Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/ae322439-8d21-418e-aecb-d1ef1e317dbe.roa
File: ae322439-8d21-418e-aecb-d1ef1e317dbe.roa (raw, json)
Hash identifier: ThKEq14o6YapkH6pnbHq6Vm7MR6disOhCKztExZqJLo=
Subject key identifier: 80:90:16:2A:28:BB:6B:00:F8:AE:76:DA:BA:96:F3:CB:95:85:56:C5
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 567BDB060EE98235FF2070057DA75665C84C41F5
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/ae322439-8d21-418e-aecb-d1ef1e317dbe.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 80.203.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:7b:db:06:0e:e9:82:35:ff:20:70:05:7d:a7:56:65:c8:4c:41:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=48aafa6db7e994bf45b39d74a474691eb4a80891e128a6621076aedd795709d6, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ff:5d:61:85:b5:ca:52:21:59:06:dd:bb:6d:
69:4e:b8:25:3c:34:d4:a0:df:f5:4a:f4:6c:cd:7b:
9c:cf:35:07:16:db:24:34:5c:1d:99:e6:00:b1:8f:
c1:7d:2d:a8:02:7b:a0:69:20:be:25:f6:9c:db:49:
07:2e:6a:fb:e0:fd:bc:bc:63:ac:91:24:d7:84:9f:
04:8d:75:5a:c4:77:97:56:2a:6e:e0:f6:88:b5:fc:
6f:a9:5b:0b:01:f1:12:b5:61:eb:0d:4c:2f:3e:0d:
05:64:c4:b7:7d:2c:5e:35:b9:6d:71:73:92:2c:13:
4c:90:0b:60:b0:39:9a:1a:05:ef:e0:c1:c7:98:c2:
16:8b:76:f8:d7:16:74:e8:c3:1c:f8:b9:2c:28:2f:
24:db:b8:8f:99:7b:cb:6e:92:7f:3a:3d:64:80:a9:
0d:8d:cf:73:8d:2f:ef:51:3d:2c:2e:e1:32:04:11:
9c:6b:4e:f4:c5:cb:04:86:02:4e:6c:98:c5:8f:16:
2e:2f:85:1f:01:02:01:8a:5a:00:51:f3:ef:ed:59:
98:19:04:7e:a8:56:4e:b7:b9:a4:37:9f:5e:82:52:
55:80:78:3b:7c:f1:8b:d5:cd:31:ad:e7:fa:6d:7f:
57:01:17:dd:b6:47:3a:fc:bc:82:6c:2c:58:e6:5b:
e0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:90:16:2A:28:BB:6B:00:F8:AE:76:DA:BA:96:F3:CB:95:85:56:C5
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/ae322439-8d21-418e-aecb-d1ef1e317dbe.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.203.128.0/17
Signature Algorithm: sha256WithRSAEncryption
7a:a0:81:06:64:e4:0d:8a:d6:64:05:4b:96:8a:2e:7b:2d:7d:
e1:67:e9:8c:46:f1:77:be:53:2a:66:c1:9c:b4:68:5c:ea:b7:
2e:b0:30:18:29:63:f9:c4:e3:08:cf:0c:0b:3c:ef:c8:78:c3:
55:67:54:1d:8d:15:b5:38:7c:46:25:55:8f:52:72:0c:9e:69:
50:b8:9a:e2:fb:35:6a:85:d3:88:b3:98:b9:1d:70:41:48:fb:
3c:76:06:f3:bf:00:4c:9e:e7:c0:5f:ad:7b:63:ea:18:5c:b6:
8b:10:c7:4e:2d:55:a3:e1:0a:fe:e5:89:a2:6a:18:66:8a:f9:
08:75:ac:35:d0:14:c6:8a:15:01:17:78:f2:4d:ed:cd:9c:6a:
58:63:77:db:d9:f9:65:dc:80:30:44:16:2d:71:84:d3:29:1d:
6f:1b:93:77:78:ae:34:70:d5:f6:55:0b:69:80:68:5e:55:73:
5b:1d:44:53:0b:43:0c:aa:5c:95:9b:83:a9:fb:b7:fd:c2:01:
32:a2:2d:57:04:88:82:72:4e:68:65:1b:3d:f7:d9:da:2b:f7:
51:05:3e:1d:47:93:7d:4e:16:2d:f8:36:9a:88:9a:ab:a0:39:
46:8b:ee:3a:9f:45:ab:e2:f4:f0:e7:cd:06:bd:09:75:b6:00:
ec:4a:d8:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org