Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
File: 70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa (raw, json)
Hash identifier: W/I6oWu+t6eE/kEN4X8lcQnq9VQva7qJgsSBCjx0XMM=
Subject key identifier: 1A:48:EF:63:BB:0C:0B:FF:FB:E8:DD:72:26:11:3E:C5:78:8A:8E:C2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 79AA77FFD4810FDDFAA33643C16E15D89DC97F9B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:e000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:aa:77:ff:d4:81:0f:dd:fa:a3:36:43:c1:6e:15:d8:9d:c9:7f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=fcf7957acaac5d6eefbf01a944707e948b65ca9584311a7803d340a43dea75f3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:57:89:02:e4:18:51:84:e2:62:25:2e:bc:7f:
e0:6d:ee:d7:32:32:92:04:75:e1:17:a7:ff:e4:93:
79:f7:b7:e6:09:7b:d3:2d:04:ad:72:a8:2b:09:c8:
3e:a1:45:0b:54:75:f7:8a:b6:a1:ff:15:cb:8b:10:
1f:29:cb:c0:ab:b1:04:48:b3:78:63:0c:59:b7:ab:
3c:66:4e:c7:bc:ea:83:ea:f1:df:80:71:7f:73:c2:
c5:60:68:31:b2:0c:92:b3:e5:68:0f:0b:c5:a9:1d:
2c:60:b3:3b:6e:ae:5f:e9:f9:91:e3:f7:4a:95:28:
47:e3:5e:08:39:9e:15:e0:e2:2c:af:ed:56:e5:95:
56:b9:82:f7:c9:1e:50:a9:09:e4:d6:79:9c:14:1d:
60:db:8d:a2:e1:cf:22:cf:b3:b9:77:64:a8:7c:62:
fa:bd:58:bd:86:13:89:c2:d8:cb:94:40:33:28:8b:
62:05:08:59:32:e3:e2:0a:82:d1:16:6f:41:ff:cc:
f2:bd:08:b8:37:31:07:06:a6:0e:36:84:0d:13:c0:
fd:b7:c6:07:43:fa:06:00:27:6e:a8:de:22:df:a8:
3c:66:1a:6e:7d:06:02:5f:56:f3:a6:a8:da:ba:13:
29:54:9b:4f:ef:cf:9e:e1:d9:fd:24:17:b0:25:b0:
e0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:48:EF:63:BB:0C:0B:FF:FB:E8:DD:72:26:11:3E:C5:78:8A:8E:C2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:e000::/40
Signature Algorithm: sha256WithRSAEncryption
3a:b6:3b:71:80:ce:fa:04:aa:56:ae:9a:69:0e:b8:06:9a:2b:
af:3d:45:13:28:14:68:89:95:48:4d:81:ba:38:f3:7c:6d:4b:
29:5e:1e:76:b2:37:d6:41:5a:f0:04:28:76:e5:64:98:90:ad:
38:13:1a:0a:8e:82:8f:6d:99:1b:d4:cf:2d:ed:9c:9e:76:33:
d4:be:2a:69:55:d3:0f:f7:3d:04:37:ac:f8:aa:6e:bc:30:02:
9d:1a:c7:82:39:90:74:ee:3a:53:68:71:94:7e:bf:8e:ae:8c:
85:f5:e8:66:2b:78:ce:e3:0b:a2:19:fa:92:99:f6:b9:b3:09:
6f:fb:55:5c:12:41:07:d7:73:ad:61:51:b5:67:2d:03:90:30:
91:d3:80:32:f3:aa:b7:1d:34:e7:06:df:87:bd:95:1c:69:9b:
3b:4c:40:bb:bb:97:74:2e:36:c7:86:25:bf:b9:93:a3:4d:d3:
97:18:74:ff:91:99:7b:71:bb:bc:2b:99:89:4c:8b:13:48:a5:
c5:f2:36:e5:57:f3:ed:b5:63:de:30:d6:df:7c:eb:d0:14:3b:
ea:a3:1f:80:e8:ae:8d:df:99:60:96:f6:58:02:0d:fa:bb:25:
2c:8b:f7:57:18:10:d4:f2:02:fb:d1:d9:94:db:36:57:e4:53:
c9:fa:b4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 01:38:08 2024 by rpki-client on console-ams.rpki-client.org