Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa
File: 575d6f80-6d4b-4183-8b86-cc4106bedd78.roa (raw, json)
Hash identifier: PXQZ1ab0gGShTwl5N8k3Exmro8s4usJiFveVbCbnTYo=
Subject key identifier: 77:C5:DD:08:95:AB:8B:1F:16:64:24:24:C5:34:B8:8D:AD:8E:87:5B
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6E1BA905C4733CB985C60F19EFB981A8D506F5F4
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 195.119.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:1b:a9:05:c4:73:3c:b9:85:c6:0f:19:ef:b9:81:a8:d5:06:f5:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=96d9be8fd672f7aaf7bdddad9db9e1f22e4740c91c27aee929843f8f43f170d5, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1b:7b:9a:dc:48:48:9d:67:b2:ce:cd:46:14:
a5:86:54:f4:5d:4a:de:0f:79:f6:f7:f4:d3:5e:e1:
ce:7c:37:7f:02:cf:74:91:ff:09:c4:89:05:96:61:
ce:1c:77:3f:b6:83:82:6f:2a:44:5c:f4:6c:a3:e9:
fc:a2:98:3e:41:cc:9e:de:d6:e4:45:02:6b:2a:9e:
b9:45:77:71:ea:91:9d:d0:ea:b4:ce:30:1f:5b:af:
aa:bc:24:10:66:3c:11:a7:35:99:5a:e9:da:d8:21:
6e:b0:e2:d9:35:d0:49:5b:ce:0a:61:e4:bb:b8:f4:
72:69:db:8b:14:3a:5d:d3:72:c6:4b:cc:95:bb:be:
8a:50:b4:e2:71:fd:c6:ef:57:61:e9:42:9a:a1:34:
43:f3:5e:87:f0:14:d4:f6:80:25:91:c2:65:bf:72:
fb:e9:07:54:e3:4e:76:c5:01:9b:8d:e2:38:ed:2b:
2c:0e:55:fb:3c:36:0e:f9:98:36:3f:06:45:1d:e4:
fe:fb:34:a7:e8:6f:8b:04:92:63:a3:f2:e6:69:fd:
e7:40:33:93:8b:f5:7a:97:6e:d8:b6:94:de:71:8f:
f9:22:39:b4:37:b8:c4:79:10:3d:c9:d0:4c:04:fd:
cf:6f:57:7d:39:ec:55:31:d9:b5:53:a7:11:0b:66:
98:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C5:DD:08:95:AB:8B:1F:16:64:24:24:C5:34:B8:8D:AD:8E:87:5B
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/575d6f80-6d4b-4183-8b86-cc4106bedd78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.119.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:f0:7b:5f:8a:14:5f:02:71:ed:c4:1f:05:14:44:e2:75:3c:
96:49:af:94:8d:2b:1c:7c:0e:32:34:db:6c:05:8f:87:21:3e:
5b:8b:02:5c:7d:b4:d7:b4:4c:80:20:05:27:b0:f2:b2:2b:74:
89:db:3b:ef:93:79:d7:53:30:b4:ed:f5:b5:1d:34:f8:88:61:
6f:97:38:61:c8:1e:25:ef:8b:ce:73:c5:eb:be:79:73:63:e8:
09:71:ea:6e:68:3e:22:13:a4:ed:26:09:f3:5a:75:57:93:2f:
6c:9d:58:e2:a6:f1:37:17:7e:70:b9:c5:8a:75:60:c3:10:9c:
fc:f4:b9:0f:23:71:88:ad:6b:79:69:1b:31:77:96:91:5d:c3:
69:60:42:cd:67:8d:e2:43:2f:42:7a:79:99:e0:f2:51:5d:dc:
db:1a:34:cc:a7:89:4f:05:99:57:b1:6f:b3:a2:54:7d:66:02:
37:92:a9:2b:71:d0:fd:7b:fa:81:6d:7b:6c:2d:c2:fd:b1:93:
b6:0e:b9:c8:e5:37:75:f0:32:83:1f:c0:fa:0a:6b:d5:6b:b0:
f5:2f:a2:1d:27:85:94:f0:11:59:cb:b1:97:64:5e:6b:23:8d:
7f:42:6a:10:88:34:2e:2d:dd:69:d9:b0:91:31:56:21:62:3b:
52:23:ac:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org