Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f7ff52a8-9cd5-4878-bf2f-18941574c9bd.roa
File: f7ff52a8-9cd5-4878-bf2f-18941574c9bd.roa (raw, json)
Hash identifier: duRjH+F59cdpKxp/Yh+woQPOy2Ityi6DrC17FihPn7g=
Subject key identifier: F0:48:C7:C5:82:F0:B8:91:3C:07:A0:23:F5:13:42:03:DE:3C:8B:FA
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 7034B7CB8EBDF65E9747F036CC9DAB24FC852924
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f7ff52a8-9cd5-4878-bf2f-18941574c9bd.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 8987
IP address blocks: 51.188.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:34:b7:cb:8e:bd:f6:5e:97:47:f0:36:cc:9d:ab:24:fc:85:29:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=2e6a8f32f3b91b584949d19a617eb211bbe6c94f8cc83cb8cd2cda73e4af23ea, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:f5:38:77:49:51:4d:92:c9:78:6a:13:4c:
1a:b6:ca:f4:84:ec:39:ba:1b:3d:8a:41:0b:9f:3e:
36:ba:02:a7:b9:1e:c3:5b:51:38:59:fe:31:96:fc:
5c:1f:19:c4:2f:b9:ed:ed:7c:8b:a1:ba:e9:06:d4:
ec:26:42:b1:74:a1:33:41:c1:65:46:f9:b7:08:28:
81:f2:74:9f:81:d7:20:1e:60:0f:cf:75:21:70:7d:
6a:57:29:d4:51:09:66:e0:45:b1:80:58:92:8d:d0:
22:fd:cc:75:a8:29:4b:8d:cc:67:08:18:38:ef:5f:
bd:54:d8:15:36:db:33:35:b0:2e:ed:8a:bb:72:4c:
d9:d4:ec:f2:4f:c1:83:a2:62:be:98:03:46:21:dd:
77:38:c3:f2:e7:c8:23:20:21:c5:a3:e2:eb:1f:67:
a5:94:c1:51:fe:38:13:06:d3:b4:c1:47:fb:62:47:
82:02:fa:3f:e3:ce:db:c8:a7:8c:1d:a5:4c:00:93:
2c:74:be:60:f9:28:41:76:da:e8:be:4f:6d:c1:60:
c9:be:69:f4:e0:7c:0e:f1:8e:d0:cc:d9:e2:f7:d7:
f3:d2:6e:71:43:52:d2:4f:17:9b:d3:d6:35:f1:e9:
d1:93:a5:cc:8a:55:a5:28:5b:6d:14:74:7e:d0:ab:
6e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:48:C7:C5:82:F0:B8:91:3C:07:A0:23:F5:13:42:03:DE:3C:8B:FA
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f7ff52a8-9cd5-4878-bf2f-18941574c9bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.188.0.0/15
Signature Algorithm: sha256WithRSAEncryption
bf:a5:f9:e5:68:ea:96:c1:75:b0:e0:7e:14:6b:3b:9e:f1:cf:
81:5f:cd:39:7a:cb:7a:a4:be:7e:3c:e0:4a:1b:67:69:71:8b:
06:ff:5a:27:77:5d:b1:cf:37:fb:11:e3:03:4e:a6:ab:98:44:
93:af:96:f1:17:fa:fb:9c:b4:9f:db:0b:cc:99:65:8c:50:24:
a4:65:ae:08:07:65:5f:6a:70:4c:b4:d9:ed:37:84:3c:1e:1d:
95:94:54:5a:5c:57:a1:f7:16:a2:60:56:1b:8e:ff:3e:11:9b:
2d:cb:0c:2e:41:e0:1f:11:b9:ed:b9:45:37:1b:04:13:02:11:
0c:f6:18:25:02:ec:91:52:2a:c5:cb:7d:1f:e9:34:c4:47:c4:
97:3d:9f:63:f0:0c:73:e4:c1:d6:79:48:48:a3:f6:5e:2d:74:
0f:af:1e:ec:b6:11:91:9b:27:30:1a:51:7a:58:a2:fe:82:e1:
e1:3c:f0:ba:28:55:c7:f7:c7:c3:e4:2a:6c:61:a3:7a:b6:79:
ad:dc:99:f4:78:18:fe:6b:56:55:a5:c1:e8:7d:f5:7b:10:c5:
19:5f:64:71:66:77:62:45:a0:b9:63:6b:7c:28:d9:d7:2e:89:
11:37:00:b8:da:e2:c5:3f:53:5b:08:2b:ae:46:3d:23:52:11:
f5:80:ce:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:43 2024 by rpki-client on console-fra.rpki-client.org