Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cc6c9ef3-9bc2-4d6b-adf2-71f95d7a7acb.roa
File: cc6c9ef3-9bc2-4d6b-adf2-71f95d7a7acb.roa (raw, json)
Hash identifier: tCBaqv1OFkvY7uI2QKM6UP6J8DCLg+uihRzxy9luW88=
Subject key identifier: 4D:F7:65:E4:2E:B7:3B:2C:F0:FD:61:46:71:A6:E3:35:05:BF:79:FB
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5EDC0B52FB32F4EC51DC20827615555B3D167F67
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cc6c9ef3-9bc2-4d6b-adf2-71f95d7a7acb.roa
Signing time: Tue 21 May 2024 00:00:00 +0000
ROA not before: Tue 21 May 2024 00:00:00 +0000
ROA not after: Tue 25 Jun 2024 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Jun 2024 19:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:dc:0b:52:fb:32:f4:ec:51:dc:20:82:76:15:55:5b:3d:16:7f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 21 00:00:00 2024 GMT
Not After : Jun 25 23:59:59 2024 GMT
Subject: serialNumber=a66dcb4888e0cd0f0ed43d96138347b9e4feb7ba37d26f6e5dd54a902787d237, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:43:e1:2c:64:c6:9a:43:5f:14:e8:dc:1e:
74:4d:52:73:4b:55:3a:f8:d3:97:9f:a0:a2:e4:22:
57:95:c3:b1:72:ee:2f:ea:3b:8c:32:11:70:c0:2f:
d6:40:70:8b:78:53:a7:35:b9:31:9c:bd:f5:2b:de:
e4:e3:e7:be:9c:e0:3f:5c:49:03:bf:64:56:bf:30:
e5:d1:e5:b2:ca:1d:0b:17:bf:ca:cc:65:b4:41:61:
bf:a4:c6:a4:36:9b:d4:5d:99:72:65:25:ba:72:c4:
08:eb:df:3b:a8:97:9e:ca:99:38:2c:10:56:0c:2c:
36:06:29:40:99:62:99:40:c6:3a:26:b1:ce:93:c3:
64:44:a6:80:27:2a:af:8c:7d:fa:79:af:a2:bc:48:
37:22:4d:c0:85:96:c2:c9:b9:c2:49:9e:cf:ba:5c:
2b:bd:40:ac:c4:77:e1:27:2d:bd:34:6a:ce:db:2b:
97:e1:ea:0e:30:0d:53:c8:63:1a:3a:c6:87:6f:92:
f4:a6:f5:10:f4:82:c6:58:1c:5c:4b:af:ff:b5:4c:
ba:ef:e1:fd:e5:2f:07:7d:ad:9c:e9:18:86:02:57:
64:95:51:7e:63:31:89:8a:66:3c:53:91:cf:05:dd:
15:4b:6f:ca:e0:31:b2:a5:53:8a:c8:e4:1c:b6:69:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F7:65:E4:2E:B7:3B:2C:F0:FD:61:46:71:A6:E3:35:05:BF:79:FB
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cc6c9ef3-9bc2-4d6b-adf2-71f95d7a7acb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.128.0/18
Signature Algorithm: sha256WithRSAEncryption
bb:d5:56:34:59:c1:f3:7c:d0:10:a3:44:32:b2:6c:51:2b:42:
be:30:91:3f:82:33:20:f3:90:c8:3b:e3:27:a4:89:95:c7:23:
1f:28:b0:5d:7f:a5:df:0c:93:64:0e:b8:f4:96:46:41:fd:8c:
ed:2d:da:0e:98:8c:1b:58:5d:a7:0a:4f:32:f0:c5:e6:31:94:
29:a5:ee:b5:fa:c9:b1:74:44:1e:44:2d:d5:ff:c6:a5:ee:f1:
b7:b9:ee:b2:c5:c9:91:a9:44:79:2b:50:22:42:00:26:51:c4:
5b:e4:0c:08:fb:7d:47:5f:b7:3d:a1:b1:9d:5a:08:2c:dc:af:
61:1e:2b:ee:a7:ed:27:2e:93:c7:be:de:c8:e3:2b:bf:5c:09:
11:9a:30:0b:78:87:4b:f9:99:48:ce:13:e9:77:3c:3a:41:39:
fd:68:eb:be:e9:a3:02:68:17:1f:15:3a:03:94:db:89:d0:5d:
00:a6:29:2c:74:c1:1d:91:46:12:56:7c:b3:8f:18:70:98:2d:
ad:d2:12:0a:9f:b3:ea:bc:c0:52:50:6a:89:37:34:f0:e7:76:
b5:e2:27:7a:58:9a:67:52:b2:90:28:db:a3:1b:d6:59:aa:4d:
74:92:cd:a7:a2:e7:22:4a:3f:aa:7e:1e:93:df:bf:c4:78:b0:
5e:ac:43:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 01:00:50 2024 by rpki-client on console-fra.rpki-client.org