Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
File: 65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa (raw, json)
Hash identifier: yxFeRBDgfs4r8TsplCme2y7bvdk1NunWH52UggZ9Fec=
Subject key identifier: E8:D0:24:CE:15:72:59:E3:6E:27:D6:50:8C:94:05:42:E9:D4:03:45
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6E589317085F4E9F10BA158B0B0322288AC1A12B
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
Signing time: Mon 03 Jun 2024 00:00:00 +0000
ROA not before: Mon 03 Jun 2024 00:00:00 +0000
ROA not after: Mon 08 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.88.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:58:93:17:08:5f:4e:9f:10:ba:15:8b:0b:03:22:28:8a:c1:a1:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 3 00:00:00 2024 GMT
Not After : Jul 8 23:59:59 2024 GMT
Subject: serialNumber=2adaf1bf0a4f8619f5120ac37a1b91a9d05938b64f15f0ba1379c7b66402fddf, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:d4:f8:05:25:2c:eb:93:8f:1e:6b:1d:c0:
5e:cc:a2:5e:76:35:02:54:ca:86:a8:1a:c1:55:2c:
d4:c3:a2:9f:bf:28:67:c7:14:27:d5:13:e9:7a:8d:
5e:c3:78:2c:78:e1:65:f9:52:48:c2:fb:6d:cd:09:
21:6d:49:3d:b6:b1:6c:e0:09:d4:70:56:08:9f:52:
f8:03:f2:4b:7a:a4:df:4b:42:85:ef:0a:6d:9d:15:
25:be:96:74:da:2f:32:00:87:69:e5:af:2c:04:55:
ec:a1:51:77:36:00:aa:a1:01:06:61:fe:fe:ad:bb:
97:9c:44:f5:b2:fd:b8:94:f0:43:66:87:a5:72:c6:
f2:26:e4:6d:3f:23:a1:16:45:5a:f0:01:ce:95:d5:
a2:ee:f0:80:ad:6b:30:ec:ec:10:e0:43:3d:04:70:
88:de:cf:87:ad:2e:3d:5e:1e:6a:de:13:0e:e6:06:
ee:0a:50:59:d9:3c:57:bb:70:b3:87:a7:41:07:cb:
d9:88:8e:2c:19:79:c5:dc:09:b8:e4:e7:35:4a:1b:
ef:d1:a5:26:98:4a:06:73:de:5d:20:6f:4d:13:6e:
79:23:02:74:e2:5f:b4:15:2a:02:f8:4e:d5:26:e6:
0b:0a:4e:de:b5:50:a3:dd:86:60:13:d2:29:78:4a:
72:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D0:24:CE:15:72:59:E3:6E:27:D6:50:8C:94:05:42:E9:D4:03:45
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.88.0/21
Signature Algorithm: sha256WithRSAEncryption
d3:43:31:33:d5:90:73:bf:60:6b:f8:d8:00:e7:34:2b:6d:cc:
ab:12:c7:68:eb:98:64:0a:73:29:5b:d2:01:d3:b5:3f:b8:bc:
34:56:e1:be:22:5d:df:4d:7e:97:78:a1:a6:47:1f:48:58:2f:
78:0a:b5:3c:51:7e:5e:12:28:a0:f1:71:6c:cd:93:bc:8e:14:
ab:81:8f:c9:19:2e:61:b2:8d:46:37:67:11:32:78:6f:be:dc:
f3:be:00:d4:c4:cb:ed:7e:0d:6a:8d:b9:de:65:02:0e:9b:3c:
c6:17:12:38:de:2e:3a:a3:e1:62:66:ea:5a:7a:c9:03:76:c4:
0f:a5:a6:79:ea:e0:d8:0c:00:66:22:72:ad:0a:c0:69:7a:be:
e6:43:86:b5:1d:91:49:ca:dd:75:2d:c3:03:3d:c9:03:24:4f:
e7:21:2d:14:52:11:1a:05:2d:b6:0f:4b:0d:66:24:06:f1:41:
76:30:66:5b:8c:ca:71:f1:d8:6c:b5:01:01:3c:18:d9:34:2c:
cd:f5:65:59:b2:59:66:7a:64:cd:26:b8:db:b5:78:b6:65:19:
31:5f:bc:f9:ed:3f:96:cb:7f:38:21:7e:03:aa:e7:65:18:58:
ed:96:3b:cb:87:0a:5f:fb:86:20:4f:58:37:3d:23:1f:6e:fe:
89:05:10:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:42 2024 by rpki-client on console-fra.rpki-client.org