Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a1fe62fd-3c9b-4c9a-867b-42c7d6d94fdf.roa
File: a1fe62fd-3c9b-4c9a-867b-42c7d6d94fdf.roa (raw, json)
Hash identifier: 0xqASbYlUzfrZaRs7N1Ve8WnEto2fAy/9LK7kcQyE1o=
Subject key identifier: 68:FE:81:54:3E:EF:45:72:0A:80:5E:E8:CB:44:F9:23:F6:F1:4F:FA
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 12BD2F75F9EE8518DDC4B165B818B810CCA7A128
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a1fe62fd-3c9b-4c9a-867b-42c7d6d94fdf.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 193.202.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 08:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:bd:2f:75:f9:ee:85:18:dd:c4:b1:65:b8:18:b8:10:cc:a7:a1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=7b4e5d54221de5978e7e3bd7f96c944259cb6108182abce87e70961166681876, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4d:d5:8d:25:46:38:4f:52:a1:d9:65:99:5b:
ab:09:40:d6:2e:60:d9:5c:d9:66:21:83:3d:5c:6a:
1d:98:05:30:58:d0:fe:09:b3:b2:c1:d6:42:31:d8:
a2:8e:aa:a4:b2:c0:69:29:2f:cd:e7:c2:28:49:18:
f9:bb:cc:9e:bf:f9:c7:72:e7:d2:3c:93:df:08:81:
40:a9:ab:54:67:77:aa:a9:65:40:2c:5c:b4:91:59:
64:86:af:0d:fa:8e:67:08:fb:04:e4:cb:2a:1a:28:
07:b7:03:18:cd:25:b4:e1:c9:8d:1d:ca:0d:ce:8b:
23:a6:c6:a9:4f:da:cf:af:ad:1d:05:ce:e1:98:11:
d3:89:f0:81:cf:a7:c3:16:37:f6:ea:81:a6:de:f2:
b9:0c:a6:b8:cf:65:09:e5:29:d7:55:0a:6e:66:67:
d2:5e:eb:9e:fb:86:d3:37:14:ce:52:7d:38:7c:49:
18:58:df:b1:a1:fe:2a:95:76:a7:ef:33:40:b2:36:
dc:d0:2f:05:b4:92:5f:be:e5:0f:3b:37:21:53:9e:
61:61:47:3b:b9:13:a0:cc:dd:df:94:cd:a2:63:f2:
49:80:e4:5c:84:f2:f4:d8:ac:80:61:b1:9c:73:03:
5e:4c:36:a6:b9:92:ea:7d:b9:93:63:03:f6:42:5c:
b0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FE:81:54:3E:EF:45:72:0A:80:5E:E8:CB:44:F9:23:F6:F1:4F:FA
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a1fe62fd-3c9b-4c9a-867b-42c7d6d94fdf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.192.0/19
Signature Algorithm: sha256WithRSAEncryption
6c:a7:4c:f9:7e:e2:fe:e6:28:5e:99:82:7a:a7:e4:7f:81:de:
4d:90:c9:ea:cd:be:22:28:c7:11:e4:1c:c1:64:bd:f8:dd:d4:
f6:e2:0e:18:80:7e:62:1f:13:b6:45:15:78:de:42:97:5e:69:
85:9f:a9:63:42:41:b3:32:59:47:30:b4:c3:cb:40:b2:1c:bf:
9e:5d:93:e0:eb:13:07:9f:d2:13:7d:e6:e9:ee:79:1b:0f:c0:
23:1b:05:80:41:f2:7a:ae:13:08:49:b5:d6:ae:1a:fe:6e:a4:
13:09:4e:3d:51:12:62:99:29:7d:8d:ee:12:21:f4:db:df:90:
05:69:33:c9:21:89:85:2c:2d:cb:d8:b1:fe:2b:e2:54:ec:f9:
db:12:f5:bd:54:c7:50:cd:b8:c6:09:85:9d:26:24:14:53:1a:
74:70:48:ed:a7:68:ac:ae:e9:ec:6f:4d:93:10:1c:e6:0e:16:
8d:bd:d1:3a:4e:19:0c:06:5f:1f:8e:ac:de:c2:a5:3a:59:22:
ea:18:f1:97:6e:33:52:7c:5f:c8:cc:ec:6f:c5:c3:8d:90:40:
d4:ae:56:cb:b2:03:40:4e:21:8f:68:80:4b:76:99:90:07:18:
1f:8d:20:4a:38:2c:6c:c6:29:f8:35:08:a3:05:6a:14:49:21:
fe:26:1d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 15:41:28 2023 by rpki-client on console-ams.rpki-client.org