Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24bf98f1-8ee0-4c43-b78c-44132a94c1a5.roa
File: 24bf98f1-8ee0-4c43-b78c-44132a94c1a5.roa (raw, json)
Hash identifier: Q18O4Gt73h1iav+3F+JILCla7qdOobNWzkbUNKe183w=
Subject key identifier: 7D:D1:74:CE:F6:9A:03:0C:92:DF:3F:75:CC:4B:A9:59:E1:3B:1A:9A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 74E5D9EDC653DF1F975D1BEE642B467A5CDCCD99
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24bf98f1-8ee0-4c43-b78c-44132a94c1a5.roa
Signing time: Wed 29 May 2024 00:00:00 +0000
ROA not before: Wed 29 May 2024 00:00:00 +0000
ROA not after: Wed 03 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d076:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:e5:d9:ed:c6:53:df:1f:97:5d:1b:ee:64:2b:46:7a:5c:dc:cd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 29 00:00:00 2024 GMT
Not After : Jul 3 23:59:59 2024 GMT
Subject: serialNumber=092376a18bcab560c3b7bd5ca37bba2a60b5f6d891cb637b1947ccafb6e77e49, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1e:3c:c6:96:c3:9e:f3:41:9e:2e:40:57:16:
0c:5c:e1:57:28:67:28:ca:b4:18:68:85:45:df:ab:
c5:c9:ca:f8:f7:48:60:7a:29:b3:b9:de:c8:63:ba:
d1:56:78:a6:b0:52:bd:73:04:a8:df:75:63:11:72:
24:3c:43:45:82:34:cd:74:9d:a0:94:4c:ca:2a:44:
1b:27:2c:17:b0:21:16:86:94:49:25:17:d8:bb:31:
ce:0e:bc:e4:0d:b2:dc:39:c4:3d:f8:67:9b:2e:50:
b4:6d:67:16:dc:e2:1b:ee:cb:c6:5d:a7:af:60:61:
17:52:a6:f3:b5:7f:cd:b8:de:87:d2:31:6a:52:f2:
91:20:79:ce:b5:5d:10:c2:d4:29:00:9f:a0:1d:e9:
ac:0f:bc:4b:8b:cc:b6:99:05:f7:1b:f5:c5:82:14:
72:7b:67:24:1f:08:0a:ac:32:60:a9:d2:94:b3:47:
92:77:0f:93:b3:86:82:e8:53:6b:1e:32:f2:5b:fd:
bb:b8:73:50:90:26:f5:60:44:25:ab:c2:88:34:f7:
9e:1a:fc:48:1b:85:f0:75:bb:a5:1f:c8:ca:43:e7:
82:0e:55:3e:06:83:9a:23:3b:f5:fe:51:55:03:15:
e5:f3:32:d0:c9:e0:6d:5d:6e:af:b1:0d:1d:1f:2b:
09:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D1:74:CE:F6:9A:03:0C:92:DF:3F:75:CC:4B:A9:59:E1:3B:1A:9A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24bf98f1-8ee0-4c43-b78c-44132a94c1a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d076:5000::/40
Signature Algorithm: sha256WithRSAEncryption
3c:00:bb:8b:6d:e1:44:67:b2:9f:a2:7a:f1:6b:4e:93:71:3c:
cb:c6:4e:80:de:b1:74:da:08:81:0b:ff:90:f8:1d:71:05:13:
00:4b:d3:e4:59:df:94:d1:d2:ab:9d:aa:e8:ca:aa:8f:dd:7b:
3d:c4:7d:cd:50:85:99:ba:47:64:c8:20:1c:8d:e8:ee:b2:32:
89:a6:c8:2b:4c:c5:f7:89:33:44:ad:f1:43:a6:a4:7c:36:e1:
1c:41:34:d8:00:9b:02:8e:5c:7a:94:f1:f5:bf:ea:28:25:cf:
05:42:bc:04:e5:60:a8:76:fd:20:fa:05:5e:95:1a:b9:36:e4:
74:32:78:46:72:56:5f:58:53:85:c8:d9:a1:c9:d6:f3:d5:83:
57:20:30:7d:87:c3:84:57:77:27:f5:72:61:d3:b3:dc:c3:66:
d0:66:5c:53:3a:d1:50:21:19:92:87:e7:a2:51:df:27:31:5d:
38:2f:ea:5f:2a:b7:38:b2:5a:ea:e2:2f:3b:8b:40:7c:1d:67:
5e:b2:2a:82:ab:fb:1d:c2:b5:fb:24:e0:57:ab:bd:e1:a7:74:
b3:2c:14:32:e3:cf:2f:a0:b5:19:71:e7:14:a5:6d:6f:28:ab:
ed:40:70:7c:49:08:52:68:34:d7:3c:8e:fd:3f:4f:0e:07:c8:
d0:20:b0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 01:38:07 2024 by rpki-client on console-ams.rpki-client.org