Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
File: e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa (raw, json)
Hash identifier: gCprJZfYDycXv9op3ITvEzKb4OvFuR6FxOXhdru6CJI=
Subject key identifier: F9:02:2D:0B:F7:3F:29:02:F9:C5:D7:99:39:78:BA:1C:1F:2A:3E:FF
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 7110E0EC651F235A9EF0D171B80D131E1DDDF4B8
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 16509
IP address blocks: 193.57.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:10:e0:ec:65:1f:23:5a:9e:f0:d1:71:b8:0d:13:1e:1d:dd:f4:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=0e3ff099ff7e5df5bd1c9ade1200037262c4a63ddfc2153c29706967b32221be, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1b:39:a7:89:05:45:de:d4:49:28:42:7f:96:
02:25:63:b5:ef:64:00:ba:c9:3e:74:1f:e1:20:49:
b2:8b:30:4e:b0:1e:7d:34:a9:25:f0:c2:b2:53:78:
d4:d3:05:bb:36:cf:e8:ff:ec:f1:84:36:1e:e3:50:
a5:32:9d:11:43:e1:f0:bc:a1:e4:5e:b6:69:63:83:
25:87:66:ef:f5:d9:10:fc:bf:6c:92:c4:3c:a5:78:
ae:42:ff:53:52:27:2a:ba:4f:9e:02:aa:04:11:15:
58:57:78:51:65:81:81:87:f7:1a:1a:b8:d1:ac:8f:
e5:80:06:ac:98:21:68:a2:d8:49:ab:78:d5:b2:0a:
db:1b:8e:b7:c0:e4:f8:64:fd:62:0d:fc:97:54:29:
51:7d:53:eb:5d:a3:b7:86:1e:0b:81:b3:d2:d3:87:
d8:41:28:f3:02:aa:b0:55:42:e9:eb:6e:a1:c1:47:
34:d0:54:02:f6:79:6a:d0:8a:76:1e:0c:9b:71:75:
0f:43:d4:0c:87:fd:a0:41:34:22:e8:33:92:22:c2:
2d:e2:b1:8d:ad:7a:15:e8:a4:0a:90:aa:d1:4f:4e:
d5:1f:a7:24:a2:d3:a1:e6:8c:59:ee:d1:e5:bd:77:
22:a9:5d:c2:ae:14:43:b4:2a:c2:a5:ca:c3:58:bb:
d4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:02:2D:0B:F7:3F:29:02:F9:C5:D7:99:39:78:BA:1C:1F:2A:3E:FF
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.181.0/24
Signature Algorithm: sha256WithRSAEncryption
94:7e:f9:2e:e2:96:f5:5d:16:20:1d:29:0e:1e:7c:01:84:70:
7e:62:c9:ec:93:52:fa:a9:92:81:7a:e8:71:24:cc:f2:14:cf:
2a:c8:6c:4a:4e:2c:a0:99:cc:b4:e9:48:26:20:3b:75:fa:f5:
a8:13:65:e5:e7:fa:c9:fb:07:f2:af:5b:54:3a:96:a0:4a:9b:
e3:13:27:10:45:2c:31:1e:4f:a7:c9:ad:ee:97:af:c1:2e:5e:
29:53:47:4a:5b:e7:9e:e4:b4:ee:ba:1f:cc:a9:3c:61:d6:12:
a1:7b:b9:97:6d:4d:74:14:f1:18:07:f2:3e:af:80:75:a3:56:
b3:3a:14:c5:22:9b:23:29:48:48:35:b5:25:e0:82:25:8b:d2:
4b:b5:b5:ee:81:3d:52:ff:4b:66:76:aa:b5:d9:aa:21:85:6d:
63:44:8d:61:5d:05:06:45:55:9c:85:a4:bb:25:bd:54:31:8d:
b0:b5:ed:19:c6:9e:84:5c:7e:38:b3:b9:39:01:ca:72:eb:cd:
aa:56:df:55:00:b3:be:39:f3:d4:ed:c3:6a:ae:ca:80:41:03:
45:5b:bc:c1:7d:12:a0:84:15:0a:d8:c5:cc:58:81:cb:b6:d6:
07:ca:27:a2:72:c0:ce:46:cc:f2:d0:2e:ac:a5:39:a0:22:79:
d0:73:e7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:40 2024 by rpki-client on console-ams.rpki-client.org