Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
File: 61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa (raw, json)
Hash identifier: ctcjTBvGPVpgB2zynCnqwFalPChkXZFGXeT4LXImrxk=
Subject key identifier: 75:53:33:32:28:2F:8E:B0:15:A9:D6:9F:74:37:91:26:91:15:D5:C4
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3E6DBC2554B12ABB14E655DC19ABC143CB6677FA
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 8987
IP address blocks: 193.26.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:6d:bc:25:54:b1:2a:bb:14:e6:55:dc:19:ab:c1:43:cb:66:77:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=4b7ce0b8fcb1b45c2006cbc9219ea9107b457164f3b7033c38c69a9d8ecd7110, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e4:78:a5:ba:91:fb:9e:a6:0c:b0:ef:d4:85:
47:8c:36:0c:b9:72:72:b0:80:92:0e:b0:46:2f:d4:
98:a2:b1:12:85:98:5b:4c:69:c8:f5:fd:ca:e8:5a:
08:05:fe:76:65:22:90:47:b0:06:32:d5:3e:e7:f3:
2f:a5:ca:5d:4f:ad:7e:b2:fd:0b:6d:d4:67:53:e9:
18:a7:50:44:cb:98:d8:82:76:7b:31:00:f8:6d:d6:
6c:e9:22:7a:4d:bd:8e:f3:fe:d0:ed:25:96:8e:fb:
6f:c0:a8:a7:5f:3c:dc:11:a1:1a:16:a5:ed:ea:a8:
fb:7b:74:a5:f9:5b:50:db:08:b6:91:41:b9:af:66:
0d:4f:2a:a8:75:d1:52:44:ee:34:9a:d2:04:c2:9a:
1a:45:df:83:84:b1:fa:24:70:e1:00:14:5c:11:57:
04:39:1d:3b:66:88:2d:dd:d3:f8:7f:b5:39:ce:0e:
41:54:0a:a3:ac:0a:a5:29:3a:d5:19:96:27:a4:ea:
8e:62:85:42:33:f2:26:6c:e4:34:7f:8e:a0:d6:a3:
26:c1:bf:6b:f4:01:94:5c:ac:c7:97:40:4e:fc:1e:
98:0c:9b:7b:f7:69:b4:82:0e:29:b5:cc:13:46:0a:
a4:8d:ef:3c:08:20:d8:88:5f:92:d9:54:99:a6:cd:
96:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:53:33:32:28:2F:8E:B0:15:A9:D6:9F:74:37:91:26:91:15:D5:C4
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:65:4b:9b:76:73:b8:e5:d3:c6:81:0b:2a:4f:29:77:a9:ce:
b0:f3:1e:a1:8a:3e:4f:b4:1d:58:50:2a:b0:c9:ac:80:b4:c7:
06:7d:95:c2:71:68:fd:1d:a1:34:fb:fc:ed:29:86:d3:24:5e:
ce:6c:61:b6:f6:fd:b2:92:87:1e:78:80:44:cc:2e:34:70:6f:
54:44:ee:c2:3c:26:da:e4:da:f9:2a:71:f3:a9:01:9c:07:8b:
bd:3a:96:3e:89:f6:b7:98:b7:17:7c:f8:40:fe:94:d9:ae:aa:
31:d2:4e:4d:ab:71:05:7f:8d:7c:4e:c9:2a:d0:e4:3c:f8:ec:
20:04:14:25:49:ea:b7:94:1d:e7:f1:8e:43:a6:7f:63:63:6f:
a3:a0:05:89:dc:95:88:83:35:b0:d1:9a:46:6d:e0:e6:03:56:
8d:66:f8:89:31:0a:45:04:45:ad:c4:3a:8f:af:3f:12:12:4e:
36:2b:bd:72:1a:a3:dc:f9:a7:2a:70:68:0a:66:80:2f:6f:b8:
35:78:51:70:80:3e:f9:d1:c8:f0:c9:64:c3:f6:42:2a:d4:c7:
57:46:3f:06:f1:ff:86:7c:e6:ea:41:b0:c9:05:ae:cc:da:13:
e4:96:d1:88:6a:bc:5f:ec:d2:d2:ae:f1:8f:50:4e:7b:d2:89:
b5:9a:55:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:35:25 2024 by rpki-client on console-ams.rpki-client.org