Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
File: 9792ad79-8b80-43b9-8574-bf0d7945ed45.roa (raw, json)
Hash identifier: bXQcSnrjKO7uLrluFT7lqOhcvqeuqv8Y32Gr1sZRcKk=
Subject key identifier: 08:43:82:1D:22:2F:82:43:72:28:6D:3E:6B:AF:37:63:1E:82:36:A3
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2CB4432B9CCD8E09E5F3CE5E7E8C2A6EB9403EF7
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
Signing time: Wed 27 Mar 2024 00:00:00 +0000
ROA not before: Wed 27 Mar 2024 00:00:00 +0000
ROA not after: Wed 01 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 62.230.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b4:43:2b:9c:cd:8e:09:e5:f3:ce:5e:7e:8c:2a:6e:b9:40:3e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 27 00:00:00 2024 GMT
Not After : May 1 23:59:59 2024 GMT
Subject: serialNumber=ffc3230cd20c326573d8b8a03c2087e586b4558e12ea4de722f1956455a9e86c, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:71:70:da:8a:26:cf:87:76:fe:89:56:b1:a6:
22:63:94:37:62:eb:d4:87:e1:6a:d4:da:0c:f1:3d:
2b:a8:c6:f4:a4:20:2c:6a:fb:91:a6:8f:48:79:b6:
98:95:39:b5:59:75:d2:ed:51:dc:80:12:78:ba:39:
59:5d:07:78:3f:e1:70:72:08:0c:7a:3b:9c:0e:96:
e3:0d:12:be:c4:9e:f1:f6:4a:80:94:5a:5e:4c:6e:
5d:18:43:55:70:f5:f4:8d:18:fb:d0:74:cc:cd:49:
10:67:9b:38:d2:c2:4e:9b:99:20:cb:82:ba:37:cf:
e7:47:5d:13:4a:4a:78:a3:4e:ac:cb:54:b2:f8:ae:
37:d3:e7:83:29:6c:f2:6b:4f:00:eb:6f:bf:1e:40:
bc:89:58:9c:80:54:1b:85:c3:d2:67:fc:db:fd:0d:
5f:8c:5d:58:3c:c3:b8:35:c0:ee:e0:b5:36:3e:68:
04:d7:30:68:af:4d:2a:44:7f:12:47:f1:73:4c:4b:
cc:6a:4d:da:e9:72:43:a1:37:76:81:1e:0b:0f:f2:
99:b2:00:7b:39:5e:c1:59:b4:84:b1:0b:dd:0c:ef:
e6:8a:2c:80:e1:81:18:97:fd:6f:f3:0f:43:40:55:
95:77:b1:9d:6a:96:d9:7f:59:99:66:99:3c:97:39:
e8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:43:82:1D:22:2F:82:43:72:28:6D:3E:6B:AF:37:63:1E:82:36:A3
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9792ad79-8b80-43b9-8574-bf0d7945ed45.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.230.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5f:c7:04:8d:43:e0:a8:79:2d:c5:47:14:a9:8d:66:75:38:eb:
de:9f:ce:86:95:b6:5b:ea:aa:67:1d:cb:95:74:a5:6b:a9:ae:
e3:64:11:06:95:03:b8:37:4d:89:b8:05:6f:63:14:9f:ad:db:
df:1b:97:39:a4:60:04:67:35:c7:b7:42:b4:2b:2b:76:ce:cc:
af:d8:8e:f6:d7:34:c3:b0:e2:d0:8d:fe:5e:9d:88:dc:be:82:
29:05:7d:a9:70:1e:66:5c:b8:ac:01:21:5e:9b:62:ed:c7:4b:
b4:d1:08:c9:3a:82:0f:72:df:c5:bd:75:e5:c9:37:d7:22:85:
ab:a0:5e:2e:3b:6c:e0:47:c7:ee:b6:1e:b7:76:58:3e:65:68:
48:59:71:6a:93:22:f1:16:06:4f:2a:e8:23:0a:93:70:53:40:
d2:1f:f9:2e:28:3a:36:2a:c6:32:85:d3:65:e8:17:be:f3:7f:
80:e7:be:78:26:56:a1:df:50:68:e1:bf:be:9c:5b:ea:00:e2:
de:d5:43:7c:d8:50:ba:59:c5:eb:8a:da:35:8a:0d:2f:65:01:
0d:75:82:cc:c2:32:4a:23:38:0c:09:6c:16:55:ef:9d:77:94:
12:d4:d9:8f:b5:c5:6b:55:1a:62:53:c2:05:d9:0b:1a:25:1f:
15:ea:c7:b7
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgIULLRDK5zNjgnl885efowqbrlAPvcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDAzMjcwMDAwMDBaFw0yNDA1MDEyMzU5NTlaMHoxSTBHBgNV
BAUTQGZmYzMyMzBjZDIwYzMyNjU3M2Q4YjhhMDNjMjA4N2U1ODZiNDU1OGUxMmVh
NGRlNzIyZjE5NTY0NTVhOWU4NmMxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN9xcNqKJs+Hdv6JVrGmImOUN2Lr1IfhatTaDPE9K6jG9KQgLGr7kaaPSHm2
mJU5tVl10u1R3IASeLo5WV0HeD/hcHIIDHo7nA6W4w0SvsSe8fZKgJRaXkxuXRhD
VXD19I0Y+9B0zM1JEGebONLCTpuZIMuCujfP50ddE0pKeKNOrMtUsviuN9Pngyls
8mtPAOtvvx5AvIlYnIBUG4XD0mf82/0NX4xdWDzDuDXA7uC1Nj5oBNcwaK9NKkR/
Ekfxc0xLzGpN2ulyQ6E3doEeCw/ymbIAezlewVm0hLEL3Qzv5oosgOGBGJf9b/MP
Q0BVlXexnWqW2X9ZmWaZPJc56EcCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBQIQ4Id
Ii+CQ3IobT5rrzdjHoI2ozAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
OTc5MmFkNzktOGI4MC00M2I5LTg1NzQtYmYwZDc5NDVlZDQ1LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD7mMA0G
CSqGSIb3DQEBCwUAA4IBAQBfxwSNQ+CoeS3FRxSpjWZ1OOven86GlbZb6qpnHcuV
dKVrqa7jZBEGlQO4N02JuAVvYxSfrdvfG5c5pGAEZzXHt0K0Kyt2zsyv2I721zTD
sOLQjf5enYjcvoIpBX2pcB5mXLisASFem2Ltx0u00QjJOoIPct/FvXXlyTfXIoWr
oF4uO2zgR8futh63dlg+ZWhIWXFqkyLxFgZPKugjCpNwU0DSH/kuKDo2KsYyhdNl
6Be+83+A5754Jlah31Bo4b++nFvqAOLe1UN82FC6WcXrito1ig0vZQENdYLMwjJK
IzgMCWwWVe+dd5QS1NmPtcVrVRpiU8IF2QsaJR8V6se3
-----END CERTIFICATE-----
Generated at Fri Apr 19 00:52:15 2024 by rpki-client on console-ams.rpki-client.org