Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05585ded-caa9-4870-9b97-23218aa79783.roa
File: 05585ded-caa9-4870-9b97-23218aa79783.roa (raw, json)
Hash identifier: ZeNxBYExyI3KABxFAm0t2xjDLw2pqx0YHgT1B9+5ixc=
Subject key identifier: 55:5E:9A:15:D3:48:CA:4B:48:A2:79:7A:FB:C5:64:F8:1D:0B:EB:E3
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 1FBC0F189985B721D3381E1BC1C6AB7DB4777EE8
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05585ded-caa9-4870-9b97-23218aa79783.roa
Signing time: Tue 28 May 2024 00:00:00 +0000
ROA not before: Tue 28 May 2024 00:00:00 +0000
ROA not after: Tue 02 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 212.173.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:bc:0f:18:99:85:b7:21:d3:38:1e:1b:c1:c6:ab:7d:b4:77:7e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 28 00:00:00 2024 GMT
Not After : Jul 2 23:59:59 2024 GMT
Subject: serialNumber=dc9953c2be4a6d733e28bd1ff2e1e844c65c6ad8c21204d7fde114defc152ed5, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5c:2b:a8:54:0e:8c:b0:79:77:34:2e:58:14:
d5:ed:5c:62:9c:0a:5c:f8:0b:b4:d6:27:b3:77:df:
74:43:74:21:d6:87:b3:b1:50:d9:85:d2:00:a0:a6:
5f:bb:d3:b9:ac:b0:be:8c:f9:2c:43:25:32:d0:f5:
b0:4e:54:71:f2:4a:db:fd:03:37:40:d2:30:c7:6a:
03:09:0f:ef:15:bc:61:98:6a:0f:45:91:f3:62:63:
65:0c:9b:1c:98:b4:43:41:02:88:88:29:ad:e9:b9:
fe:58:6b:74:f0:12:48:e6:f3:81:5b:34:95:72:5d:
e1:91:a0:34:52:da:b2:3f:d8:02:6b:bf:7b:56:4a:
d0:6a:db:80:ba:40:0c:c4:63:9a:33:a0:6a:3d:bd:
e2:30:20:52:49:f6:41:02:6d:17:7d:62:ca:25:58:
29:2d:b1:a3:ac:3a:77:66:14:44:af:24:02:77:69:
28:a8:06:af:08:c2:c4:75:68:60:08:50:d0:a4:13:
18:2c:41:b3:19:5c:75:b7:8a:39:ed:96:de:20:b8:
b5:1b:a5:51:34:65:26:21:96:db:78:2c:1d:b9:c0:
1f:54:7b:42:5f:28:cc:dc:0f:43:d3:4d:41:8f:84:
e7:ba:5d:7d:17:34:70:44:28:26:ab:4a:1e:a4:39:
bd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5E:9A:15:D3:48:CA:4B:48:A2:79:7A:FB:C5:64:F8:1D:0B:EB:E3
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05585ded-caa9-4870-9b97-23218aa79783.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.173.128.0/17
Signature Algorithm: sha256WithRSAEncryption
53:26:f9:c3:e0:b6:8b:7d:17:3a:ac:0a:7d:b3:18:d4:66:e2:
8d:b1:5a:6d:bd:38:96:9e:31:e4:2e:be:eb:8c:09:c2:43:d0:
3a:ec:53:01:b7:04:81:2a:01:5a:a0:26:8e:db:39:54:f0:3e:
47:01:b9:0c:75:08:1d:31:3b:3c:33:1f:fd:b7:53:51:8f:94:
91:07:b0:cd:83:8b:53:dd:42:1c:9b:5a:eb:79:5b:f5:a4:12:
aa:50:77:cb:4d:21:30:08:91:a5:e3:a2:e7:ab:b3:df:7e:43:
b6:d4:d3:20:24:c5:6d:cb:31:98:8e:85:f7:4e:93:35:30:64:
89:d4:5f:53:d4:7b:5d:31:c8:10:51:a0:6f:3f:57:11:22:6c:
2e:f6:8a:03:66:4c:c4:c8:d3:67:75:cb:01:b4:37:8c:6c:ed:
52:ac:f7:2c:63:ad:a0:1d:76:54:7d:43:50:f6:18:42:93:50:
78:6f:b6:8f:50:f8:e3:be:57:07:09:59:96:84:d1:e3:d3:24:
e6:9c:ef:d2:4d:a0:ad:bb:51:d6:26:22:a3:3e:44:2a:5e:12:
6c:a5:10:75:25:01:61:bf:2c:a9:bf:62:ee:d9:dc:94:4b:5a:
38:af:b5:19:ba:4f:1b:74:39:1d:7c:a5:f5:a7:2f:dc:2a:e1:
a6:51:65:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:38 2024 by rpki-client on console-ams.rpki-client.org