Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f9c2130f-6f88-42ac-853e-f39d188adb6d.roa
File: f9c2130f-6f88-42ac-853e-f39d188adb6d.roa (raw, json)
Hash identifier: HP107Z/MJ9KVfJs/B3v1xJERLLv0+lwlYSqCQ8BdBw0=
Subject key identifier: 6C:1A:B2:B1:2C:F4:D8:E6:06:4D:C1:44:5F:BE:7C:6C:D8:AE:48:20
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 4197F87C22174E16BF88C4B46C95ED94F38819BC
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f9c2130f-6f88-42ac-853e-f39d188adb6d.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.232.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Jun 2024 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:97:f8:7c:22:17:4e:16:bf:88:c4:b4:6c:95:ed:94:f3:88:19:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=91d982c0d45f771ea4f9398628daf12a239f38f7fb552f304793376254bb72a8, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4c:4f:c4:7b:38:9d:fc:c6:c7:45:36:7f:5b:
90:3a:c3:be:7e:9d:b0:a3:a6:ee:59:92:c4:04:38:
29:71:38:70:8c:9d:ea:96:b9:a4:c3:e3:92:56:ba:
f0:95:a1:f0:a3:69:ab:03:7f:bc:35:14:14:43:34:
0f:94:d4:73:6e:f2:0c:e7:b3:66:74:72:46:91:7e:
e5:12:b5:f8:d3:0c:8d:6e:ea:d6:db:ce:7f:27:dd:
a5:4d:a3:a3:e7:3c:70:8c:28:c3:0d:c9:85:97:77:
13:e4:ba:7f:0b:bf:aa:a6:e2:bd:a2:a1:a8:2a:1a:
1f:f8:e2:af:db:95:85:e4:cc:7e:d0:e9:fb:95:1e:
b9:bd:4a:a6:a8:75:7b:d4:29:8a:a7:f6:13:eb:8a:
6e:a1:cd:b1:53:1d:5c:7c:f9:44:6f:8d:27:7a:41:
62:bc:86:22:e1:6a:49:82:5c:68:32:13:33:a2:a3:
3e:c4:f5:a1:7d:8b:e0:d2:73:cf:41:78:c3:37:c4:
31:65:0e:99:f3:52:e7:a1:d1:b5:f4:2e:1f:c9:1d:
59:f3:43:dc:22:80:24:21:f3:03:52:44:b0:99:e4:
19:9f:14:ea:1b:b9:d8:f9:92:2f:74:d5:35:66:1b:
33:2a:04:cd:f2:4f:90:5e:0f:a9:b1:cf:71:a9:35:
a3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1A:B2:B1:2C:F4:D8:E6:06:4D:C1:44:5F:BE:7C:6C:D8:AE:48:20
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f9c2130f-6f88-42ac-853e-f39d188adb6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
71:a3:12:35:4c:10:4a:c1:03:a1:07:e5:c2:0a:8e:73:0f:96:
af:4b:e7:c3:2a:f0:94:24:e6:af:72:89:3b:37:94:fe:c8:98:
ee:a3:f1:0b:11:35:04:25:67:05:92:b9:3b:e3:d4:e1:0d:99:
da:00:fc:30:bf:b9:7f:6b:5e:50:f6:31:da:ff:c5:53:e3:54:
1e:07:65:5e:b9:54:5d:50:64:51:2c:7c:5a:a6:22:87:14:fb:
5e:93:0f:0c:54:3e:ab:a6:c1:57:2d:4a:a8:7f:78:2e:46:8f:
22:84:b4:bb:6d:ac:33:fd:f3:28:56:3f:d9:e3:00:2f:39:e3:
69:61:13:fc:88:6c:11:82:76:9f:e4:a8:04:25:69:e1:3b:b9:
99:3f:46:39:b4:d8:ee:a4:73:0d:b0:42:78:8d:7f:38:03:a6:
7e:a7:6f:68:8b:9b:25:bc:4c:08:0c:88:34:9b:aa:63:46:c4:
8c:9a:f1:35:52:c1:95:95:72:2f:7c:89:83:b1:68:96:9e:7c:
51:56:53:4b:4e:54:4d:91:23:39:b5:f6:aa:e6:a9:2c:d9:e7:
f6:7d:86:19:76:94:f5:4e:4d:48:0b:51:24:ef:41:41:6a:58:
30:56:31:0a:c3:80:58:15:e6:85:b5:9e:24:4c:b0:b9:01:75:
45:8b:44:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 17:32:40 2024 by rpki-client on console-ams.rpki-client.org