Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e18ba74d-e46b-4bdc-ada9-e9a9072e0625.roa
File: e18ba74d-e46b-4bdc-ada9-e9a9072e0625.roa (raw, json)
Hash identifier: HmUDsfI+fFP+DNyZ5DBFDKGG/9vuwKFUZQYVnFFsJVE=
Subject key identifier: 58:B1:68:FD:3B:2A:8A:23:E3:9A:27:E0:A3:C4:96:15:F2:E8:E1:B1
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6585E24F60FDDA6E7D2F16CA846C572CD3E953FA
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e18ba74d-e46b-4bdc-ada9-e9a9072e0625.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 83.116.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:85:e2:4f:60:fd:da:6e:7d:2f:16:ca:84:6c:57:2c:d3:e9:53:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=31e27409ea7061ee9f984526c5d3215da2fb3ee9953e7f16b2ecb0db62261366, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:fb:d4:48:d7:de:19:d7:f7:2d:e1:45:33:
20:d5:bf:c8:86:78:b7:54:c1:17:e3:00:6b:1b:59:
93:2f:81:ba:4b:94:f1:c9:74:37:58:64:80:19:76:
e7:76:09:2f:2e:c2:07:f3:51:b2:b1:3a:00:0c:93:
9e:72:e2:f6:1a:d8:5a:42:a0:51:5c:57:be:73:04:
22:7b:f1:88:11:53:9a:eb:59:66:ef:5e:62:a7:58:
0b:a3:d4:33:bd:68:91:e2:fe:11:15:fb:bb:62:d1:
a6:7c:3d:cd:97:b3:28:8a:fd:e4:fe:5f:c4:6c:14:
88:93:70:78:d4:d0:c2:ec:ac:f3:18:5a:57:f2:fb:
52:bb:02:88:a0:96:f2:7c:66:56:50:7e:a6:9f:d0:
a3:88:78:e4:36:89:d1:03:f4:a2:1e:41:4f:9c:05:
5f:ac:d5:7d:56:8b:6d:78:92:31:f8:86:69:fa:f3:
d5:b5:c7:7f:91:b6:1c:62:41:f2:fa:c5:af:6c:69:
3f:4c:2a:cf:54:b1:68:de:ce:00:3e:b2:d3:13:e5:
e2:c0:f5:1b:ed:ee:68:77:c3:99:63:6c:c0:09:39:
da:90:c7:9e:f0:c2:d8:2c:d7:f8:ba:47:f1:aa:eb:
40:94:29:9e:50:54:3b:70:e0:aa:c3:63:e8:94:49:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B1:68:FD:3B:2A:8A:23:E3:9A:27:E0:A3:C4:96:15:F2:E8:E1:B1
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e18ba74d-e46b-4bdc-ada9-e9a9072e0625.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.116.0.0/15
Signature Algorithm: sha256WithRSAEncryption
22:59:d9:e6:5f:b8:d5:45:a4:8b:78:4e:d0:8f:04:12:c4:b3:
f1:f9:e4:56:89:75:2e:dd:d9:2a:6d:ae:34:b2:39:13:8b:0b:
5b:09:58:f5:f1:fe:bd:47:c0:09:41:22:22:7a:e3:dd:c0:fb:
43:17:f9:12:4a:f6:45:f4:2c:d9:a9:57:25:b7:52:4a:30:a9:
89:6b:77:68:1d:9b:dc:bb:48:09:6c:3a:a8:e6:73:b8:c3:88:
2a:56:fb:06:72:1b:2f:f2:97:f6:15:f4:b0:15:87:42:ce:48:
4e:c8:81:77:44:92:82:dc:a6:27:b4:a4:0e:d4:12:e8:7b:a2:
e1:ae:48:01:10:77:cd:e2:d1:fe:3f:5a:3a:de:83:e2:79:78:
cb:51:8d:61:2e:c1:ca:64:67:93:70:c2:01:cf:9f:01:92:9b:
e9:63:7b:d3:fb:c3:a7:95:1c:85:da:da:4f:5a:26:73:d3:dd:
66:4e:6c:bc:eb:dc:7e:93:a8:56:f5:cd:bd:d1:c9:5e:ac:81:
ab:5f:73:3f:86:1c:5c:19:05:40:b3:74:73:f0:8e:86:87:17:
54:c0:5a:c7:ae:d7:70:f8:ea:44:e4:7e:26:81:1d:6c:9d:5d:
70:ee:8c:55:58:12:08:5d:90:5b:a0:e1:a4:88:d7:3c:23:b8:
31:ea:1c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:40 2024 by rpki-client on console-ams.rpki-client.org