Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
File: b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa (raw, json)
Hash identifier: 61cSSKx+Ecr4SoM/dP1epjBUyg0kIoP6FY5uMB74QRU=
Subject key identifier: 56:27:F6:79:85:6C:1B:06:CA:F6:A4:7D:70:91:27:73:68:FA:58:F6
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2072A003D1172A05C62573D2B24D400D782D5450
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
Signing time: Tue 28 May 2024 00:00:00 +0000
ROA not before: Tue 28 May 2024 00:00:00 +0000
ROA not after: Tue 02 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 139.79.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:72:a0:03:d1:17:2a:05:c6:25:73:d2:b2:4d:40:0d:78:2d:54:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 28 00:00:00 2024 GMT
Not After : Jul 2 23:59:59 2024 GMT
Subject: serialNumber=2579105d4dda3122c7415ca7f9e05fa73c0030f754114fe8603d3eb955edc16f, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ea:8c:6d:61:de:f6:91:62:e6:50:a1:92:44:
58:1c:d3:2c:15:e0:4a:02:e3:dc:b3:03:43:0d:4c:
b5:cb:cf:03:56:29:58:1d:0f:34:fe:02:57:6e:4d:
73:c7:cd:bb:67:56:38:a8:e5:54:17:54:80:2e:ce:
89:d9:60:ea:e6:95:5c:7e:a7:6d:e6:fb:29:bb:33:
7f:12:18:35:94:81:48:33:be:58:cd:ff:74:b9:c6:
fa:d6:ce:41:4d:bf:e8:b7:2c:5a:cc:0c:de:18:af:
21:ce:24:a1:9c:55:94:4b:71:5d:94:c9:e1:b7:aa:
bd:f3:80:3f:9c:0c:78:a1:0a:95:e1:31:cd:3c:9a:
d6:fb:55:7b:12:b6:b7:b0:4f:da:b3:ed:37:6c:d6:
fa:64:d6:8d:7f:6c:52:c3:dc:87:c9:5a:c4:22:38:
01:19:ec:0f:a6:bc:32:90:38:a4:9c:7a:40:49:5b:
ae:7b:8d:b2:51:4a:4b:e4:d3:98:a4:ea:77:60:57:
37:ba:f6:17:70:4e:42:7d:60:49:b5:05:9b:7c:81:
32:46:f9:99:d1:5d:29:8a:e4:fb:ed:4c:f5:bf:c2:
ca:bc:f8:15:bc:55:c3:0c:1c:e2:40:18:43:57:76:
79:f6:a1:c1:dc:c8:1c:54:a6:d4:6a:d3:ad:10:5a:
fa:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:27:F6:79:85:6C:1B:06:CA:F6:A4:7D:70:91:27:73:68:FA:58:F6
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c2:b4:9e:91:48:c0:de:dc:30:47:4b:36:62:89:4b:bc:2f:d5:
ed:3b:5b:62:de:3e:7d:ca:d7:6b:cd:0b:44:32:32:35:d5:d5:
a1:ba:bd:c6:58:96:ba:f0:63:00:99:67:09:04:2d:dc:c2:17:
3a:a8:3c:a1:ca:41:52:32:5d:f9:25:ed:c5:d2:48:3d:b0:4f:
c5:8a:75:5c:2e:2e:ec:61:89:e0:98:6e:3b:c6:b8:0e:45:cd:
93:ec:6a:dd:90:ca:19:98:4e:99:53:69:27:d1:de:33:5f:0d:
af:cd:c9:31:19:85:b5:fe:83:4d:f5:ac:e6:6b:83:70:6b:01:
86:0b:be:0d:2c:70:02:41:4d:a5:28:ee:fb:d3:9f:eb:7c:ac:
48:e1:78:ff:67:7d:ea:94:9c:c5:f0:69:bb:ec:41:04:cf:f1:
e1:ec:70:fe:aa:ad:c0:22:6b:3c:1c:14:90:52:0d:28:e0:67:
40:dc:0d:44:6a:30:94:a3:2a:69:a0:96:0e:bb:65:fd:10:8a:
91:03:6c:7f:85:5c:2c:9b:9a:e4:f5:84:4e:cb:78:8c:18:ac:
66:12:ff:4e:16:10:88:52:7f:be:c9:4a:09:98:3b:04:68:19:
0c:45:00:21:d9:50:78:cf:e5:87:77:e1:57:b7:04:1c:8d:82:
ca:98:34:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:42 2024 by rpki-client on console-fra.rpki-client.org