Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5b05d201-6089-4826-a4dd-c7a9d71bd900.roa
File: 5b05d201-6089-4826-a4dd-c7a9d71bd900.roa (raw, json)
Hash identifier: 3w0ZVi9uVzMGh7cQzWl3e14ZY/SPurQAXBSB824cMZU=
Subject key identifier: 84:D8:78:8A:E6:58:5F:2A:C5:09:2B:2C:F2:C0:9B:4E:FA:16:C2:57
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 19FBFE26125F892BC00C20FDE91B8AC77191E79E
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5b05d201-6089-4826-a4dd-c7a9d71bd900.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.102.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:fb:fe:26:12:5f:89:2b:c0:0c:20:fd:e9:1b:8a:c7:71:91:e7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=cf505ea75e97ad2f0c21303092d4ceff0de9967500d1f3d816317c67e411c05c, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b7:e6:c2:04:67:71:21:d9:72:64:53:e6:dc:
07:8e:ca:bd:06:8f:e5:19:ae:8f:ef:e0:c2:1d:a4:
b8:c5:d2:38:3a:a5:ed:01:bc:d7:b2:3b:08:24:74:
8b:c2:15:a8:44:05:e3:d8:c3:03:f6:a4:24:f2:86:
a6:ff:e0:e6:6d:2b:c8:a3:e8:b2:2a:5b:c0:ee:2d:
c3:b4:1b:03:55:7e:e1:ea:42:3a:9f:28:2d:99:72:
f5:d4:87:44:24:2b:b3:80:fd:c0:d3:3e:10:e8:8f:
5f:b2:5f:85:bf:62:65:04:72:88:ec:f5:c4:5b:af:
4a:5e:34:1c:a2:a6:96:75:05:3b:7d:72:dd:72:51:
0f:2e:95:dd:79:f7:02:b9:6d:a8:bf:10:e6:05:35:
1c:d6:76:aa:5f:5a:fe:85:e8:da:f3:fa:75:ad:7d:
af:84:b5:42:44:4f:e9:d7:ef:74:54:c2:f7:35:c3:
92:62:c4:13:3c:e9:99:b8:ff:56:80:45:f0:6c:e2:
ec:20:8a:50:78:18:eb:c9:c9:3e:5f:9b:b9:ac:a5:
7d:b8:f0:cb:f0:13:2d:e5:f6:d2:ec:b0:f5:13:72:
72:e9:11:9c:1d:e7:25:7c:aa:5f:3a:36:d5:97:bc:
09:06:5d:ce:70:5e:29:73:a0:15:52:fd:76:8b:a4:
ce:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D8:78:8A:E6:58:5F:2A:C5:09:2B:2C:F2:C0:9B:4E:FA:16:C2:57
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/5b05d201-6089-4826-a4dd-c7a9d71bd900.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:36:26:72:86:35:c3:e5:b5:3b:bf:2a:e5:2c:75:a6:a6:44:
71:03:c1:a5:95:40:f7:1a:97:34:a2:2f:a9:80:86:33:49:4a:
a0:33:19:9c:05:5e:90:f6:07:5b:84:8e:e4:d3:c1:8f:0c:ea:
79:d9:85:c2:a3:af:f6:86:ed:6e:62:33:d2:ec:55:c4:91:12:
23:29:63:79:28:68:ba:09:84:2b:41:a3:8d:03:1c:91:46:2b:
de:85:5d:5e:49:8c:09:a6:7b:79:8f:64:15:c3:46:bf:4d:fc:
47:4a:95:00:2e:54:2b:7b:42:2f:a0:29:8b:3f:39:dc:56:c0:
7f:9e:49:0d:aa:fe:37:43:64:ad:31:01:a5:ed:95:31:1c:e0:
28:d3:00:4a:3e:d6:6c:e8:0e:2c:a8:33:6f:c1:ac:df:46:05:
7c:b0:16:28:3f:24:2c:b4:f5:5f:b7:d7:d3:32:16:75:cb:bc:
16:10:21:da:a0:ee:3a:ca:30:99:65:b5:69:f4:41:43:c9:94:
23:91:f8:6b:5d:26:0a:a0:26:a1:1e:d1:d2:dc:d5:4f:01:61:
61:c6:dd:c2:dc:26:84:6c:12:a2:5f:b6:00:22:63:23:1b:81:
7c:82:dc:90:b4:d0:56:ba:44:21:4b:73:ab:c4:62:c6:c5:7d:
15:66:ca:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:42 2024 by rpki-client on console-fra.rpki-client.org