Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82be3c31-c1f1-4fb1-9f26-650ddb9bbe09.roa
File: 82be3c31-c1f1-4fb1-9f26-650ddb9bbe09.roa (raw, json)
Hash identifier: KxRRwC33iQyeuvSpZQYzCZJEhhs9Bx5i+DMaNUalXeY=
Subject key identifier: 00:8B:92:63:0B:A2:7A:87:A1:55:83:88:12:3D:BF:EB:98:AE:32:F9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 64307E4DA32F131D556ECD6D409F9BD18DFC2DA4
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82be3c31-c1f1-4fb1-9f26-650ddb9bbe09.roa
Signing time: Wed 17 Apr 2024 00:00:00 +0000
ROA not before: Wed 17 Apr 2024 00:00:00 +0000
ROA not after: Wed 22 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 176.32.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 20:58:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:30:7e:4d:a3:2f:13:1d:55:6e:cd:6d:40:9f:9b:d1:8d:fc:2d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 17 00:00:00 2024 GMT
Not After : May 22 23:59:59 2024 GMT
Subject: serialNumber=a16a1f739984b1741b9b0a0fc9dc21aa5b63658d9ebfe17fb3e03aa05c69c414, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:08:c4:f5:9f:87:95:6f:5f:0b:77:49:3f:3c:
82:a4:2b:cd:25:c5:fe:5f:b8:4f:f2:b8:f6:7d:d2:
96:7a:1d:7f:33:12:27:d8:9c:25:b9:99:7b:11:6c:
8f:e2:03:64:94:9b:a7:f9:79:c8:cf:c5:8d:20:bf:
20:bc:62:51:ee:4a:13:87:78:43:6e:fa:d6:24:58:
0b:5d:03:1a:b6:ee:3e:39:d8:71:a3:b8:53:c7:28:
93:e6:e7:49:11:72:52:ee:32:93:72:23:f8:60:bf:
f6:d9:a7:30:d9:3b:b5:cd:23:87:d8:2e:e3:67:6e:
fd:b5:a5:de:8f:4b:a2:54:3c:75:01:c4:22:1a:0e:
8e:2a:3f:1d:c0:74:04:1e:f2:d3:01:51:fd:be:6f:
a3:30:ed:38:a6:d7:fe:98:2b:1c:e0:99:5d:44:52:
67:3a:7d:98:e6:6d:cb:c2:d6:fe:5d:ec:e5:22:be:
8c:ed:59:2f:bb:50:38:10:48:54:77:9d:03:9d:49:
53:c5:cf:6e:ff:bb:f1:2a:83:2b:7c:dc:a6:97:ab:
7c:ea:b4:bb:41:8f:a2:85:f9:f5:0f:59:13:20:97:
67:75:8d:89:c3:d2:16:a8:ae:2f:3a:ba:4c:74:8c:
ae:80:d7:00:3c:6e:99:81:01:fe:a5:26:bb:e0:d6:
3a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:8B:92:63:0B:A2:7A:87:A1:55:83:88:12:3D:BF:EB:98:AE:32:F9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82be3c31-c1f1-4fb1-9f26-650ddb9bbe09.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:d7:de:1a:40:c5:4c:de:cb:b8:58:3e:47:c7:4a:49:b1:84:
ac:3f:21:f6:b6:69:e5:cd:dc:1d:4f:da:0d:d6:c2:77:ca:39:
ae:4f:12:81:5c:42:ed:f2:3e:2d:3d:3a:2c:11:a5:af:2c:1e:
89:d3:36:c2:fd:11:09:cc:f8:58:4b:8d:5f:3c:39:7f:b5:8e:
76:fa:7b:6d:93:71:78:88:82:90:78:fe:dd:84:48:11:43:88:
bf:ce:df:40:24:4e:08:00:17:aa:c4:3e:0f:74:dc:dc:be:ba:
1a:a1:19:a3:d9:27:41:b5:f6:f3:a9:39:08:37:d1:df:e1:b6:
91:eb:58:ab:5a:62:69:02:00:6a:4c:86:b7:cb:ba:83:f5:0b:
cc:d0:b1:af:1c:87:45:f0:e3:64:d9:81:f6:e4:6d:30:02:6d:
6c:cd:7d:8a:8f:8b:93:72:09:24:bc:66:c3:18:7b:ea:17:bc:
4c:64:f1:09:24:20:60:41:6c:ab:95:db:36:b3:fd:46:e6:dc:
f9:f3:27:43:84:db:20:52:c6:40:7a:32:50:df:97:36:99:32:
8e:2e:25:16:72:c3:02:ba:84:23:92:c9:5d:bc:15:47:9c:cb:
4b:8b:ed:a4:ae:c7:22:c7:8a:0f:a2:a0:3c:9d:ba:05:38:91:
96:a8:c6:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 01:21:32 2024 by rpki-client on console-fra.rpki-client.org