Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46eb8bb9-8a91-491d-8f3f-9cc4afcf5ecd.roa
File: 46eb8bb9-8a91-491d-8f3f-9cc4afcf5ecd.roa (raw, json)
Hash identifier: VA4eyZnJXDlLRsaBYbtenSKb9UoDj0g2VEM/uMdNbUU=
Subject key identifier: 31:C8:04:B2:CB:F7:22:B0:AC:23:98:E6:1D:C1:90:FD:90:9A:81:19
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 259B379FD043B155B8A687FBD8B975DE49D59E03
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46eb8bb9-8a91-491d-8f3f-9cc4afcf5ecd.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.108.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:9b:37:9f:d0:43:b1:55:b8:a6:87:fb:d8:b9:75:de:49:d5:9e:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=6fedb59be21ecdb92ce8a6684560bf903737d367de3ff600101a579ff0b7db64, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a7:1e:42:82:05:8a:f4:48:6c:85:ab:7e:c9:
d9:86:bf:a3:9b:01:90:37:73:ef:42:4e:5e:58:78:
52:0a:10:04:80:a7:2c:7b:29:fa:74:0e:a0:ec:f9:
f9:b7:80:a7:ee:38:cf:37:7b:29:c5:64:fb:b2:b4:
2d:18:a1:48:fc:a1:d4:db:42:8e:2b:1c:fc:b4:a2:
ca:c5:3c:0e:6f:cf:b7:f9:e8:89:4b:3e:97:4f:ef:
8c:48:7a:fd:79:33:af:d6:4a:9d:d3:31:e8:56:c8:
50:d0:a3:76:82:78:72:8a:47:c0:a1:da:57:d1:92:
5c:a1:0b:2c:48:d8:7d:0d:12:15:d8:07:1b:15:1d:
43:4e:85:a4:1f:b6:e5:aa:99:6a:e1:c5:69:cd:31:
5c:36:55:a3:33:fd:cc:bb:79:ed:32:16:a7:06:a1:
da:76:60:8a:1f:ba:f9:cb:61:27:1f:1a:ab:5c:04:
05:68:74:82:4c:61:9a:5f:96:06:21:59:89:eb:a4:
b7:97:37:9f:ec:94:e4:38:2d:85:fd:cf:1a:3b:fc:
9e:b0:a0:0d:98:1f:1d:8c:f5:6f:5e:f9:07:bf:62:
b4:61:b5:c4:24:6f:8f:79:66:af:f7:42:c7:ba:99:
02:7e:1f:6a:ad:a4:9b:9e:c6:53:06:02:e6:00:5e:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C8:04:B2:CB:F7:22:B0:AC:23:98:E6:1D:C1:90:FD:90:9A:81:19
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/46eb8bb9-8a91-491d-8f3f-9cc4afcf5ecd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.108.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bd:a7:0e:0f:ac:2e:62:d0:31:65:11:8c:bd:e9:23:b5:2b:88:
a4:44:37:d2:26:e4:54:a8:9a:49:a1:48:f2:a4:93:95:7c:65:
52:31:7f:3b:5f:98:dd:8e:a0:6d:18:65:0b:a2:29:5a:fc:af:
d9:6f:59:e4:46:af:8e:e4:61:05:c3:cb:40:f6:b3:dc:61:a9:
5b:78:43:58:b3:d5:cc:03:d6:9c:9b:6f:0c:51:ff:14:82:4f:
9a:02:da:3a:f1:99:44:a3:fb:9a:ec:d5:a7:08:ba:81:34:e1:
b3:e3:82:6c:2d:26:11:13:71:aa:9b:a0:64:f6:e9:90:86:00:
49:e8:4e:62:50:9e:f7:10:b6:a6:64:d2:d1:df:81:07:f0:ec:
ec:91:d3:c9:63:66:1b:34:9e:96:74:de:e2:5b:6d:c7:9c:e9:
bc:85:17:c8:44:c4:26:3d:28:47:ee:ab:73:0f:11:5d:70:51:
3d:81:93:54:c2:60:01:ec:15:59:df:20:f4:b2:31:8c:dc:8a:
b5:b5:08:e0:ea:3f:e9:f8:8a:8f:1e:bf:db:56:14:cb:8c:6e:
d3:3f:93:97:24:2c:76:3f:c9:06:49:a5:74:08:23:bb:3f:e4:
2a:ec:cc:b7:81:cd:02:a0:9b:d8:67:88:ba:7c:2f:3b:c9:6d:
08:7e:29:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org