Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e5dcc27-9bc3-4b82-8be2-a41315c61b33.roa
File: 8e5dcc27-9bc3-4b82-8be2-a41315c61b33.roa (raw, json)
Hash identifier: VQJIkW+42OvkH8xh2OlbxhcvXxPfHPvM7KsymHHVcjw=
Subject key identifier: 19:A5:C4:12:C7:26:3E:07:45:95:3B:B0:15:50:2C:E3:37:D4:BA:68
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 76FD75DDF7676CECF48212F22369453A2D7A5D1E
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e5dcc27-9bc3-4b82-8be2-a41315c61b33.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.160.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:fd:75:dd:f7:67:6c:ec:f4:82:12:f2:23:69:45:3a:2d:7a:5d:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=674a6c5e496c53ab754d615565b887ecfbb10da292cd7785f2c2c907e43fcfe3, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:3c:5d:d2:59:24:f1:f7:14:d2:b7:4c:08:
23:d2:de:e6:09:0d:93:d2:f2:54:2f:89:15:61:df:
3e:1d:81:eb:96:01:b0:4d:62:1e:0b:de:21:7f:22:
0a:92:94:cb:ae:95:5f:ae:6f:83:35:9e:da:f8:b4:
66:34:54:b0:25:ed:08:0c:f9:ed:fa:96:f6:ff:cd:
76:70:9d:32:5a:0a:04:8c:f0:97:16:c0:f3:6c:21:
cf:b3:12:ec:4e:57:12:d5:5f:ec:ef:f4:31:1b:f8:
f5:1d:00:a0:06:97:78:ee:1f:c9:4d:66:90:b2:83:
75:44:f3:30:18:39:8b:da:9b:c4:c2:c1:f9:13:7d:
f1:bd:ff:4a:af:ad:3b:a4:ad:55:dc:ed:89:98:b5:
62:2f:7a:40:4d:e3:62:25:9e:94:de:cf:ac:00:c5:
1f:c9:be:dd:32:a2:63:b4:0e:2c:71:d1:6f:fa:3b:
d0:f6:1e:a4:ec:2c:54:d7:f5:94:dd:05:4c:48:d8:
32:31:b5:6b:ee:32:bc:eb:37:ab:ab:a3:e1:53:bb:
e6:ff:b4:95:9a:f0:95:4f:d5:c4:f4:2a:8b:22:84:
f6:e4:6b:be:1d:82:0c:b0:77:1f:7e:c7:9a:36:92:
da:36:6f:8a:2b:4a:a5:45:7e:fc:b0:f6:0f:81:99:
0a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A5:C4:12:C7:26:3E:07:45:95:3B:B0:15:50:2C:E3:37:D4:BA:68
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8e5dcc27-9bc3-4b82-8be2-a41315c61b33.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.160.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:e2:76:eb:ad:6b:30:ba:65:c4:6c:0d:60:15:8a:34:b0:12:
ee:34:03:4f:88:46:4a:d6:ed:d4:22:c1:90:0c:c4:b8:9a:04:
86:18:73:a8:cb:90:02:75:fb:fd:44:93:15:e3:30:32:1a:47:
27:64:0d:91:55:73:47:03:89:1c:ff:f6:97:65:f2:2d:23:3b:
74:69:9e:7d:64:38:a6:7b:a1:d2:d0:d1:e0:35:50:4c:25:9f:
63:b6:61:82:30:dc:3e:3e:dd:c9:4d:49:a9:b3:59:37:da:bf:
ea:f0:49:6b:cc:90:10:7b:02:5c:a8:0b:fb:d3:2a:ef:e3:eb:
ca:42:be:72:55:95:65:55:80:fb:9e:4a:b8:42:70:5d:23:52:
49:6d:99:95:d4:fc:9e:bd:f7:8f:fb:fb:48:99:23:90:16:e4:
5d:91:49:ad:06:80:38:3c:e7:4f:34:bc:e1:4d:1b:26:99:27:
67:94:ce:33:1b:fc:d4:f9:3e:0e:07:f6:c2:59:1c:83:df:6e:
90:3c:4c:42:33:c1:d3:81:c2:89:1e:cc:3c:1e:83:d9:40:a5:
b9:88:76:64:82:4a:3f:53:1d:78:70:36:90:64:5a:1c:02:c3:
76:69:d9:61:66:a0:33:ac:0f:89:95:ad:93:09:90:de:dd:dd:
c4:98:ac:88
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgIUdv113fdnbOz0ghLyI2lFOi16XR4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDA0MjYwMDAwMDBaFw0yNDA1MzEyMzU5NTlaMHoxSTBHBgNV
BAUTQDY3NGE2YzVlNDk2YzUzYWI3NTRkNjE1NTY1Yjg4N2VjZmJiMTBkYTI5MmNk
Nzc4NWYyYzJjOTA3ZTQzZmNmZTMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKj5PF3SWSTx9xTSt0wII9Le5gkNk9LyVC+JFWHfPh2B65YBsE1iHgveIX8i
CpKUy66VX65vgzWe2vi0ZjRUsCXtCAz57fqW9v/NdnCdMloKBIzwlxbA82whz7MS
7E5XEtVf7O/0MRv49R0AoAaXeO4fyU1mkLKDdUTzMBg5i9qbxMLB+RN98b3/Sq+t
O6StVdztiZi1Yi96QE3jYiWelN7PrADFH8m+3TKiY7QOLHHRb/o70PYepOwsVNf1
lN0FTEjYMjG1a+4yvOs3q6uj4VO75v+0lZrwlU/VxPQqiyKE9uRrvh2CDLB3H37H
mjaS2jZviitKpUV+/LD2D4GZCkMCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQZpcQS
xyY+B0WVO7AVUCzjN9S6aDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
OGU1ZGNjMjctOWJjMy00YjgyLThiZTItYTQxMzE1YzYxYjMzLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADOgMA0G
CSqGSIb3DQEBCwUAA4IBAQCh4nbrrWswumXEbA1gFYo0sBLuNANPiEZK1u3UIsGQ
DMS4mgSGGHOoy5ACdfv9RJMV4zAyGkcnZA2RVXNHA4kc//aXZfItIzt0aZ59ZDim
e6HS0NHgNVBMJZ9jtmGCMNw+Pt3JTUmps1k32r/q8ElrzJAQewJcqAv70yrv4+vK
Qr5yVZVlVYD7nkq4QnBdI1JJbZmV1PyevfeP+/tImSOQFuRdkUmtBoA4POdPNLzh
TRsmmSdnlM4zG/zU+T4OB/bCWRyD326QPExCM8HTgcKJHsw8HoPZQKW5iHZkgko/
Ux14cDaQZFocAsN2adlhZqAzrA+Jla2TCZDe3d3EmKyI
-----END CERTIFICATE-----
Generated at Sat May 4 22:06:50 2024 by rpki-client on console-ams.rpki-client.org