Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
File: 2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa (raw, json)
Hash identifier: IFpuZaMtU3/XIzCbPY33D5ENkwTar+fUwethnzf0d5c=
Subject key identifier: 33:FA:F8:98:6F:71:13:BA:30:FF:7E:A7:AD:F3:00:7B:14:B6:EE:14
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 287A74E6051AA2FEB28C2CE195C608992DCCE6CF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
Signing time: Mon 31 Mar 2025 20:31:55 +0000
ROA not before: Mon 31 Mar 2025 20:31:55 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:b000::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:7a:74:e6:05:1a:a2:fe:b2:8c:2c:e1:95:c6:08:99:2d:cc:e6:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:31:55 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:eb:28:b2:b9:76:12:79:a9:39:6a:a1:0a:
38:01:d3:76:80:ee:d9:60:17:27:fa:ad:75:12:26:
70:42:1a:db:d0:1b:f2:58:79:e0:49:be:46:14:e9:
dd:45:33:50:91:e0:e7:0a:48:ca:ca:1f:0e:3a:27:
91:09:03:2a:78:fa:74:7c:0f:d4:eb:d4:4f:06:df:
7c:15:b7:7c:68:6e:27:d0:50:12:03:91:72:1d:56:
f8:36:02:63:90:c6:78:84:35:e6:5f:59:b5:47:0f:
04:a0:16:4e:89:91:75:13:c8:f6:53:e8:6b:c6:99:
d1:e8:f9:60:1a:93:3b:cf:e2:03:a8:e5:b1:21:09:
d9:a5:22:a4:30:32:2f:1b:6b:c4:09:99:42:45:2d:
5c:26:4c:bf:a2:d2:36:a5:a8:10:a4:02:94:98:81:
4f:79:f8:70:17:b8:43:8d:01:99:ae:bb:a9:ef:f1:
f8:da:23:52:32:e0:55:1e:be:9b:15:19:99:fb:2e:
17:7b:09:d4:6c:e2:34:57:ef:75:fa:5e:67:b7:ec:
4c:93:6b:d8:93:78:63:2d:ff:7e:e2:f1:9f:ab:a8:
88:8c:9d:09:07:f4:db:af:53:88:d8:71:9a:47:88:
c1:06:08:9c:be:04:5e:73:28:ba:e8:15:fc:bb:5e:
5b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FA:F8:98:6F:71:13:BA:30:FF:7E:A7:AD:F3:00:7B:14:B6:EE:14
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:b000::/40
Signature Algorithm: sha256WithRSAEncryption
4f:82:39:ef:34:79:fe:5d:09:1e:f4:0c:9b:b6:f8:33:6a:0f:
97:11:8f:fe:60:9e:fb:c8:59:99:85:e4:06:c3:b0:4b:05:01:
8c:02:a3:7f:a8:1d:6e:6f:9b:44:76:be:0c:59:67:71:be:ba:
f9:ce:83:87:7e:6d:e1:e2:6e:64:4d:00:07:ff:25:76:53:ef:
92:2f:92:01:41:ee:dc:f8:e4:fa:5a:ac:d5:5b:a5:6a:e5:d3:
77:b9:b9:94:ba:08:8c:fb:c2:57:24:58:ef:b0:8c:d5:53:f4:
7d:32:e6:b6:2d:68:4d:9b:2b:e1:6a:87:56:ae:11:4e:9d:a0:
e3:53:26:ad:45:e4:dd:85:98:99:a8:9b:12:ad:45:39:18:7c:
6e:11:6d:bd:14:9b:01:68:04:2d:66:d4:68:d1:bf:fa:91:99:
84:8d:04:6f:16:98:93:0b:39:46:fb:15:8b:e1:08:8b:9e:b4:
e6:23:3d:d1:43:d8:d5:9b:04:f1:be:7e:7c:c4:b4:db:f2:b2:
bc:f1:14:e2:fe:86:d6:3e:9e:69:35:43:b5:83:37:5e:dc:1f:
18:c3:3a:58:d1:53:b6:e1:3c:12:24:b6:09:dc:53:d6:1b:95:
6c:00:f2:62:f7:03:4e:61:05:74:41:fa:7b:69:0b:0b:07:2a:
02:da:43:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:45 2025 by rpki-client