Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7e4eba0d-9f48-42a3-b449-56ce7143e040.roa
File: 7e4eba0d-9f48-42a3-b449-56ce7143e040.roa (raw, json)
Hash identifier: Fdobe32Iatb2JZiVmdNzD6ILrCi5/Hr0wqFRHZEBoEQ=
Subject key identifier: D0:27:F0:11:47:F9:AF:E7:5B:FE:71:FC:18:14:29:8E:F1:B9:73:3E
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 122B6ACFCE640A2ACCBC60F5FCF54472A8F7D800
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7e4eba0d-9f48-42a3-b449-56ce7143e040.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 185.72.192.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:2b:6a:cf:ce:64:0a:2a:cc:bc:60:f5:fc:f5:44:72:a8:f7:d8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=5c5d7c20386131805aff47320f37bcdbbedf79790175def00b6e537bb050e337, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:df:93:92:a6:2d:27:0e:06:ac:86:a5:6e:
87:ec:4c:a4:6c:2e:7f:02:12:ee:94:22:ff:6c:8c:
76:0c:f3:dc:da:50:55:49:38:38:c6:cb:73:10:4f:
99:29:3e:73:97:f0:bb:f6:d0:d8:00:77:95:28:4a:
71:5d:6f:92:6c:63:50:07:37:11:6e:25:4d:b2:9e:
ae:fa:af:6f:c5:06:72:c2:53:26:23:b8:20:8b:2a:
ea:9c:83:4a:c9:cb:a3:6e:16:d9:b6:ae:31:dc:db:
42:38:85:8d:d4:57:eb:ea:e8:c5:29:1d:c5:48:82:
4f:51:8a:24:91:85:f4:cd:28:09:4f:6e:91:ea:5f:
e4:6d:b3:26:47:21:ea:37:a9:f0:a3:ce:4b:1a:f6:
60:d5:68:77:bd:d1:08:fa:8d:5d:13:2e:bb:8f:a8:
ca:23:c0:f0:94:af:5a:d2:c7:03:95:44:4b:3f:39:
e2:0d:bb:d5:37:d3:11:74:58:c2:9d:05:85:1e:05:
de:32:e3:03:a5:48:25:fe:9b:1f:66:6b:0b:63:a8:
d8:12:a0:58:12:e2:47:9e:8c:fa:5e:52:c3:d7:06:
e8:f1:ef:84:6c:f2:a7:30:26:78:ce:7f:d0:67:65:
74:e4:c6:3b:45:52:f7:30:0a:f1:a3:ac:b3:0e:a7:
52:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:27:F0:11:47:F9:AF:E7:5B:FE:71:FC:18:14:29:8E:F1:B9:73:3E
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7e4eba0d-9f48-42a3-b449-56ce7143e040.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.192.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:b5:83:42:af:cb:7e:3e:42:c8:15:8a:b3:07:75:77:c7:71:
2a:a6:d8:d7:6e:74:49:d1:10:76:da:27:1c:b7:c5:f5:3f:be:
d7:25:25:78:c5:ab:9a:4b:aa:8b:4f:c5:88:18:68:48:dd:83:
40:1a:3f:c4:30:f2:2c:f5:d0:fa:ab:31:1d:7d:1d:9d:6b:7c:
7d:52:2c:f6:2f:7a:41:d9:0c:48:a0:82:c4:28:f4:df:71:b2:
6a:de:81:c7:4b:c4:74:05:06:ba:5f:31:90:c3:9a:01:03:2e:
03:a2:93:2f:33:53:25:55:08:a0:5f:64:6c:2b:95:bd:44:81:
93:d8:87:ac:2d:33:36:b5:c0:3e:ba:48:61:92:b6:28:3b:ac:
0b:91:5e:a4:f8:eb:32:55:7c:39:b1:15:6e:a9:e7:e7:a5:09:
6e:64:03:5e:7e:e1:9e:6f:0a:db:ef:ef:04:36:94:d7:4b:8a:
c0:f3:bf:3c:ef:4c:4e:65:e8:a3:88:42:c0:90:80:6d:c8:ad:
31:ee:91:9f:34:8a:a8:fa:48:c1:5e:f9:89:4f:ba:68:51:42:
a5:c6:34:3e:0e:b5:b1:10:31:27:4d:0f:6a:53:6a:20:9c:89:
aa:c4:f6:7e:73:ee:50:b2:60:13:65:f9:b6:f2:89:c4:59:84:
c0:f0:29:56
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUEitqz85kCirMvGD1/PVEcqj32AAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDA2MTAwMDAwMDBaFw0yNDA3MTUyMzU5NTlaMHoxSTBHBgNV
BAUTQDVjNWQ3YzIwMzg2MTMxODA1YWZmNDczMjBmMzdiY2RiYmVkZjc5NzkwMTc1
ZGVmMDBiNmU1MzdiYjA1MGUzMzcxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMVW35OSpi0nDgashqVuh+xMpGwufwIS7pQi/2yMdgzz3NpQVUk4OMbLcxBP
mSk+c5fwu/bQ2AB3lShKcV1vkmxjUAc3EW4lTbKervqvb8UGcsJTJiO4IIsq6pyD
SsnLo24W2bauMdzbQjiFjdRX6+roxSkdxUiCT1GKJJGF9M0oCU9ukepf5G2zJkch
6jep8KPOSxr2YNVod73RCPqNXRMuu4+oyiPA8JSvWtLHA5VESz854g271TfTEXRY
wp0FhR4F3jLjA6VIJf6bH2ZrC2Oo2BKgWBLiR56M+l5Sw9cG6PHvhGzypzAmeM5/
0GdldOTGO0VS9zAK8aOssw6nUvcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBTQJ/AR
R/mv51v+cfwYFCmO8blzPjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
N2U0ZWJhMGQtOWY0OC00MmEzLWI0NDktNTZjZTcxNDNlMDQwLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlIwDAN
BgkqhkiG9w0BAQsFAAOCAQEAsrWDQq/Lfj5CyBWKswd1d8dxKqbY1250SdEQdton
HLfF9T++1yUleMWrmkuqi0/FiBhoSN2DQBo/xDDyLPXQ+qsxHX0dnWt8fVIs9i96
QdkMSKCCxCj033Gyat6Bx0vEdAUGul8xkMOaAQMuA6KTLzNTJVUIoF9kbCuVvUSB
k9iHrC0zNrXAPrpIYZK2KDusC5FepPjrMlV8ObEVbqnn56UJbmQDXn7hnm8K2+/v
BDaU10uKwPO/PO9MTmXoo4hCwJCAbcitMe6RnzSKqPpIwV75iU+6aFFCpcY0Pg61
sRAxJ00PalNqIJyJqsT2fnPuULJgE2X5tvKJxFmEwPApVg==
-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org