Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a02f9994-3943-4a2f-8467-87935bf3bf9e.roa
File: a02f9994-3943-4a2f-8467-87935bf3bf9e.roa (raw, json)
Hash identifier: 6lPWZBzgCIWvrjmRhQgHqegudrXUccn7wTeuiTKA23s=
Subject key identifier: 5C:B2:8C:A0:57:7A:B1:17:0A:6F:DB:FE:F9:7D:F4:03:7C:44:87:C7
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 276DB9AB4D0FB41EE8ED416DEDA6BC12C6438E11
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a02f9994-3943-4a2f-8467-87935bf3bf9e.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 51.69.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 08:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:6d:b9:ab:4d:0f:b4:1e:e8:ed:41:6d:ed:a6:bc:12:c6:43:8e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=94a0105a1610030bb6a67485d99a46a50b23c0e1a3ec4b3113ca5dee0d475645, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:cd:38:9c:d1:73:74:2f:e6:42:7e:c5:e2:b2:
22:ef:a6:0b:94:03:62:3f:17:5f:90:d0:92:b8:a4:
b7:59:50:6f:62:75:2b:fa:13:bb:f7:25:87:0f:b1:
4e:e4:54:9a:90:b4:68:67:c1:bd:da:13:9e:f4:ea:
f7:b3:25:09:8f:77:9a:a7:85:c4:90:0c:2a:db:7c:
93:df:c3:a7:fc:0a:1d:82:61:ee:8b:3b:c9:fd:58:
6d:73:13:fa:5a:d1:af:54:c4:00:5d:a6:36:9b:e7:
6b:bc:d7:52:36:21:61:a4:47:90:a9:20:4f:23:e3:
df:59:4b:66:c7:6b:d3:b3:5d:6d:e0:55:93:c8:a6:
f0:a9:b9:62:d9:36:c5:17:07:37:b8:f6:ee:17:64:
c0:00:2a:f4:44:d6:75:ca:dd:3f:0d:4b:0c:9b:c2:
3c:6d:04:fa:47:16:a3:75:66:e5:3e:d4:f0:18:01:
e8:81:6f:2b:d7:52:0a:9b:28:2b:25:9f:13:8d:20:
b3:1b:96:00:56:3d:8d:5b:bd:2d:31:12:fe:4b:91:
ee:e7:3e:ec:91:04:1c:f5:aa:c6:90:36:1c:ed:7d:
16:34:b3:b0:d4:9d:29:b1:1b:fd:5c:d5:d0:02:af:
4e:b0:c7:08:3a:e9:df:37:0c:62:6e:99:bb:c9:53:
e0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B2:8C:A0:57:7A:B1:17:0A:6F:DB:FE:F9:7D:F4:03:7C:44:87:C7
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a02f9994-3943-4a2f-8467-87935bf3bf9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5d:8e:9b:fb:8f:2f:15:27:9f:d2:89:6f:81:14:d6:88:66:37:
55:62:c5:91:7d:7c:ae:79:fa:69:21:05:56:a6:b2:57:ba:b6:
fc:bf:3d:25:8d:f5:e0:81:cf:bd:c1:15:02:39:41:c4:0f:a8:
b7:94:30:62:5e:26:75:c4:48:d2:b2:a5:1f:40:48:13:ff:de:
41:f2:ed:25:fa:44:1a:0a:3a:09:e6:ef:15:8b:62:02:0c:3a:
9a:5b:f3:35:98:78:84:01:07:13:09:4c:e1:1b:90:e3:6f:34:
29:23:eb:92:f0:e8:bd:39:6f:ac:38:32:26:4f:23:a2:eb:fa:
96:df:b5:b9:6a:a2:f5:50:5b:4c:26:46:67:dc:b9:95:97:67:
5c:b2:b1:b2:18:37:d1:f8:ec:3c:ab:9d:f3:06:5d:50:6b:f2:
27:88:87:db:dc:27:31:c5:36:26:82:60:1c:88:c1:b1:39:18:
d1:91:34:9a:fd:a6:cb:80:ae:77:c8:7b:77:40:ac:93:69:25:
b4:82:70:b0:b2:90:e4:8f:ad:d9:9b:68:b3:30:17:2f:76:38:
42:59:45:46:bd:e9:d8:c0:ae:26:60:95:dd:6b:29:f3:89:3d:
f6:d2:71:b3:0a:60:a1:09:e5:a4:a4:91:cb:eb:2d:40:09:8e:
57:96:2c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 15:41:28 2023 by rpki-client on console-ams.rpki-client.org