Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
File: 9792ad79-8b80-43b9-8574-bf0d7945ed45.roa (raw, json)
Hash identifier: C+ZfnhooF0i2Vi8/jLdyf2jUXPfm2h67T6dsTArjsRY=
Subject key identifier: 5F:32:46:6B:26:81:4E:69:EE:CA:43:FB:50:5E:5F:9A:8B:93:D9:31
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 4BBD580D3D0CDEB37CD477D7863B391C4C4D7228
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
Signing time: Mon 22 Apr 2024 00:00:00 +0000
ROA not before: Mon 22 Apr 2024 00:00:00 +0000
ROA not after: Mon 27 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 62.230.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:bd:58:0d:3d:0c:de:b3:7c:d4:77:d7:86:3b:39:1c:4c:4d:72:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 22 00:00:00 2024 GMT
Not After : May 27 23:59:59 2024 GMT
Subject: serialNumber=b00924edc3b49223e21024445b8f3a6f0097b617458f077b2287c7a680d7357a, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:c4:f1:cf:f5:a8:a7:55:1c:45:a2:18:c8:a1:
13:11:e9:9e:70:75:97:ee:0c:7a:65:43:77:1c:73:
3e:c0:cc:e0:0c:64:d9:27:80:cb:42:2f:db:00:b5:
d9:21:8c:b9:f5:4c:ef:eb:9f:8f:ca:2f:9c:b8:69:
cd:80:33:1b:19:9c:68:c6:1c:fb:50:21:86:8f:35:
2b:6a:9f:5c:3b:7e:02:21:4f:e0:75:0c:04:cb:7b:
ea:5e:73:e7:17:81:59:c6:16:81:7b:73:06:0c:b8:
48:a7:cf:0b:aa:00:eb:5a:d7:07:29:ad:09:2b:ee:
5f:f3:9a:c0:d9:c9:16:98:56:50:de:5a:fd:83:11:
d6:9b:c2:79:05:07:58:14:09:40:86:84:66:cc:97:
0b:dc:60:1a:7c:0d:c3:95:43:03:0d:b9:88:0c:86:
d2:9a:7f:98:53:55:79:57:63:c3:0f:2c:73:ac:20:
ef:52:3f:ad:d2:7b:75:cd:73:00:e0:14:5e:5c:f1:
49:85:c5:61:6a:87:f7:e5:a2:76:20:33:d0:b0:43:
1b:1d:85:2c:83:cf:49:46:5b:73:63:62:ee:46:89:
1e:c6:87:a8:46:5a:b5:19:15:bf:fe:c0:8b:4c:94:
c5:fb:ba:d7:90:a9:70:ac:f6:b6:57:5b:77:36:dd:
04:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:32:46:6B:26:81:4E:69:EE:CA:43:FB:50:5E:5F:9A:8B:93:D9:31
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.230.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7b:c2:34:e6:ed:24:8c:ec:58:d6:28:0b:a1:cb:c2:0f:9a:81:
e4:ce:af:6b:72:f5:98:bb:99:96:df:a9:e8:3c:b6:60:20:44:
71:74:ff:15:c4:63:2b:1f:8c:f2:a8:fe:fb:c0:a3:34:44:d6:
0f:b7:89:67:ec:07:e0:fc:eb:84:bb:82:cc:c1:c9:21:e0:1b:
14:2c:27:a6:59:19:dc:5b:77:b8:47:0e:e8:ae:5e:ba:d5:56:
62:d9:d4:5d:5d:69:01:b3:e9:3b:a5:d4:fd:28:d1:b6:03:25:
10:0b:b8:88:33:c0:be:6d:e0:9e:03:c5:8e:11:9e:3a:e9:18:
c9:2b:54:02:16:f0:f7:6b:b7:42:be:f4:7b:3a:51:bd:6b:dc:
e5:f6:44:1e:3d:e6:cb:b9:dc:db:26:79:38:1e:70:dc:3e:52:
28:8a:ef:27:be:29:6f:34:0e:7d:d9:c0:7d:ca:38:c0:5b:81:
55:3d:21:f1:1e:0f:87:a4:8d:71:62:5e:91:16:ed:f0:8b:c1:
67:ad:e5:a2:39:e2:f0:f3:cf:eb:dd:60:e6:65:2a:60:04:e1:
a0:0a:5c:49:08:3c:6e:7a:fb:92:45:c2:97:47:5f:c9:e9:80:
4f:b3:f9:d7:2d:d0:92:94:32:b5:80:be:10:b9:e1:b4:d0:da:
bc:59:96:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 22:37:13 2024 by rpki-client on console-ams.rpki-client.org