Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/CoTxt45544yg7jD3Pk0VSCVfsdQ.roa
File: CoTxt45544yg7jD3Pk0VSCVfsdQ.roa (raw, json)
Hash identifier: qKiIuJOQU9i8P3KozLertqLWotABHguL69BfEAibd9Y=
Subject key identifier: 0A:84:F1:B7:8E:79:E3:8C:A0:EE:30:F7:3E:4D:15:48:25:5F:B1:D4
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 018CCA2B84DE8FDAE7184442BBD2F69B56B8
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/CoTxt45544yg7jD3Pk0VSCVfsdQ.roa
Signing time: Tue 02 Jan 2024 12:34:58 +0000
ROA not before: Tue 02 Jan 2024 12:34:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61209
IP address blocks: 194.225.82.0/23 maxlen: 24
194.225.84.0/23 maxlen: 23
194.225.80.0/23 maxlen: 23
194.225.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.mft
rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:84:de:8f:da:e7:18:44:42:bb:d2:f6:9b:56:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 2 12:34:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a84f1b78e79e38ca0ee30f73e4d1548255fb1d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1d:e1:f5:f3:39:0e:90:5b:0d:52:f1:1e:0a:
33:e4:6e:bd:83:86:d3:84:78:83:18:06:e2:57:0e:
ae:ef:09:96:f5:27:67:4f:e1:18:5d:43:03:8f:a7:
d8:e6:81:2d:d2:dc:85:1a:48:82:2d:47:a2:c1:2b:
2a:34:0e:8d:9e:e0:bd:67:de:fd:99:95:6f:34:a3:
54:f1:42:5e:11:d4:42:9e:49:af:3b:53:c9:64:ae:
92:72:64:5a:02:16:2f:8d:10:67:66:9f:75:48:f7:
69:64:12:5c:6a:d6:d5:42:49:8e:ee:0d:20:e3:f5:
4a:c6:17:fe:2f:fc:94:51:fb:46:e0:86:11:eb:7d:
cf:84:dd:43:3e:52:11:5d:bb:b9:d6:3d:af:ad:ce:
de:2d:54:87:39:55:3f:0b:ed:1f:23:ed:f8:f8:21:
8e:4f:6f:4d:35:71:b7:21:2c:26:62:da:78:4f:7c:
3e:6b:9b:22:90:f0:cc:ae:7f:93:2e:ce:ca:a3:03:
cc:7f:d7:4c:5c:b8:e0:d4:3d:b0:89:e3:dd:64:f8:
64:d1:ca:cf:a8:39:38:06:de:f5:67:6f:f8:46:e5:
e1:a4:e2:11:9b:3a:33:51:de:fb:53:3a:c9:12:00:
5f:e1:b4:87:a2:8c:b2:8e:cc:ea:1b:39:67:26:ce:
c2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:84:F1:B7:8E:79:E3:8C:A0:EE:30:F7:3E:4D:15:48:25:5F:B1:D4
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/CoTxt45544yg7jD3Pk0VSCVfsdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.80.0-194.225.85.255
Signature Algorithm: sha256WithRSAEncryption
5a:75:73:1c:42:d9:db:57:8a:1f:ec:a1:3f:a2:ea:70:ee:71:
b7:08:d2:3a:44:22:f0:a3:d4:f1:77:e1:ef:11:aa:e2:8c:05:
a7:6d:34:aa:79:ee:75:ea:31:8b:b7:83:7a:bb:6e:9c:8e:87:
76:42:91:57:41:16:ea:20:5c:2b:99:3b:fa:f9:6d:e3:55:f0:
9a:d4:a9:36:50:7e:79:ab:ca:6c:18:ca:63:d2:e5:37:cf:11:
6b:5b:ab:96:44:c4:08:da:0a:b6:da:fa:d3:83:ad:5b:b6:01:
7f:95:61:6b:2b:90:e4:44:25:ae:e6:fa:51:4a:7e:10:6a:26:
bb:52:33:1e:f8:4c:70:54:10:4a:1e:6f:ed:09:cd:cc:cd:b8:
4f:4c:fb:fc:cd:0e:fc:d7:08:cf:8f:cb:cd:37:9a:62:ac:61:
b9:14:99:68:5b:b3:26:ab:66:15:7c:d6:36:8a:78:31:0f:a3:
68:77:68:62:34:92:aa:bc:5f:9c:4b:c3:3c:4d:8e:5f:91:04:
01:70:ec:5a:23:f7:67:27:fa:d2:a3:bb:6c:28:d3:2b:e5:bb:
24:b4:22:09:1b:d6:bc:46:98:f6:ca:2b:ff:58:c5:cc:f9:10:
b3:a0:1f:2b:95:26:8b:12:35:6b:75:f2:f0:81:d5:a3:74:4c:
1e:f1:2f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:43:47 2024 by rpki-client on console-ams.rpki-client.org