Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f5c30d0-efa8-41c0-aa7d-c5016e9315d5.roa
File: 7f5c30d0-efa8-41c0-aa7d-c5016e9315d5.roa (raw, json)
Hash identifier: RDyzMk/WxpIm64Ue6niRYs7Fzr0iRGV65a9YpW8doSs=
Subject key identifier: D5:21:EB:91:F9:AE:CB:E8:C6:F7:7D:72:40:E4:7F:40:80:34:CD:B7
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3C41AB483F1E99ABF2A591A0BC1B42897E0006E3
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f5c30d0-efa8-41c0-aa7d-c5016e9315d5.roa
Signing time: Fri 14 Jun 2024 00:00:00 +0000
ROA not before: Fri 14 Jun 2024 00:00:00 +0000
ROA not after: Fri 19 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 57.65.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:41:ab:48:3f:1e:99:ab:f2:a5:91:a0:bc:1b:42:89:7e:00:06:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 14 00:00:00 2024 GMT
Not After : Jul 19 23:59:59 2024 GMT
Subject: serialNumber=809975c5a317eb4be862318bf8efcc551198986c03e83b422f04cae98b9c1d1b, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6a:5b:d6:85:88:d0:95:b5:48:32:a3:ba:be:
73:8a:d6:46:69:af:c2:3b:3e:de:96:d7:0b:44:92:
49:f1:08:06:b9:d8:ce:d3:59:cf:f1:cf:e8:25:47:
e7:6e:bb:8e:ce:97:18:7c:8a:a9:f1:61:ce:ec:7d:
7d:3a:ef:54:44:81:a4:58:f5:7e:44:ab:aa:06:b7:
ff:15:1b:ba:d1:2f:f9:ac:66:7f:70:74:64:58:b3:
80:11:1a:0c:07:cd:07:f5:c5:56:de:9a:cd:fb:28:
a4:5b:00:b0:01:a8:7c:be:78:2e:65:9b:17:9d:83:
53:1a:61:05:5b:f3:69:0b:de:43:06:c5:da:15:49:
76:cf:33:4a:e0:c7:e0:1a:d1:3d:aa:8f:d1:65:c4:
4c:dc:5f:5d:ab:0d:e8:09:55:c3:47:0d:47:3e:1c:
58:ef:1e:af:55:6a:4f:59:b7:a8:62:14:4a:f9:16:
08:5d:25:09:70:b6:ba:93:9f:43:d5:ef:55:8e:f7:
d0:b9:23:55:35:b2:cf:23:78:39:d9:f0:df:bd:6f:
99:3b:22:99:45:6f:a2:25:de:ad:bc:d3:32:74:bf:
57:fa:ce:c1:ec:ec:df:2a:81:b9:91:62:93:b0:94:
f7:28:87:7f:51:88:cb:70:c5:6a:cb:4e:4b:c5:e2:
f7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:21:EB:91:F9:AE:CB:E8:C6:F7:7D:72:40:E4:7F:40:80:34:CD:B7
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/7f5c30d0-efa8-41c0-aa7d-c5016e9315d5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:cf:6b:ac:0e:4f:97:e7:37:06:2b:38:f5:6e:69:26:f3:03:
54:c6:9f:24:19:ee:75:cd:0a:1a:a4:57:4e:ea:4e:da:92:8c:
94:55:6f:d2:02:5f:90:6e:85:a5:7d:7f:24:39:1f:59:df:12:
57:c0:dd:65:8c:ae:ba:0b:48:a7:84:f4:cb:ca:a8:3f:1c:26:
64:1f:03:d6:fb:ae:c5:7d:65:ff:1d:7d:b9:64:61:4c:85:0b:
7d:0a:01:71:22:00:2c:be:bd:b2:04:41:c9:f8:be:df:1d:7e:
2d:c4:aa:bf:09:8d:59:4c:0d:26:0a:56:93:5a:4b:5a:e5:18:
c2:90:b6:f9:fe:af:b2:c5:d1:d7:2f:7b:86:a5:ff:fe:2a:0a:
5e:c9:70:4c:73:69:4e:43:59:78:55:46:2d:d7:1f:8e:92:d5:
1b:65:a4:14:0a:8e:c2:33:73:9b:10:23:ca:bc:70:ef:cb:c0:
95:f7:76:cb:8b:79:a7:a9:23:1a:98:c4:9e:39:fd:0b:7a:81:
b2:b4:09:e2:5a:85:15:c3:d4:85:02:d9:e6:f5:46:11:6e:2b:
28:47:0e:9b:8d:11:61:12:f5:a6:49:45:e4:cd:86:c3:57:7a:
2f:50:1f:33:aa:12:84:08:55:0c:8d:60:69:2d:3a:a1:8e:a4:
a1:3b:82:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:42 2024 by rpki-client on console-fra.rpki-client.org