Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44bb00cc-3dee-4cf6-8de9-2febfa0f0f6d.roa
File: 44bb00cc-3dee-4cf6-8de9-2febfa0f0f6d.roa (raw, json)
Hash identifier: N7wCiZx32UMu6YXhwa2NNiJkwzUFhg7i0nYvyzJAoDw=
Subject key identifier: 20:C8:7C:F9:30:21:9F:77:90:18:65:91:96:F4:6C:A9:69:C7:62:4E
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3181027F2ADDE1C0BB03D6EB0D26F1FB25F261EE
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44bb00cc-3dee-4cf6-8de9-2febfa0f0f6d.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.244.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:81:02:7f:2a:dd:e1:c0:bb:03:d6:eb:0d:26:f1:fb:25:f2:61:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=2eddefef831682ad651b1774eec235bf1afb715278c183a23509dfd064294aa0, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:5e:63:ec:06:55:2c:1e:f7:f4:7b:cc:18:
a1:18:48:a4:86:42:9b:d6:aa:3b:d1:04:45:53:94:
e0:36:57:99:a1:3d:eb:c8:d4:b2:95:cc:2b:ce:b1:
ce:02:aa:d7:fa:fd:20:d7:97:e8:4e:73:76:52:94:
00:77:f8:92:58:9d:fb:cb:cb:ef:f9:64:60:33:40:
e7:ba:99:c2:a5:f6:a9:0f:1a:b1:e9:ea:ff:6c:55:
50:f5:94:f7:24:b4:2f:75:ba:1a:a4:d6:5b:c2:b0:
37:03:46:be:6f:85:25:aa:a6:5a:5a:cf:30:90:29:
e0:af:ba:61:21:1d:10:5f:12:6a:f9:84:23:2e:28:
31:1c:cb:d2:16:cc:e2:18:a1:44:a5:53:fc:95:82:
5b:e4:33:c8:14:7f:f5:dd:1a:34:26:78:21:80:cd:
d5:f3:39:f4:e9:c8:b9:a6:37:5a:49:ce:41:6b:69:
48:a8:48:af:d5:00:6f:32:1c:8d:46:d8:b7:7a:6e:
74:19:34:06:eb:e1:8f:66:36:65:42:c1:a0:ca:7b:
0e:f1:18:db:d8:5a:20:32:d7:da:99:ef:ad:08:43:
1e:45:18:63:94:d7:61:d2:50:bd:8b:7d:42:d2:6d:
f1:53:9d:a2:6b:f2:86:dc:76:18:5c:61:e7:35:ba:
37:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C8:7C:F9:30:21:9F:77:90:18:65:91:96:F4:6C:A9:69:C7:62:4E
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/44bb00cc-3dee-4cf6-8de9-2febfa0f0f6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.244.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4a:1a:b4:68:c8:8f:b6:d9:22:c7:3a:f7:5e:fc:74:f6:fa:74:
70:b6:62:5f:ea:e4:38:56:48:c6:13:82:84:b1:ed:46:90:70:
a9:7d:79:88:d9:f1:7a:c6:47:ba:8a:e9:c0:30:d0:98:b6:a4:
d2:84:a6:64:4c:2e:c4:55:1f:ba:f8:3e:a6:d9:5c:6b:90:b2:
88:ee:8d:36:84:5f:65:7f:eb:c3:75:29:de:fb:39:07:08:21:
f2:3d:85:1b:d0:4a:89:59:5c:95:b7:0d:87:ed:6d:ff:26:41:
e6:64:d0:8a:de:d6:5c:ef:04:a6:6f:f1:39:8b:56:ed:71:1a:
bf:51:43:6b:13:e0:61:70:ea:8b:cc:d2:6f:17:d0:53:9a:39:
a9:f0:29:30:b4:12:b2:11:47:eb:ce:1d:bf:5d:08:e7:52:cd:
c8:62:2d:ad:99:98:6f:97:b4:7b:a9:a2:1c:09:d1:9e:67:c8:
6b:0c:0f:de:51:06:66:55:b6:b5:5f:67:be:f7:8c:86:b2:8b:
49:55:c8:0f:76:86:51:18:78:ad:40:a7:93:b7:56:ce:4f:79:
8c:66:df:59:22:61:2a:08:14:f9:f6:00:90:fc:52:da:7b:bc:
d3:3d:3d:b0:21:fa:c3:0c:bf:2d:ce:88:6d:42:7f:fd:3e:9c:
a6:ec:36:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:42 2024 by rpki-client on console-fra.rpki-client.org