Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9ebfa348-5910-4667-b4db-cfb5bb3acbc8.roa
File: 9ebfa348-5910-4667-b4db-cfb5bb3acbc8.roa (raw, json)
Hash identifier: j72/togXxyVR08UKSomSGxepStKpAsXRclxZvt+By+M=
Subject key identifier: 46:49:D9:2E:05:9E:BA:14:FB:B5:63:27:92:74:EA:0F:2D:3B:1D:5F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 1F5DF4B43F7FEF5399BE3C7EEFDF9684CE7B4FC1
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9ebfa348-5910-4667-b4db-cfb5bb3acbc8.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.188.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:5d:f4:b4:3f:7f:ef:53:99:be:3c:7e:ef:df:96:84:ce:7b:4f:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=eba9fc69804541d125ae5cfb79de421b3472ec0b292c7b7bf455f55bfd6d0bf2, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:98:a9:8b:67:5a:5f:5b:09:de:8f:f1:34:75:
b7:9a:ba:14:de:f2:c8:f6:62:65:2b:51:d9:10:77:
f2:84:a8:96:b6:6a:6f:58:f0:e0:1b:d9:eb:ee:9a:
1b:ae:7b:4a:9c:a7:75:4b:82:db:ce:c8:e9:d0:7b:
f5:46:9d:b8:d2:7f:7d:28:44:dd:ed:57:92:34:aa:
dc:d9:52:ba:44:a0:27:9b:53:c1:ce:32:18:c6:38:
43:70:c1:13:aa:e9:64:5b:05:16:52:78:6b:85:df:
5d:69:8d:20:d3:2b:50:79:14:51:ec:32:50:c6:c8:
64:80:ba:1e:30:43:b2:28:c7:c3:d5:34:95:ca:56:
15:e3:85:e0:ec:70:15:fc:40:d2:be:9c:54:36:56:
bf:70:f7:3c:51:01:01:80:41:f8:67:f6:6f:fd:14:
40:17:20:38:3a:e2:c7:6b:3b:01:01:33:f6:2e:ca:
5a:38:9a:55:52:25:62:ee:11:3b:07:75:14:c5:cd:
06:9c:14:10:7f:00:da:be:18:50:a3:57:ac:cb:2b:
97:21:22:67:7e:0b:d8:e5:88:5a:e2:88:a7:e7:a4:
60:fd:ef:86:18:dd:30:54:97:67:f6:2a:4e:58:26:
bb:99:dc:9f:74:f1:fd:2b:40:13:af:29:e1:e2:4c:
72:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:49:D9:2E:05:9E:BA:14:FB:B5:63:27:92:74:EA:0F:2D:3B:1D:5F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9ebfa348-5910-4667-b4db-cfb5bb3acbc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.188.0.0/15
Signature Algorithm: sha256WithRSAEncryption
5d:c5:54:83:6c:7a:28:3c:55:89:13:65:c8:cd:14:fa:0a:bc:
be:dc:21:32:52:ad:a8:00:9e:77:fc:6b:d3:ba:3c:83:bc:06:
46:29:72:5e:11:2c:32:b2:ad:5f:6f:28:b2:fe:3b:bb:b9:d9:
2b:65:04:2f:fa:92:c2:e8:df:05:da:f1:c6:df:ce:dd:2b:03:
4f:ea:d3:fd:74:20:5d:ac:8c:b6:57:2a:73:e4:f3:26:32:7f:
8c:11:1e:d3:ed:52:d4:ba:ea:f8:60:62:2f:d5:79:96:bf:39:
0a:12:2b:cf:a1:21:c6:b9:a9:33:58:36:7b:c7:0b:67:37:0e:
6a:22:d4:37:63:e1:3c:a1:75:8f:02:58:74:1b:bb:32:0b:27:
4d:94:4f:f2:52:4e:ec:e2:63:aa:93:86:0c:e2:d1:44:fc:a2:
03:f8:69:41:61:0c:d3:dc:f1:fe:13:b2:0a:99:80:f4:f2:58:
09:8c:4b:a4:91:8b:12:45:7d:01:f8:de:fb:a0:3e:ea:d3:43:
f9:34:ff:b8:b0:72:9c:29:9c:3f:a2:b1:da:bf:d1:46:8e:8c:
ec:99:17:c3:b2:76:74:8c:ee:cf:2f:27:1e:61:fb:3c:a5:e4:
08:a7:a9:82:4b:39:b9:2f:b6:c7:11:63:87:11:6f:a6:8a:c3:
9d:dc:ec:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org