
ROA not before: Thu 16 May 2024 17:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60432
IP address blocks: 185.26.198.0/23 maxlen: 23
185.26.198.0/24 maxlen: 24
185.26.199.0/24 maxlen: 24
2a00:8c60:2::/48 maxlen: 48
2a00:8c60:3::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 02:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:82:5d:50:82:8a:a8:f3:e9:6b:e0:64:bc:78:70:12:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cddb6f10030e276f8316276f40b3d4a4184d94dd
Validity
Not Before: May 16 17:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=607a6abae82e67e09988b000f35083ae66dcca25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ec:5c:91:90:b4:f2:7e:5c:03:02:83:89:c7:
b0:d2:a4:ef:99:dd:b4:1d:b8:94:16:56:fe:08:d9:
ea:2d:73:a9:bf:a8:9d:01:89:84:dd:14:ce:81:e9:
0a:91:cc:64:ad:a3:02:b1:1d:e2:d6:1e:04:b5:9b:
0c:62:b3:f2:a6:0c:c4:bf:1e:16:f8:f0:c9:48:17:
39:49:eb:b8:f4:af:19:e0:c8:42:0d:6c:bd:97:31:
62:e8:b4:ec:d7:ec:3d:02:96:db:5e:b0:b0:b1:4d:
75:b0:6d:d8:97:07:3b:51:1c:b1:cc:99:cd:33:36:
58:52:4c:c7:70:a7:0d:50:60:fd:6f:db:ea:00:08:
c9:12:16:a3:7e:8a:fd:2a:17:e6:6e:0b:f3:41:dc:
04:1b:e7:37:84:53:28:18:05:24:7e:ff:f9:18:ce:
a2:81:a0:8e:29:ca:08:a9:17:2b:d0:ab:d2:b6:31:
56:db:a7:f8:8b:1c:02:cd:94:66:df:c6:28:92:7d:
99:6c:1e:e9:df:75:4d:00:8f:b6:3e:e8:f7:91:95:
c6:d8:a4:df:0d:8c:eb:9a:f4:3a:c1:e2:67:cb:7f:
2e:49:f2:96:35:7c:3a:ff:69:47:e0:74:fa:7c:b2:
f3:82:a0:77:a8:e0:5c:2e:8f:9d:0c:ad:05:d8:a4:
66:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7A:6A:BA:E8:2E:67:E0:99:88:B0:00:F3:50:83:AE:66:DC:CA:25
X509v3 Authority Key Identifier:
keyid:CD:DB:6F:10:03:0E:27:6F:83:16:27:6F:40:B3:D4:A4:18:4D:94:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdtvEAMOJ2-DFidvQLPUpBhNlN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/YHpquuguZ-CZiLAA81CDrmbcyiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b5cb19-a27a-44a7-a33e-80b2d25bf9c8/1/zdtvEAMOJ2-DFidvQLPUpBhNlN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.198.0/23
IPv6:
2a00:8c60:2::/47
Signature Algorithm: sha256WithRSAEncryption
59:ef:58:c3:c8:06:d3:b3:52:8b:38:7f:98:1a:99:9a:ed:2d:
65:14:be:fc:5e:a8:d0:47:88:64:05:d6:c0:d4:fe:c2:8a:e8:
6b:f0:f6:48:02:af:88:59:b3:37:52:83:d3:ff:d3:d4:15:74:
af:e9:4e:dd:19:d1:73:0f:9f:e9:61:ac:dd:81:25:28:0a:09:
6d:c5:b6:ea:62:e8:85:a0:12:d6:74:56:ba:47:60:1c:4e:77:
00:cf:7f:6d:d2:41:3a:d7:f7:62:97:92:fd:59:70:c0:01:88:
d9:57:93:aa:cd:26:bb:46:99:ec:16:da:39:d9:13:a6:b3:94:
84:2b:0b:15:f9:87:f6:d0:a9:fc:bc:d4:33:fc:7a:75:81:09:
ae:29:c1:87:7f:18:4d:4c:77:98:46:f4:98:96:9d:fe:b5:bd:
a9:75:d5:4e:86:88:15:bb:e7:24:3c:b5:3b:4f:09:6f:2b:5d:
ae:60:14:0e:c7:43:e2:0c:21:d1:61:6c:5b:10:31:37:35:42:
4d:28:7a:73:b2:9c:76:0c:50:a6:a6:17:f1:17:39:f8:66:de:
ba:ad:c2:49:72:a6:5c:48:06:55:dd:6f:90:03:4b:36:7d:83:
78:21:6f:25:f5:17:f5:10:55:ee:0c:12:02:f1:db:b0:f1:79:
9c:39:dd:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 10:11:29 2024 by rpki-client on console-ams.rpki-client.org