Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4305fc8e-966f-4fac-88dd-b53410014e6b.roa
File: 4305fc8e-966f-4fac-88dd-b53410014e6b.roa (raw, json)
Hash identifier: kGKjGWA4H6ae8cgUSSqhdxrskh/P2kIah2L9mJwD8zU=
Subject key identifier: 6D:4A:DE:6B:DD:27:2A:26:60:CD:65:85:2D:1D:BB:03:6D:10:A3:3C
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 4371C72B96EE65BA78F5DA742E197BFF1E8FE4FB
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4305fc8e-966f-4fac-88dd-b53410014e6b.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.164.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:71:c7:2b:96:ee:65:ba:78:f5:da:74:2e:19:7b:ff:1e:8f:e4:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=cf8eefb4f906e278e0468dbdd78ad68269d35a905e5695da2ca081f823199676, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e8:4e:83:81:65:d4:8e:eb:6d:9c:23:e9:3c:
e2:1a:3c:98:38:40:cf:b3:a3:72:f0:86:f2:fe:83:
d9:2d:8c:32:f6:a0:ec:6b:9b:9d:c6:b3:db:30:d5:
91:6a:cb:20:0f:3b:96:5e:6c:5e:6e:77:c9:1d:7f:
63:84:ae:c3:49:28:05:c5:93:ff:2e:92:86:d5:ec:
49:ed:3e:20:43:79:9f:f2:5b:37:d5:41:8b:44:44:
d4:ff:6c:6d:5b:70:6a:52:c9:04:95:d3:bc:77:62:
fd:8e:6c:f5:cd:3e:9f:02:17:a3:1b:2e:b8:fb:c8:
97:0f:a8:c9:89:af:98:c8:50:b1:21:3e:39:d5:7e:
8e:f7:a5:8d:b2:0d:c5:ca:e8:e8:50:d5:d0:8a:cd:
fa:cb:00:7e:5f:82:b6:39:c1:e6:8d:12:dd:d1:7f:
fb:c7:3c:37:c0:b8:4e:82:d4:ac:e1:b1:45:e9:e9:
1f:92:ea:de:27:de:7f:c1:81:55:a5:81:63:40:c3:
bd:53:df:d3:f8:99:f7:cb:b8:c2:3c:a7:51:15:46:
44:68:40:c2:62:de:48:09:7f:49:8f:b0:ca:3c:24:
2d:ac:5a:62:37:0a:4d:9b:e7:9e:d8:83:c1:3a:03:
68:85:9c:bb:a7:76:62:4d:4d:44:56:5a:a2:57:74:
2d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4A:DE:6B:DD:27:2A:26:60:CD:65:85:2D:1D:BB:03:6D:10:A3:3C
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/4305fc8e-966f-4fac-88dd-b53410014e6b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c9:cd:12:60:6d:29:0a:86:1b:97:a9:be:4e:f8:69:8c:bf:42:
2d:a9:0b:4d:72:71:da:0c:7d:b0:16:f2:3a:05:75:be:39:e4:
08:09:48:ee:b9:e1:9e:4a:63:fd:44:49:32:56:53:3e:65:17:
ab:f4:7c:f2:12:e8:6e:4e:33:6f:57:a9:7d:34:ee:c0:04:27:
98:6e:57:51:fb:eb:fe:31:7e:6e:ba:e1:55:12:7a:25:79:4c:
53:38:0f:ba:e2:f0:c6:84:fb:94:d6:d7:43:dc:cc:5f:d7:da:
05:04:65:ce:c8:4f:e6:77:39:f1:76:d4:f9:1e:f6:88:9d:d6:
d9:dc:0b:47:78:35:1c:db:1c:01:e8:d5:24:a1:8e:63:68:48:
b5:6f:72:bc:c6:15:0c:f5:26:b3:6a:a2:15:43:70:27:06:5e:
9d:bd:8c:49:e5:0d:3e:46:17:4c:11:d5:cc:14:f7:57:7b:d7:
41:7e:fd:14:22:c1:79:ac:f2:e5:46:fd:c8:a5:ae:3d:7b:49:
c1:c0:e7:e3:ed:40:13:c2:68:31:15:3d:e4:31:13:f7:41:11:
a3:45:99:ce:48:d2:a0:06:7b:d3:c0:fc:a3:cb:6b:93:b9:80:
4a:3b:59:18:ab:c4:d3:62:7a:92:3f:30:2d:5d:b8:29:54:09:
ad:1a:1f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:21 2024 by rpki-client on console-fra.rpki-client.org