Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e551851-bfdb-4c50-93aa-d4c75481b843.roa
File: 8e551851-bfdb-4c50-93aa-d4c75481b843.roa (raw, json)
Hash identifier: QkJbj3ottlF7bkSGc0CdtwoWc+90GGAsYCep2bqlsqc=
Subject key identifier: 19:0D:60:03:48:28:16:ED:08:9C:A0:88:E2:5A:68:0B:38:B7:8A:20
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 048C96CD4B14420FAB420E638EE4D8DE53E6A98C
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e551851-bfdb-4c50-93aa-d4c75481b843.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.117.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:8c:96:cd:4b:14:42:0f:ab:42:0e:63:8e:e4:d8:de:53:e6:a9:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=742c40eda55144c7c93dab92d6cd44473e1abd321252f77e535195763ec77583, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:e1:00:69:64:7f:4a:98:e3:8e:f3:c2:f5:
5c:a8:23:07:69:98:ef:b3:39:49:74:c5:8d:ea:14:
20:66:96:af:82:a7:58:fc:b1:5d:a8:3e:14:bc:60:
f4:8f:1a:de:5b:3e:f8:82:0c:41:3c:d4:22:8b:2e:
5a:94:cd:84:a9:b6:b0:94:f0:50:4a:5b:13:ec:3c:
f8:ca:17:ff:ac:f9:d4:e6:b7:90:7d:c2:d9:09:45:
3c:17:a7:61:12:3b:c0:83:89:84:23:f1:be:15:1c:
a6:3f:20:dd:98:53:75:98:9f:26:06:4a:c7:f1:07:
fa:e5:7c:09:50:32:04:03:ec:d4:6b:27:07:d4:42:
03:75:43:4c:9f:45:60:4a:61:a2:ee:4e:09:3c:f8:
c4:09:d3:65:30:bb:58:54:4f:aa:e8:a8:59:20:d0:
36:07:ed:6f:4c:66:98:a6:c9:34:e0:55:23:cc:35:
67:18:65:38:f6:f0:ef:7b:aa:15:b4:51:1a:66:35:
1b:70:e4:75:dd:05:f1:9d:1b:d0:78:c1:c6:91:e6:
26:c0:a2:63:1f:ba:24:31:9f:38:4b:97:fb:25:ec:
37:d9:88:ae:bb:b6:01:9d:fc:4f:74:5c:48:a6:de:
8e:24:22:57:8b:96:af:43:9c:45:13:de:da:92:bf:
d3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0D:60:03:48:28:16:ED:08:9C:A0:88:E2:5A:68:0B:38:B7:8A:20
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e551851-bfdb-4c50-93aa-d4c75481b843.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.117.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:81:90:c1:9e:2b:d7:7f:1d:d8:0a:1a:37:5f:32:31:ba:77:
68:f4:a4:81:3d:c6:5b:8b:9f:ec:f9:46:d8:a5:a8:71:f4:c0:
ad:98:56:d8:64:fe:55:d3:96:a0:5a:10:b7:32:70:ca:e2:03:
07:3d:c7:a7:69:61:fe:f3:89:8e:ee:b9:32:b1:c8:b5:06:93:
72:56:7e:2d:18:a8:0d:9b:92:67:d3:12:61:02:f4:87:d6:7c:
dc:80:66:10:37:dc:5a:80:71:a0:95:13:03:c0:91:65:93:07:
4c:02:f3:d2:96:83:57:6d:08:15:a5:04:a4:1d:2c:d3:fc:fd:
5a:23:a4:c5:59:b7:f6:18:cd:c0:67:f8:02:a1:64:b8:9f:f8:
f6:73:d6:0d:74:2a:6b:81:c4:20:8b:a1:83:b3:3f:51:e8:34:
2c:75:ef:42:3a:46:51:3b:1f:bc:19:2c:39:32:28:fa:5d:f3:
17:51:90:31:a7:6e:fb:fe:07:54:9f:5b:89:57:31:ba:17:c4:
09:32:be:97:84:1e:b5:ad:41:74:b8:ad:71:35:dc:a2:74:4f:
14:55:fe:91:c6:55:ba:45:b2:de:70:bd:3e:1d:31:4d:93:9d:
0c:ad:51:a1:5f:7b:69:1f:11:62:cf:38:32:a1:57:93:58:de:
c0:d9:dd:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:37:13 2024 by rpki-client on console-ams.rpki-client.org