Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
File: 01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa (raw, json)
Hash identifier: 0pBiYhM/Q3jMgam7a1hjJxURn6FdUKJDXT5oao5PK6c=
Subject key identifier: 1E:4F:73:C3:AC:11:FE:9C:A0:2F:E5:17:B5:FB:E6:B2:B9:91:B3:A2
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2F490AB83A4F3569A4C6C082B275833150282C42
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 83.118.234.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:49:0a:b8:3a:4f:35:69:a4:c6:c0:82:b2:75:83:31:50:28:2c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=545614eae557ef41811bd4f96064d5025b921ae03379a6cf78575d34ee506275, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f0:3a:17:2e:d6:c5:40:b5:17:18:70:f0:a6:
3b:e8:2c:ba:46:8e:28:80:3d:09:d8:82:d2:30:20:
e6:87:db:04:30:45:3a:bc:14:7a:35:15:e3:24:83:
cb:a0:87:7c:b8:90:52:2d:e4:55:5b:4c:2e:e8:d8:
45:7f:d9:ce:70:38:b2:f2:3b:a7:8c:99:97:b8:28:
b7:b4:8d:00:01:9a:33:b9:ad:ee:3b:73:03:d9:fa:
e2:15:bc:fd:eb:ad:c3:7b:20:8c:f3:1e:86:c2:98:
a6:85:24:84:2d:8e:90:22:d9:e9:3f:24:a5:be:18:
1c:7e:82:c6:94:70:e7:03:26:47:8b:65:b4:1b:c5:
1e:4d:8a:40:99:b7:55:e7:0d:df:75:2f:b9:28:b2:
92:6e:90:68:fa:c7:da:23:ca:8c:8d:91:f8:38:9c:
19:52:8e:98:d0:a8:d4:90:79:e8:2c:bd:74:6e:d5:
67:11:73:ff:e4:97:8f:f1:01:b2:7d:86:4f:5e:74:
55:c6:8c:f5:9e:41:1b:59:9d:04:bc:6f:80:e9:c5:
19:27:ac:61:10:c4:e3:58:63:86:cc:50:92:c1:7a:
39:b8:3c:eb:63:c8:a5:46:f3:af:f8:80:1f:b6:0e:
e6:21:ed:9c:bb:01:c5:8a:a5:ac:00:4d:79:2a:3a:
a5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4F:73:C3:AC:11:FE:9C:A0:2F:E5:17:B5:FB:E6:B2:B9:91:B3:A2
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.234.0/23
Signature Algorithm: sha256WithRSAEncryption
60:03:a0:5b:98:91:8b:5b:42:12:95:e8:88:35:5c:13:9c:82:
38:14:92:a7:8e:5e:a7:bc:f6:a9:78:47:ae:18:dd:9b:db:cf:
b1:f6:28:a2:36:1d:4a:b7:03:a9:80:82:4b:58:72:58:eb:71:
37:0e:d8:50:84:1e:0d:56:f7:f7:88:b2:8f:77:36:42:c3:bc:
eb:e4:d8:f8:4f:13:bd:56:35:97:fb:c5:5a:04:6d:f8:04:23:
2f:46:e5:44:37:c8:5a:24:a2:05:38:41:d6:89:ad:74:a5:f5:
1c:43:d9:6e:52:d1:68:97:4f:05:bf:12:7e:70:72:81:f5:9c:
3d:61:fe:ed:34:ef:60:5b:9c:e4:ec:b5:3c:85:11:e0:7a:d7:
55:e0:4f:54:25:93:42:6e:5c:3f:e3:33:55:fb:0a:c9:81:f7:
49:1d:c2:0e:ce:9e:bb:45:f7:d4:9f:ab:02:49:69:5f:54:e7:
44:3c:6d:9d:05:0d:36:8c:6e:e2:c5:1d:81:c1:0b:db:65:fa:
f3:00:d3:6d:81:66:6a:d6:e4:80:88:5a:d8:95:e6:ce:47:6e:
17:78:0b:6a:d5:b3:ea:c6:2b:3a:cf:5f:dc:99:7d:a0:67:e1:
e9:33:02:6b:93:86:97:31:11:10:66:57:be:c0:f7:35:c6:2a:
32:d5:25:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:38 2024 by rpki-client on console-ams.rpki-client.org