Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/06017a46-176c-427e-bd78-48276cbb30ef.roa
File: 06017a46-176c-427e-bd78-48276cbb30ef.roa (raw, json)
Hash identifier: /KYy08jlpLYK6EuOdX4MlVPtJxqWWBuC9k/61qi6qlk=
Subject key identifier: DC:77:45:EC:37:87:AD:AA:A9:82:A5:F7:2A:FB:D2:89:6B:8E:ED:50
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2DE0FDF0DBE51A96DDD0C5CBE24672DE19AF3533
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/06017a46-176c-427e-bd78-48276cbb30ef.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 8987
IP address blocks: 51.224.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:e0:fd:f0:db:e5:1a:96:dd:d0:c5:cb:e2:46:72:de:19:af:35:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=cdab732a2502f05b82266aebd3e4127f9c2d367fc0eb6b990f19d84640c405f9, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:44:97:d6:32:3e:f3:67:e2:ed:fb:86:ea:
3c:be:54:f8:c0:25:6b:a1:ea:50:56:7e:93:d5:f4:
c1:99:5d:d5:bb:44:fb:47:09:aa:3e:97:e4:7f:a1:
cf:08:3f:87:47:ab:83:61:ce:70:a7:1c:97:98:62:
5a:28:bf:b0:57:0a:e7:95:eb:63:f3:9d:0d:94:ae:
9f:c5:f1:9d:c1:81:77:43:b6:b4:60:ce:d0:b7:b2:
ba:e4:41:52:26:50:ac:92:ef:de:59:9e:47:88:e0:
fc:31:c3:24:82:6a:a6:be:94:df:ec:74:2a:1b:2c:
75:20:8c:de:67:ae:8c:a7:da:4f:3f:52:11:0c:df:
f3:6c:52:02:62:1d:c0:ce:e7:d7:01:55:88:8f:01:
e7:cb:b3:9f:0d:e7:cc:9c:98:db:44:59:ea:d7:41:
e8:1e:d0:d4:fe:9d:ac:ee:f1:8a:11:82:a0:dc:9f:
90:f0:73:2b:fd:fe:6e:53:bc:dd:95:43:87:8c:42:
7a:77:ca:03:c2:74:bf:29:00:2f:7d:71:c6:04:1f:
2c:b0:65:f7:40:1f:a9:fd:5c:a6:7a:4d:8d:29:3f:
f6:19:94:f1:04:27:23:44:55:b0:19:51:2d:db:29:
a3:e5:d5:e3:56:3c:1d:b6:f2:39:cf:73:fe:55:0a:
32:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:77:45:EC:37:87:AD:AA:A9:82:A5:F7:2A:FB:D2:89:6B:8E:ED:50
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/06017a46-176c-427e-bd78-48276cbb30ef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.224.0.0/15
Signature Algorithm: sha256WithRSAEncryption
24:f3:62:32:cb:09:26:e6:03:c8:83:05:53:ca:51:ff:ad:e7:
ab:ca:cf:2d:ff:8a:23:fb:c9:23:80:0f:9d:e1:54:9d:e3:7b:
81:0c:00:d9:28:db:71:a5:88:c6:77:52:cd:98:48:ca:ae:70:
7a:4c:ea:7e:4e:e1:e4:ed:81:ed:07:32:d0:70:2f:6e:ff:89:
ab:f2:e0:60:c9:9b:c7:86:11:0b:43:dd:94:f1:e5:c4:5f:9c:
36:bc:8e:66:3f:48:58:a9:92:77:5e:f1:e6:2c:bf:51:6c:85:
5f:c0:30:a7:48:3d:b3:61:94:13:23:98:f6:4d:69:71:e1:b6:
be:6d:90:c9:97:d9:85:4f:20:62:af:7c:d8:e5:47:6b:98:7c:
7c:93:d7:9f:9e:56:14:9e:17:b0:21:10:aa:cd:6a:94:a4:6c:
59:02:ff:07:0b:13:91:db:d1:76:4d:df:32:ed:99:16:9c:f4:
72:a1:35:68:08:ee:a5:04:0b:51:41:9d:ef:cb:a6:b6:aa:38:
d1:6d:31:ed:53:80:55:ee:cc:df:12:5a:f6:71:12:2d:69:1c:
00:c1:d5:ef:67:bb:d1:ed:b5:b7:19:40:0d:9d:f1:cd:24:05:
43:c6:cf:ce:03:b6:21:79:e3:cf:4f:79:d1:12:f0:01:8a:c8:
b0:82:25:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:38 2024 by rpki-client on console-ams.rpki-client.org