Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
File: f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa (raw, json)
Hash identifier: YU+tk1jMLJcDV6wZPqR3minM3OuummQIUQwnnAAbPHA=
Subject key identifier: 8F:2B:E8:C0:AA:41:21:F3:BD:44:32:52:49:2B:61:19:74:BA:A9:4D
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2B1872ABFE2D9CF18116B190B5E90F6773D4DFCB
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
Signing time: Mon 03 Jun 2024 00:00:00 +0000
ROA not before: Mon 03 Jun 2024 00:00:00 +0000
ROA not after: Mon 08 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.80.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:18:72:ab:fe:2d:9c:f1:81:16:b1:90:b5:e9:0f:67:73:d4:df:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 3 00:00:00 2024 GMT
Not After : Jul 8 23:59:59 2024 GMT
Subject: serialNumber=4e9b47bc534cf7c5b648634a4bea07a0938c5df2ed434b256800a447b4712aac, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a7:48:b0:7a:ab:0f:19:bb:6b:49:d2:c1:bb:
a5:b9:bb:fb:2e:85:24:38:03:4e:bb:e1:2f:cb:84:
05:62:65:a4:61:3b:38:8e:16:d7:d2:d3:54:44:13:
ff:2c:bc:5a:44:f4:65:24:b1:d2:7b:06:e9:28:ec:
69:bf:a2:8a:a8:d8:6e:ca:79:71:1a:dd:aa:d1:dc:
39:05:9b:15:d0:8e:f6:53:53:1f:e2:71:d1:e6:87:
b6:47:48:45:d6:21:4a:8f:c4:13:79:6f:28:61:58:
53:c7:03:5e:d5:b7:f6:37:e4:c9:5a:81:7a:92:1d:
e4:dd:aa:6f:9a:ec:6f:15:76:ad:ea:eb:49:db:a1:
6e:cf:1e:aa:c7:b9:2b:4a:6d:87:10:1f:db:40:0c:
f9:e9:fe:f4:00:cc:94:e3:5a:9e:f2:bc:b2:62:ef:
73:07:a5:6a:e3:8f:90:e8:f3:40:29:cb:70:9d:22:
de:cb:b8:32:76:9c:c9:9d:00:86:a6:0d:7a:c2:8c:
0d:d8:2a:37:a8:4d:e8:c3:98:c1:eb:ce:c2:6f:ff:
d5:95:a1:e1:df:e9:71:3b:14:e0:45:52:f0:ba:5a:
81:55:83:b7:08:ad:26:7f:52:c8:b5:bf:51:9b:c6:
48:56:47:9b:dc:01:b5:3a:f3:2b:7d:6e:af:18:37:
1b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:2B:E8:C0:AA:41:21:F3:BD:44:32:52:49:2B:61:19:74:BA:A9:4D
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.80.0/21
Signature Algorithm: sha256WithRSAEncryption
be:44:66:f3:66:5d:d0:46:d4:9a:a5:bc:69:bc:bf:9f:83:14:
3f:b0:3e:5f:8d:7a:59:76:81:25:f2:4c:b2:15:fe:14:0a:3e:
69:df:bb:6f:cf:f7:9f:04:20:30:02:59:18:5b:b6:e8:a7:fd:
43:9f:11:94:85:93:72:85:0d:b4:b7:5e:eb:34:8d:70:78:33:
d4:c3:1a:a2:6f:0e:b2:a8:71:35:97:e5:84:5f:01:61:ec:29:
19:cc:98:ed:e9:e4:8f:73:64:96:25:97:12:3a:3c:52:b2:1b:
28:ac:97:db:df:5b:fd:b6:fa:99:ed:1d:b3:ca:f7:b9:9e:37:
c5:97:f3:17:ba:fc:5f:e3:b2:af:d6:2c:30:66:a6:ab:a6:ed:
69:de:c1:b2:3c:c3:1f:f5:73:c3:d3:d9:4f:aa:dc:7a:0e:e2:
aa:2c:56:2a:14:35:25:ee:72:ff:8c:4d:90:11:f7:fd:58:eb:
68:a4:c8:85:3c:7f:1d:3b:f1:4f:83:d8:1a:a0:82:b9:2e:00:
2b:8f:d2:23:2e:03:05:f8:3a:6d:fc:58:26:51:33:1c:70:fa:
5c:09:b6:50:82:1c:b1:ec:e3:b7:5a:01:5d:84:b2:a9:c0:c0:
69:60:14:8e:5b:9c:ea:8e:ac:07:d4:b0:76:bb:7a:41:ff:20:
1b:ab:78:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:43 2024 by rpki-client on console-fra.rpki-client.org