Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/207ef309-dcb5-4264-bf57-0d52fea079cd.roa
File: 207ef309-dcb5-4264-bf57-0d52fea079cd.roa (raw, json)
Hash identifier: O5e5OEiov/fxISEMSZWsSyhX9JOoPI5qP6v5kh5HNy8=
Subject key identifier: 3C:99:13:6B:96:6D:31:47:E3:44:25:6E:0F:2A:0C:F7:FF:16:5B:B7
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6F0997940B1D78C719E94244C80B39C8CB80FC7F
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/207ef309-dcb5-4264-bf57-0d52fea079cd.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 130.24.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Sep 2023 23:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:09:97:94:0b:1d:78:c7:19:e9:42:44:c8:0b:39:c8:cb:80:fc:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=65d3f02cb599d41a74f08cb175f21921235fd4832ead1eda78c324dbb245ca64, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:b8:80:a9:1e:f8:a7:ce:84:26:d0:37:2c:
e5:23:09:23:fb:2f:68:4b:94:01:57:e8:b7:af:5a:
2e:66:2e:57:77:1f:a0:52:0c:5a:fe:d6:35:c9:b0:
73:01:0c:70:6b:e7:2a:5e:6e:d5:f4:16:fb:76:03:
67:3d:ff:3d:ee:04:d8:ed:eb:cb:34:89:46:94:70:
73:ce:3e:36:bd:e1:c4:4b:1b:47:fc:70:58:a7:de:
cc:38:3c:f3:48:ec:5b:6f:a5:55:6f:b8:03:d4:6c:
2b:46:c3:5c:3e:0c:75:da:ed:53:8a:d3:f2:17:ac:
20:9a:48:05:b4:ac:8c:74:6f:b2:ea:f8:b7:f5:3d:
28:b6:03:2a:99:30:5f:cb:9b:2e:ca:dc:11:f0:cb:
50:05:e2:98:29:37:8e:88:59:3e:e4:a4:52:f0:ad:
99:eb:78:93:8b:ca:25:00:c3:87:46:9e:73:9a:c2:
fe:8c:57:90:f9:a5:7b:a8:63:e6:15:cc:03:33:e5:
28:53:75:50:98:a6:4e:6a:31:76:47:a0:93:fd:df:
e5:13:0e:c3:7d:34:b5:c6:9e:c9:9c:ce:18:bb:13:
78:fa:f0:4d:ab:2b:07:b9:9b:ba:1d:e5:6b:0b:e9:
40:e1:e5:33:4b:9e:77:b2:9c:b1:1c:2f:2a:7e:f1:
7d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:99:13:6B:96:6D:31:47:E3:44:25:6E:0F:2A:0C:F7:FF:16:5B:B7
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/207ef309-dcb5-4264-bf57-0d52fea079cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.24.0.0/16
Signature Algorithm: sha256WithRSAEncryption
15:36:7a:45:4c:cd:c7:df:c5:63:02:1b:77:a7:16:9c:3a:19:
7c:1f:a3:88:e6:fc:f2:8f:60:88:1e:8d:b1:7c:20:6c:2f:bf:
40:65:b8:ac:07:00:95:02:65:02:24:e5:ac:2b:82:7f:56:9d:
21:fd:7d:4d:61:bd:09:88:e0:a6:86:05:e3:a6:e5:4e:15:65:
78:5a:f4:53:2c:c7:0a:d4:15:b5:b1:e5:3e:c6:f8:c4:cf:24:
ca:74:06:86:50:e1:b7:87:40:53:10:9d:a7:a4:87:d6:94:8c:
76:58:76:05:48:2f:50:8c:ce:84:39:be:99:b6:ff:ac:7a:17:
56:8f:4e:e2:b2:a0:c3:6c:88:f9:e5:6f:01:6e:c5:a6:bd:ec:
8c:a2:58:e6:9f:2a:f2:8d:28:7b:4e:0a:ea:31:87:6d:03:9e:
ed:7e:4b:ce:50:9f:8c:32:d3:48:55:12:9c:1c:3e:50:63:de:
bd:c0:c0:b2:e8:eb:94:f8:30:ad:d0:06:23:84:91:83:91:e9:
83:7e:20:29:39:28:ea:be:d2:72:64:56:23:59:d5:f6:7b:eb:
b9:e9:cc:42:1e:f6:22:45:1e:7d:b0:d3:9b:f5:bc:58:e1:6b:
5a:2a:62:d2:af:5e:d1:af:ca:3c:79:f6:b0:e1:e2:5b:17:65:
b0:f2:99:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 00:38:22 2023 by rpki-client on console-ams.rpki-client.org