Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/aa8c347b-a2d5-4fe5-8b98-684b4ad77529.roa
File: aa8c347b-a2d5-4fe5-8b98-684b4ad77529.roa (raw, json)
Hash identifier: qbGxivEWogzS0xFeldezcyGawwpKQWYK+WaF0sLuVDo=
Subject key identifier: BE:DB:BC:F3:75:5A:B4:6F:F5:A6:FD:12:0E:3B:17:F6:ED:C5:1E:26
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 7FE11FB92BEAFFDF73FAF9A9184C4D9C306898A3
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/aa8c347b-a2d5-4fe5-8b98-684b4ad77529.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.134.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Apr 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e1:1f:b9:2b:ea:ff:df:73:fa:f9:a9:18:4c:4d:9c:30:68:98:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=8deb5c9466e64ec86b3a45f1ba80353316dd853389e9bdbb154c125d251f4f52, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:3c:ad:2d:fa:89:73:9b:0f:82:f0:b7:c7:
bb:8a:38:f2:0f:d2:9c:46:be:83:0a:11:e7:ba:a6:
f9:41:46:ba:18:91:2f:9d:ff:ca:35:71:68:77:4d:
46:b9:00:b7:1f:b4:1f:5d:ea:9e:00:83:be:bb:d0:
b6:9a:cb:be:33:70:21:32:ec:06:86:4e:64:a2:cf:
7d:6a:e7:11:da:8d:63:33:ce:40:d6:71:11:92:27:
5e:f1:72:68:a7:41:38:cc:9f:f8:d3:f4:37:9a:c7:
61:a5:38:c0:28:88:91:53:aa:78:c8:ce:58:ef:4d:
2a:05:d5:d2:43:25:81:71:a6:2b:26:c4:ec:ac:5f:
cc:09:62:99:5f:ea:5f:f9:bd:52:18:69:16:bc:c2:
2f:1a:e9:61:c8:ed:3f:7f:f0:41:fd:27:01:db:a2:
87:fb:af:b8:16:b7:cc:5e:2b:72:0d:15:85:3f:6d:
b2:4b:fa:05:3a:b2:c2:57:8f:b8:9a:8b:7d:2b:d3:
63:77:8f:fc:9d:7f:6f:bc:5d:fa:39:b0:51:f7:e9:
f9:6f:95:be:7f:32:a6:ec:e6:ad:1d:88:d0:fe:0c:
5b:82:ea:06:a6:38:b8:42:e7:6b:04:bc:02:e9:6c:
17:97:1c:a9:a9:b9:7d:e3:0c:4b:d3:4d:31:a1:f4:
ec:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DB:BC:F3:75:5A:B4:6F:F5:A6:FD:12:0E:3B:17:F6:ED:C5:1E:26
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/aa8c347b-a2d5-4fe5-8b98-684b4ad77529.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.134.0.0/16
Signature Algorithm: sha256WithRSAEncryption
23:02:76:1f:b1:c6:8e:8b:e9:34:5d:15:3a:2c:be:18:f5:84:
9b:ab:f3:cc:61:4e:78:84:54:f3:f0:28:4f:4e:f0:47:58:fe:
b6:ce:a4:9c:56:9b:0b:5c:75:ec:7a:75:40:44:7e:29:24:2e:
bf:93:90:ac:f1:f4:87:01:72:fa:18:62:a3:28:c6:48:6e:b0:
b9:3a:85:8d:f0:d6:5b:54:87:74:e3:73:32:ef:b0:4c:2c:9d:
f2:80:f8:bf:91:56:77:6a:13:97:21:b0:c3:91:5c:e5:03:61:
b5:e1:c7:e2:c6:59:81:ad:c4:5e:9e:3f:3e:29:f9:74:ad:ed:
da:e5:0e:26:5e:ca:64:d8:dc:bc:43:ee:5a:47:9f:b0:30:12:
3c:9f:86:f6:11:63:e4:e6:2d:61:f8:75:4a:67:95:85:af:66:
cb:c9:b7:31:2b:f9:e6:81:69:ec:d9:fd:4d:51:49:2c:ff:b2:
0a:87:c6:57:5d:c1:24:17:60:c5:20:cb:d0:93:0c:9f:f3:49:
fc:b9:05:a8:17:21:50:3d:af:59:49:6e:2e:f6:77:19:1f:bf:
98:75:03:b2:bd:58:4e:12:ec:af:62:70:eb:00:41:95:17:64:
e3:e1:92:1e:ef:43:a5:25:66:ee:b7:9a:8a:89:5a:b8:cb:6d:
3b:6f:9a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 00:46:56 2024 by rpki-client on console-fra.rpki-client.org