Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
File: 65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa (raw, json)
Hash identifier: Yn442jpyW/7pyoyQOQAfzMJkJLSWts2syyc1Zd9GnhE=
Subject key identifier: 2C:F5:01:2E:87:B5:75:22:28:67:D6:2A:FE:F2:18:17:D9:A6:06:C5
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 16923FC60A1DAB62191DEE4825DE96E67CD75259
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
Signing time: Sat 13 Apr 2024 00:00:00 +0000
ROA not before: Sat 13 Apr 2024 00:00:00 +0000
ROA not after: Sat 18 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.88.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:92:3f:c6:0a:1d:ab:62:19:1d:ee:48:25:de:96:e6:7c:d7:52:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 13 00:00:00 2024 GMT
Not After : May 18 23:59:59 2024 GMT
Subject: serialNumber=e6e1bd17e58486281eef690443b8453435282f054a563da01afb331e140971c7, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f2:b7:f8:49:77:15:d6:7d:d7:39:fb:6f:fb:
9e:0e:58:75:1f:20:1d:aa:00:ed:e8:6e:9e:ba:56:
5f:c4:70:bb:22:7d:78:5e:45:67:c8:f3:52:8c:0c:
2a:74:2c:ac:ef:a0:14:84:b7:a5:90:ed:f1:df:f3:
11:72:0a:d5:77:67:61:8f:46:ac:72:74:16:73:77:
17:db:a6:81:d5:51:39:7f:5b:af:ab:9f:73:b7:1a:
c0:d4:5d:e7:0f:83:c3:e4:16:d3:82:c3:3e:96:5b:
f0:e3:f0:2c:16:7f:11:f0:64:b6:e0:f9:ac:62:97:
84:3f:e5:76:c6:d3:ee:6c:e8:25:c8:35:8a:de:44:
14:37:90:3b:63:9f:c3:22:72:6e:de:7d:5e:4b:33:
8a:b1:85:4f:05:10:d8:84:3c:f3:4a:54:3d:e9:61:
e0:cb:e4:73:82:cc:7c:f3:18:6d:02:0a:e2:ed:56:
7a:c5:b0:43:36:e9:84:8e:9d:bd:59:90:ac:00:ee:
7a:9d:71:cd:2d:a4:43:65:fd:b1:44:05:2e:9e:9a:
84:42:e1:3b:39:8e:0b:f0:86:7c:44:6b:01:29:e5:
f9:b8:1d:fa:6a:14:b5:37:b7:3e:09:2e:64:2b:4e:
f4:20:25:4c:b9:c1:04:cf:5e:f6:06:32:fa:11:d2:
b4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F5:01:2E:87:B5:75:22:28:67:D6:2A:FE:F2:18:17:D9:A6:06:C5
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/65006a80-461d-4fa1-9ee7-0c6ea5fbb77a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.88.0/21
Signature Algorithm: sha256WithRSAEncryption
32:fe:35:b6:05:cb:c1:7c:6c:18:85:61:e7:3b:90:22:9d:bf:
46:90:97:44:4a:cb:78:bf:8c:56:c7:3b:48:51:c4:d1:0f:28:
12:dc:85:e5:85:94:be:24:33:d4:1d:1d:74:2a:e2:55:a5:b0:
00:5e:b6:7c:fd:db:44:16:53:49:ab:3f:5d:e2:46:c2:aa:64:
ee:e9:9f:eb:7f:c1:d2:05:2e:ef:b6:9c:f2:ff:01:4f:34:f1:
a2:39:d5:55:e4:c2:d0:3a:dd:5d:ef:57:22:c1:3f:9b:ad:51:
95:2a:eb:66:d1:01:ac:a8:d2:d0:01:18:36:9e:fe:4f:91:f4:
a0:a2:10:9b:4a:61:72:73:9e:22:01:ce:c1:2d:a8:f9:8d:56:
41:47:86:2f:04:39:61:3e:f4:4a:6d:b1:5d:63:af:9b:20:0d:
6b:6c:5f:c5:dc:d3:05:4b:86:87:a8:9b:d8:f7:4b:51:0e:e9:
e9:d7:4b:43:17:61:03:7f:e5:9e:dd:ea:22:38:1f:16:ad:16:
a3:03:72:78:86:9d:a7:36:78:db:bf:69:a6:fa:23:bc:9a:70:
2b:63:5e:b7:b3:eb:d9:f0:b0:21:41:89:12:6c:97:c0:fc:71:
1b:0e:a5:1b:19:c6:58:c3:72:40:df:2c:b4:74:5d:8f:57:04:
97:b2:58:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 00:52:15 2024 by rpki-client on console-ams.rpki-client.org