Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/cd3318b5-2879-4be5-ab89-dd65461ef6fe.roa
File: cd3318b5-2879-4be5-ab89-dd65461ef6fe.roa (raw, json)
Hash identifier: obUR9aVZw3aJERjWjqtQZ4J4gnbrbl9IxMgA9ciTt/I=
Subject key identifier: 2C:8C:97:B4:B5:38:F4:B8:9C:B8:4B:FB:C2:98:55:33:7F:58:17:21
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6175647C6CC35239A40E431CCCA6E21CBEF7524B
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/cd3318b5-2879-4be5-ab89-dd65461ef6fe.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 8987
IP address blocks: 51.204.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:75:64:7c:6c:c3:52:39:a4:0e:43:1c:cc:a6:e2:1c:be:f7:52:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=e6d967c6898b71137e2d4a70a42ff9de6cdf77de058fd77f03376f5498d62690, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:f1:15:68:a5:8a:82:09:f8:9c:69:06:10:
fd:f7:f5:17:59:2f:4b:75:ac:4d:48:6e:a4:14:fa:
d3:9c:61:95:9e:6c:35:95:4c:1d:67:cc:47:64:ec:
4a:c8:ae:3f:d8:b9:7a:fd:8a:c9:b5:c8:02:d4:cc:
1d:99:a3:07:25:82:1f:8f:3c:67:9f:a4:8a:0e:a9:
e9:1d:1e:01:0d:c9:c2:47:b7:b6:48:77:67:a2:44:
73:64:16:83:91:eb:ee:ba:5b:b5:e9:a0:98:0b:e6:
ab:83:54:6d:d5:ea:64:51:7e:61:b7:a8:70:86:3d:
ea:24:5d:4b:fe:25:16:2c:23:21:6c:cc:75:10:c6:
c8:f4:96:de:7a:16:a8:8c:63:8a:c6:05:5a:4f:bd:
d1:0d:4c:4b:26:2a:fa:65:45:6a:51:12:66:88:58:
92:00:77:e8:fd:4b:c8:5d:de:42:8d:79:05:f1:fd:
15:66:3c:92:2a:e9:35:0e:99:c8:b4:68:31:42:bc:
73:64:b7:fa:4f:21:4b:a8:b6:f1:88:29:80:d4:87:
f6:5e:23:67:bb:98:e1:ef:50:8c:65:8e:d3:4b:fc:
43:5e:4a:89:e8:b9:a4:ff:b8:9a:33:f0:68:b6:bb:
09:d9:9b:a1:f1:49:49:35:cc:2e:0e:0a:6d:f0:61:
ce:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8C:97:B4:B5:38:F4:B8:9C:B8:4B:FB:C2:98:55:33:7F:58:17:21
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/cd3318b5-2879-4be5-ab89-dd65461ef6fe.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.204.0.0/15
Signature Algorithm: sha256WithRSAEncryption
81:92:20:d9:47:be:95:a7:54:10:f6:95:19:41:8b:a2:af:c7:
43:84:9a:92:10:f1:17:4f:b1:b2:ae:23:24:2c:24:20:49:fd:
38:2e:0a:d1:84:a5:83:19:8f:9a:02:ba:21:e4:5b:ca:65:f3:
6d:eb:d9:a7:83:85:b6:21:4f:42:d2:e9:c2:54:59:24:bc:6e:
9e:85:d5:11:65:6b:8b:9a:28:44:a6:1f:59:77:d6:2c:eb:00:
ab:fb:5c:49:3e:d2:ad:4c:0f:90:b3:15:71:76:3b:1b:04:09:
66:fc:4b:45:62:f3:1b:eb:8b:4f:ec:c7:88:29:eb:27:d1:cb:
3c:d4:98:a9:fe:3f:ff:d7:e4:71:43:50:e2:ff:c6:65:3a:c1:
67:bc:95:40:e0:45:f7:49:31:01:63:28:cc:e2:9a:48:7f:6d:
7d:4f:48:55:4e:7c:0e:b3:bc:22:1e:26:b4:2e:55:8c:44:9a:
c6:f7:79:35:2d:a5:8a:e6:76:e7:7c:c8:d3:eb:32:04:7a:ac:
ee:ee:d2:a5:4a:61:a3:b6:8e:b6:64:05:4c:99:2e:06:73:03:
ae:b1:1a:f1:91:00:82:ae:06:da:f6:6d:44:ee:ee:63:a0:d0:
61:eb:ee:92:6e:b6:20:41:6e:25:ef:ae:a7:7a:b0:5a:cf:00:
4e:52:da:28
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgIUYXVkfGzDUjmkDkMczKbiHL73UkswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDA1MjEwMDAwMDBaFw0yNDA2MjUyMzU5NTlaMHoxSTBHBgNV
BAUTQGU2ZDk2N2M2ODk4YjcxMTM3ZTJkNGE3MGE0MmZmOWRlNmNkZjc3ZGUwNThm
ZDc3ZjAzMzc2ZjU0OThkNjI2OTAxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKbO8RVopYqCCficaQYQ/ff1F1kvS3WsTUhupBT605xhlZ5sNZVMHWfMR2Ts
SsiuP9i5ev2KybXIAtTMHZmjByWCH488Z5+kig6p6R0eAQ3Jwke3tkh3Z6JEc2QW
g5Hr7rpbtemgmAvmq4NUbdXqZFF+YbeocIY96iRdS/4lFiwjIWzMdRDGyPSW3noW
qIxjisYFWk+90Q1MSyYq+mVFalESZohYkgB36P1LyF3eQo15BfH9FWY8kirpNQ6Z
yLRoMUK8c2S3+k8hS6i28YgpgNSH9l4jZ7uY4e9QjGWO00v8Q15Kiei5pP+4mjPw
aLa7CdmbofFJSTXMLg4KbfBhzo8CAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQsjJe0
tTj0uJy4S/vCmFUzf1gXITAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
Y2QzMzE4YjUtMjg3OS00YmU1LWFiODktZGQ2NTQ2MWVmNmZlLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATPMMA0G
CSqGSIb3DQEBCwUAA4IBAQCBkiDZR76Vp1QQ9pUZQYuir8dDhJqSEPEXT7GyriMk
LCQgSf04LgrRhKWDGY+aAroh5FvKZfNt69mng4W2IU9C0unCVFkkvG6ehdURZWuL
mihEph9Zd9Ys6wCr+1xJPtKtTA+QsxVxdjsbBAlm/EtFYvMb64tP7MeIKesn0cs8
1Jip/j//1+RxQ1Di/8ZlOsFnvJVA4EX3STEBYyjM4ppIf219T0hVTnwOs7wiHia0
LlWMRJrG93k1LaWK5nbnfMjT6zIEeqzu7tKlSmGjto62ZAVMmS4GcwOusRrxkQCC
rgba9m1E7u5joNBh6+6SbrYgQW4l766nerBazwBOUtoo
-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:39 2024 by rpki-client on console-ams.rpki-client.org