Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
File: b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa (raw, json)
Hash identifier: a7fnopTHVG2VaXTdJYzIg41RexttQM3d7L3WtjczIWU=
Subject key identifier: 47:0C:BD:72:6D:6A:A3:36:49:C3:35:05:4E:59:4A:AD:27:5E:AD:68
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 6E81F98A9891C41319F50FBD62B1F7F4200588C8
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
Signing time: Mon 08 Apr 2024 00:00:00 +0000
ROA not before: Mon 08 Apr 2024 00:00:00 +0000
ROA not after: Mon 13 May 2024 23:59:59 +0000
asID: 8987
IP address blocks: 139.79.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:81:f9:8a:98:91:c4:13:19:f5:0f:bd:62:b1:f7:f4:20:05:88:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 8 00:00:00 2024 GMT
Not After : May 13 23:59:59 2024 GMT
Subject: serialNumber=57af51f01e146b8ce1e7f4f0f4d0795e395ac16fc283a3089bf629a432bedc15, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c6:cf:de:36:6d:23:2b:71:c4:ca:ce:a2:de:
3c:74:4d:29:a8:67:de:19:e5:f0:34:0b:dc:f4:8b:
4f:8c:1d:b2:e3:96:8d:da:1e:d2:e3:0e:cb:5d:e1:
87:37:c6:e7:dc:72:2e:bd:b7:55:0c:7a:14:9a:65:
0b:d6:f6:d4:c1:7e:26:df:cc:25:02:36:de:27:31:
99:78:17:7d:35:a5:97:a9:e4:61:66:d3:af:ea:e8:
bd:49:b2:68:db:c3:90:af:b0:e5:e5:72:06:b9:39:
f7:5c:39:e5:52:d4:33:05:98:99:7c:38:b4:a7:43:
f6:c8:ac:09:59:48:5d:85:0e:0f:ed:42:60:be:ba:
07:bf:37:27:83:c3:ed:87:3a:b1:c6:22:36:30:d7:
f6:eb:a0:17:58:bb:2f:a4:85:95:2c:73:b2:d1:f4:
57:3e:bb:a0:c7:2c:f6:1d:2f:80:ba:b4:19:e3:6e:
30:75:59:a5:13:86:36:e5:b2:69:66:57:c7:e2:73:
9e:1e:f5:f0:41:c8:20:05:63:4c:d6:24:12:de:51:
4a:f3:7d:0d:83:55:81:ca:81:03:f8:40:e8:d3:b6:
35:d0:eb:a3:e9:aa:cd:ed:2c:d8:a8:ec:c3:28:10:
c6:73:12:4a:70:b8:b1:8e:a9:40:0e:f4:7b:58:4e:
0c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0C:BD:72:6D:6A:A3:36:49:C3:35:05:4E:59:4A:AD:27:5E:AD:68
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
13:9b:b5:d0:0f:e2:74:5d:1f:3a:f6:c3:71:b9:6c:3a:78:75:
6a:a9:9e:b6:7f:99:d2:48:da:59:ff:7c:d2:95:e6:85:62:e0:
8c:95:9a:53:3d:c2:dc:2f:d0:58:96:e9:73:70:88:93:3f:df:
3a:c9:b2:d8:10:2a:04:81:a0:d3:42:60:99:c9:84:ae:1b:18:
33:9f:7c:c4:52:ea:7b:22:54:39:c2:18:26:e6:a8:d1:5f:76:
59:df:2a:1c:66:db:e7:f2:9e:b2:3e:68:ab:7d:31:b4:d4:66:
c3:5e:8d:04:1e:8e:e3:eb:4c:88:18:4c:cf:56:60:4a:d7:45:
4b:97:d0:4d:dd:24:57:51:a3:b7:8a:d2:1c:14:28:ca:1d:b5:
5d:b2:83:4f:d2:8b:1f:1d:b1:cd:b1:e3:97:76:18:f6:4b:0b:
87:34:69:4a:58:4b:46:2f:aa:41:87:25:0e:53:53:7c:95:5f:
c3:0c:4b:5a:0e:bc:25:ef:73:b1:42:36:50:bc:3d:e6:6a:05:
6b:47:3c:57:ce:51:9c:a5:10:66:70:d5:45:f4:46:4e:17:51:
da:5d:f8:5b:c0:f5:47:04:b0:50:02:00:a2:49:75:44:4d:5a:
4e:fd:c2:8a:4e:63:36:43:a7:ee:ef:41:21:e9:c2:3f:4a:09:
d4:e0:4e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:48:10 2024 by rpki-client on console-fra.rpki-client.org