Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a2d10e7d-a784-476d-9df5-f7efeb55cf39.roa
File: a2d10e7d-a784-476d-9df5-f7efeb55cf39.roa (raw, json)
Hash identifier: yMhlVRETn/dkxb7I/BHHNEWZ9TQGY9AgXAouB30oTRQ=
Subject key identifier: 40:0A:46:7E:4A:1A:D4:3E:C4:5F:CA:8E:41:BF:A7:E8:BE:97:CD:20
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 65DCA70927A4896C5709515D85D176E7C71C20F6
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a2d10e7d-a784-476d-9df5-f7efeb55cf39.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.206.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:dc:a7:09:27:a4:89:6c:57:09:51:5d:85:d1:76:e7:c7:1c:20:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=45bf47170204fb41f04819abfbe556640c7642dbc1401124e2e491e1d94601b8, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:bb:6c:e7:ef:eb:e1:a1:79:f0:42:93:d3:
d1:bf:42:ba:43:31:61:22:34:e4:09:60:70:48:61:
4e:81:bb:bb:44:11:c5:d6:68:91:c1:c8:79:8b:29:
4c:5b:2c:66:82:78:69:75:d3:06:92:4a:f8:be:b2:
bb:ab:f1:c8:94:aa:35:88:f2:97:ab:29:1b:fd:9a:
7c:76:0c:55:d6:2a:64:ab:49:98:cd:84:67:8b:ab:
f3:36:4b:71:ca:a0:80:95:c5:6f:c4:20:c6:cd:38:
38:ec:f4:ef:8c:2c:55:6c:67:b6:47:c1:16:6f:02:
1d:75:7f:bb:c0:eb:33:c6:ba:38:c4:cc:45:d6:28:
1a:4a:f0:84:59:7c:ae:e1:eb:20:d1:3b:d7:0c:29:
d0:92:22:76:42:96:de:73:5d:02:6b:b6:9c:96:90:
08:70:bd:79:b5:fe:8e:2c:b6:d3:3d:9f:00:85:e0:
1b:26:92:fa:b1:88:12:08:ca:48:79:9d:ed:30:33:
ba:4c:6a:a3:57:c6:e6:23:f4:5c:36:4f:79:87:ea:
b4:da:4f:9c:e4:22:0e:f7:84:f2:8e:5a:8c:fb:63:
e6:c5:c5:48:5b:49:33:7a:7b:d6:e2:6b:28:00:60:
19:bf:5f:88:c2:bb:d7:a6:0a:a3:a4:70:b5:db:5f:
d4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0A:46:7E:4A:1A:D4:3E:C4:5F:CA:8E:41:BF:A7:E8:BE:97:CD:20
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a2d10e7d-a784-476d-9df5-f7efeb55cf39.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.206.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9f:81:5c:a9:75:43:7c:c6:ab:82:fb:b7:74:b9:65:9a:e7:b3:
96:f2:4f:af:26:e0:7b:48:d9:e7:5a:5f:f1:2f:a0:c0:a0:7a:
af:2f:fb:00:12:ec:15:b7:f4:a8:59:f4:3f:0e:2c:d4:b1:0e:
97:b8:09:97:62:45:44:4b:cd:f7:09:f6:b2:44:43:52:9c:a5:
db:da:40:e2:32:f8:43:e5:d1:ba:29:fa:d9:6d:f5:10:c3:eb:
05:46:17:0b:64:95:16:d2:5e:dc:6b:9c:2e:e8:c7:a9:f5:e3:
11:55:3b:53:78:78:c3:ef:67:df:94:f4:d7:17:ed:fb:30:93:
79:12:13:6b:b2:78:8e:91:91:18:de:6c:0e:ca:02:61:1f:45:
21:ce:1d:ec:06:26:e9:49:33:93:cb:57:e8:b0:af:4d:19:29:
de:8f:e1:f9:47:07:38:04:8a:4c:3b:5c:e0:f1:83:fe:b3:1e:
2a:5d:b0:8d:ce:82:c8:03:a4:d6:93:a2:4d:60:09:e1:09:89:
5b:a1:7a:35:41:0d:f2:c7:a8:e6:3d:c8:a5:1b:7f:f1:ed:32:
2a:a4:2c:95:5d:f6:a3:e6:e1:0b:1b:12:50:74:25:82:39:0a:
1b:be:b0:b1:d9:6e:86:88:0b:f9:f1:c3:7f:ed:fd:3c:36:31:
9e:25:b1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org