Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/94b06b84-0447-4cc6-8cef-66e65fc52a6c.roa
File: 94b06b84-0447-4cc6-8cef-66e65fc52a6c.roa (raw, json)
Hash identifier: D7mrapLyppvxkG15jych8siGAcUoBuyBgMisn5AkBtI=
Subject key identifier: 90:F0:0B:62:31:45:0F:3C:2C:BA:6C:4A:85:5A:33:B9:6E:3D:D2:68
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 0662DAEDFA313932AE98438AFCC6E75C0D338E2F
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/94b06b84-0447-4cc6-8cef-66e65fc52a6c.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.236.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:62:da:ed:fa:31:39:32:ae:98:43:8a:fc:c6:e7:5c:0d:33:8e:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=ba07d1e9d0d4df7ce4c30d2782b8a4cd4ad263d1b1f6dc0a9ba84d0cf6681c17, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c9:d8:56:31:74:a5:9d:45:f3:8b:ad:5e:df:
c9:e3:f3:24:dd:42:ea:07:77:79:b9:a6:c3:3e:fd:
61:bc:b0:f6:e6:d8:0b:99:8a:10:4c:f5:b8:24:66:
d0:4b:fd:71:5e:22:6a:1a:5e:97:d8:2b:7c:24:bc:
2e:51:a1:3a:e1:02:98:90:a8:6f:34:0c:08:81:18:
b4:9d:0e:d7:5b:9a:d5:1b:fc:f4:f2:44:ce:49:da:
25:2a:b6:09:59:15:4d:75:87:fc:a9:6c:a8:61:9d:
61:f4:ae:4b:44:04:ce:a2:ed:9c:ae:9d:ed:00:95:
76:f1:a1:1b:00:51:e4:b8:bd:49:a8:6a:97:e4:f7:
35:4d:56:7f:e9:23:13:b8:9a:27:bc:4d:42:5c:40:
66:cc:a8:af:a5:1a:8b:b7:a0:a3:dc:44:aa:01:42:
d5:d5:9f:ad:9b:4e:af:7e:04:9f:c6:c7:7e:09:85:
fb:bc:c9:54:cf:63:56:8c:b9:1b:30:82:37:12:86:
f0:db:08:96:fc:fc:a0:3c:80:77:be:a2:29:87:f8:
d6:74:f0:96:82:d9:c2:c8:19:1f:83:75:b9:29:89:
ce:b7:6f:18:db:b9:dd:b5:05:be:80:70:03:9b:a0:
36:06:ae:ad:45:f2:fb:0b:6a:ee:e5:eb:1b:d5:02:
be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F0:0B:62:31:45:0F:3C:2C:BA:6C:4A:85:5A:33:B9:6E:3D:D2:68
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/94b06b84-0447-4cc6-8cef-66e65fc52a6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.236.0.0/15
Signature Algorithm: sha256WithRSAEncryption
af:c6:4a:86:b1:ab:c4:9e:35:47:70:25:9a:40:5f:85:c7:1a:
fa:da:31:08:b4:27:0f:bd:8d:17:a1:a9:bc:19:24:01:6d:dc:
48:0c:7a:ce:fa:1c:ba:50:3f:77:c5:fa:a0:11:6d:e5:66:13:
e2:e1:28:4e:f3:df:85:a2:00:37:2b:2b:2e:c9:c0:b1:e0:bb:
c6:e4:e2:ee:20:7e:36:5c:3a:87:88:f2:77:78:0b:34:0c:f7:
16:65:0b:f7:6d:03:bc:d4:5c:0e:1c:bb:3b:ac:31:e3:ec:ad:
e2:e4:df:bc:53:3e:c0:b9:89:87:ef:84:73:e2:8f:e9:ae:aa:
54:e5:10:04:3c:12:c4:fb:9c:5f:ee:6b:88:03:89:41:74:b3:
88:92:f5:34:f7:56:ba:2a:e8:25:e6:22:af:ca:12:5d:59:a2:
ae:3f:4c:85:c3:0e:4e:96:fb:7a:c1:91:ef:72:15:06:fc:53:
35:84:8b:f8:31:8a:72:9c:2a:b9:63:09:68:8c:ae:4b:0d:db:
3b:23:8d:2a:9a:04:d9:dd:dc:eb:cc:6c:7b:ca:59:85:20:6f:
b8:94:e5:03:fc:20:7f:22:71:8d:0e:11:56:cf:a9:b7:c8:22:
81:5e:ed:5d:9c:3e:e3:85:96:2e:0c:8d:df:d3:ff:7a:35:40:
02:a3:c2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:35:26 2024 by rpki-client on console-ams.rpki-client.org