Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2150330d-575d-4841-9216-26672be29637.roa
File: 2150330d-575d-4841-9216-26672be29637.roa (raw, json)
Hash identifier: VbWgOCzfzS2zvswWs1pXJDtePRWcktwmuRdiW7xHhTM=
Subject key identifier: 2C:FD:B2:35:BE:6D:7D:8E:EF:D5:51:F2:D8:D7:5C:E3:74:45:B0:C7
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2B81316C88F4968191A85D88B461E6832A0B0C92
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2150330d-575d-4841-9216-26672be29637.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 16509
IP address blocks: 83.119.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:81:31:6c:88:f4:96:81:91:a8:5d:88:b4:61:e6:83:2a:0b:0c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=ac0ec18c091ea0450f195e8f304852246b5ff403e35c7a4f2b49886217778e52, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:01:9f:31:5a:50:47:b0:27:8d:84:2b:fd:
93:91:99:c6:ea:4e:e8:20:6d:1d:f2:6f:88:3e:64:
71:cc:04:f3:9d:14:fa:05:4b:a9:4b:f3:ff:39:ae:
e2:fd:d1:60:db:cb:9e:4d:6f:42:ca:8c:02:67:cb:
c0:7e:cd:5a:83:85:be:12:4a:ed:3c:90:b9:4f:7e:
86:aa:26:11:00:fb:d3:03:8c:95:7d:af:54:73:37:
34:21:12:30:d5:e0:08:17:18:bd:af:d8:bb:c5:c3:
96:ef:6c:4f:e3:c5:4f:ba:65:03:b1:30:20:55:9d:
fb:f7:8c:72:3f:d8:be:c6:1a:37:8d:1e:2d:b7:1c:
6e:73:7f:e5:ba:92:bd:b8:ab:75:aa:7a:b9:68:27:
fa:74:d7:47:c1:fc:47:05:4a:4d:bb:9b:94:00:2b:
a6:80:5b:55:85:6c:42:f7:ea:ea:52:d5:7d:70:f9:
e2:7d:21:72:01:3e:ba:c7:17:28:fe:85:6e:92:bb:
bb:ca:7d:b0:94:0e:1d:91:43:04:51:7d:02:46:cf:
b5:23:a5:19:2e:bd:61:7a:0d:14:d4:12:3e:fb:a7:
49:83:26:9f:bd:14:63:45:37:9d:b3:85:3d:d9:53:
2e:f9:f0:7e:f5:d0:0d:dc:07:00:28:b8:c8:3e:6f:
3c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FD:B2:35:BE:6D:7D:8E:EF:D5:51:F2:D8:D7:5C:E3:74:45:B0:C7
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2150330d-575d-4841-9216-26672be29637.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.119.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:01:61:23:2d:83:1a:d3:63:9d:29:62:95:07:52:73:31:1c:
96:23:99:bf:00:a0:1a:b2:e8:cc:af:76:83:56:36:de:09:95:
09:8f:d7:a1:30:95:07:84:fc:ef:8e:69:03:25:ef:95:8f:b2:
0e:5b:ab:d8:ad:ed:e6:a8:23:4a:77:b0:19:fd:43:51:bd:e1:
d2:5f:04:36:d4:56:b3:c1:14:f0:be:7d:98:71:90:c9:77:6a:
ce:b9:73:18:2b:28:f9:e4:3b:19:c7:89:c7:5e:46:02:01:be:
78:09:ef:37:ee:b3:c2:eb:3c:2d:9a:26:4a:63:9c:7e:5e:70:
b2:82:04:f6:5e:30:85:96:0c:95:3c:72:d0:43:86:63:04:df:
a3:85:73:48:4e:4d:16:e2:4c:55:b2:cf:1a:c6:1d:78:5b:3a:
7d:d6:8e:b5:5f:6b:9d:41:3f:d9:cf:df:45:38:3a:f2:2a:e9:
06:b8:81:44:fc:37:20:95:c5:87:12:17:6b:c6:8f:b2:d2:c7:
eb:38:46:f0:64:87:32:87:13:e9:0c:f1:24:ce:97:57:cd:9f:
12:8f:e9:21:e4:72:ce:bd:9c:d1:be:ec:d6:0d:36:12:e9:fb:
b9:26:a7:da:25:bf:1d:04:47:b4:80:e7:a1:0a:f3:eb:bd:80:
40:64:48:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:38 2024 by rpki-client on console-ams.rpki-client.org