Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c9f87ee-a903-4f2f-8bba-31a4ab5f74b8.roa
File: 8c9f87ee-a903-4f2f-8bba-31a4ab5f74b8.roa (raw, json)
Hash identifier: i5ESCzMNUxhZCjBV4VosTUnzE3lQCsykZ3ebpl5cdkg=
Subject key identifier: 77:1C:4A:B2:49:64:7C:EC:49:AB:0E:73:E4:E6:99:23:37:FA:80:8E
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 57DFF13B1A4D40C0EB5436026C165E5B980B1DFE
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c9f87ee-a903-4f2f-8bba-31a4ab5f74b8.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 145.17.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:df:f1:3b:1a:4d:40:c0:eb:54:36:02:6c:16:5e:5b:98:0b:1d:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=f09ff9db53f7c5bcb78d8ba0f9f2b89d4b30d6fb59dc6fb10a0e7f81f914f040, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:87:77:4e:22:0f:1e:3f:24:17:4e:dd:35:
58:9c:6c:76:43:f5:ba:b1:66:6c:57:2a:b2:7e:e0:
bd:a0:93:a8:8c:07:ee:9a:f4:1b:f8:05:21:55:9b:
ae:72:0b:ce:14:f6:09:a6:c7:23:bd:99:3c:a5:01:
b6:ec:57:6a:f3:f0:c8:a0:e9:b7:c8:34:0e:ae:1c:
1a:87:ab:4b:0c:41:7c:e8:de:76:ca:51:b4:d9:bc:
e7:67:e7:27:ce:d5:c3:04:c4:be:2d:44:f1:76:f6:
72:88:d8:1b:3c:c9:56:ef:45:f4:16:d9:9a:36:81:
7a:d8:14:a1:38:57:48:80:68:45:a0:2b:15:05:79:
c9:53:fa:cd:db:d9:99:5d:cc:f4:9e:f2:14:b3:6e:
f0:14:f0:5e:2f:11:46:f7:c6:9d:19:38:69:c4:d5:
52:c6:b1:d8:b0:5a:94:09:1a:a5:92:a2:0b:4d:02:
70:e7:d2:fa:af:69:a9:e8:6b:2c:b8:6c:f8:b8:00:
48:26:98:2c:19:f6:d9:62:ef:d5:a6:83:1d:07:20:
69:35:9d:96:db:6b:b5:4b:ea:81:79:b4:73:ef:d2:
f7:30:e7:a3:a4:39:b4:89:88:0c:8b:c6:b3:63:6c:
08:1c:36:59:a8:c0:a2:9d:f0:96:ad:7b:73:4f:93:
00:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1C:4A:B2:49:64:7C:EC:49:AB:0E:73:E4:E6:99:23:37:FA:80:8E
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8c9f87ee-a903-4f2f-8bba-31a4ab5f74b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.17.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b6:8b:83:eb:f1:6a:d5:fb:d3:2b:1c:c4:24:ef:fb:8e:80:33:
e8:7b:9a:e5:25:68:92:d0:a8:72:34:14:0a:b2:ca:29:e1:b8:
83:dc:d1:cd:e4:13:03:34:10:10:35:43:5d:80:76:52:78:ef:
c0:7f:db:6f:e8:f4:5b:e8:7e:f5:27:7b:74:2e:b1:99:98:5e:
01:ba:4e:a8:c0:62:26:c6:af:1d:48:7c:c9:2d:ef:57:80:0f:
15:c4:0a:91:9a:ad:4d:e8:f6:22:54:03:f5:10:33:b5:6f:47:
00:ac:a2:1b:de:6a:59:98:f6:e7:a4:6e:f2:bb:04:e6:79:6b:
c1:22:55:d6:ad:d9:c8:27:d1:36:13:1b:89:eb:5b:31:77:69:
15:5e:57:37:37:02:c4:99:c4:7a:ab:76:01:0b:17:8e:a0:cd:
73:0f:00:c2:1d:36:95:a0:65:c5:82:ea:d1:5f:f7:f8:1d:36:
b5:70:be:21:18:a8:02:9d:09:99:ee:e0:3c:b4:9b:3c:98:d7:
1f:12:a9:0f:9f:25:6d:a7:24:26:a2:72:81:15:9c:b0:1a:be:
98:48:69:47:2e:fa:d8:85:98:d9:54:5a:35:5a:87:ae:60:7f:
ea:76:77:78:3a:5a:99:d1:ff:46:b2:db:9e:5f:89:b0:b3:cf:
8a:13:11:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:04:21 2024 by rpki-client on console-fra.rpki-client.org