Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
File: b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa (raw, json)
Hash identifier: QPBg7n+qu5NYVnhjeIoKrFsz5jqoZCNOT5mHTyqCi9w=
Subject key identifier: C6:6D:2A:FB:2A:20:12:99:90:16:A6:F2:AF:6D:4A:7C:04:13:50:55
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 47DAC75CA9BF475851F84CAC7E7D7235CB06E001
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
Signing time: Tue 29 Oct 2024 00:00:00 +0000
ROA not before: Tue 29 Oct 2024 00:00:00 +0000
ROA not after: Tue 03 Dec 2024 23:59:59 +0000
asID: 8987
IP address blocks: 139.79.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:da:c7:5c:a9:bf:47:58:51:f8:4c:ac:7e:7d:72:35:cb:06:e0:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Oct 29 00:00:00 2024 GMT
Not After : Dec 3 23:59:59 2024 GMT
Subject: serialNumber=f7cf321257f667021cc8f7fcdf9aa8a1780f9c55f0510fda8119fa0c6bd628e8, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:49:6e:60:35:78:68:9f:aa:25:f8:a8:07:6e:
b5:8a:b4:92:53:f6:bf:c2:2b:65:66:3d:70:be:3e:
0b:29:06:ba:a9:1f:6e:9e:66:d4:92:46:15:c7:8b:
d8:a0:0c:5d:f2:48:4d:d9:d6:07:b0:c3:43:55:ab:
6f:80:0e:97:61:18:dc:e3:f7:96:8e:c0:4a:62:27:
a7:30:52:de:b7:f3:67:0b:1c:75:56:26:7d:27:ec:
3e:ce:8a:b2:44:b1:a2:a2:1c:4e:cb:fc:8f:37:5b:
d5:7d:24:1d:d6:30:d2:58:3d:e0:51:d4:e9:8c:ab:
63:c1:33:02:de:0f:19:5d:d9:c5:cc:82:57:0a:3a:
71:fe:21:5e:e5:7e:ab:82:c8:ae:15:b9:1c:26:59:
56:dc:08:3f:29:85:b1:70:67:68:0f:1e:f0:1b:6e:
0a:06:05:34:75:e1:fd:f7:da:50:0c:2c:12:22:2e:
53:a0:d3:c0:0f:48:e9:58:7a:1f:cb:e5:a3:76:1c:
21:fa:17:f8:e9:19:61:b2:c8:19:f3:10:9f:1c:86:
46:62:f4:47:5a:e3:a7:db:ad:be:c8:97:d6:26:7b:
a4:a9:17:00:6f:82:b8:be:d8:ee:1c:88:d0:db:06:
5b:1f:a0:fd:1c:24:bd:d8:89:57:db:d5:f8:67:49:
2f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6D:2A:FB:2A:20:12:99:90:16:A6:F2:AF:6D:4A:7C:04:13:50:55
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/b55a7d70-dcb0-4ff4-8efc-7edac63a74f3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:f0:15:c4:ec:c9:91:76:43:25:ca:5f:9d:c6:93:b1:86:01:
4e:3f:41:58:3e:3d:a7:1b:6b:1e:1b:6a:1c:b4:4f:ac:e4:fe:
e5:cb:7b:6d:76:9e:8d:6b:d9:72:13:40:eb:54:3a:01:18:8e:
87:3f:c0:03:3f:f3:cc:09:8c:de:62:44:5f:71:a8:45:1a:6f:
18:29:92:eb:c6:8a:7c:5b:c0:0e:28:55:65:5e:52:7f:73:41:
f4:f5:9c:83:69:95:e9:be:3a:8a:82:69:4b:98:88:d3:d8:4f:
9b:ec:31:30:2e:1d:05:77:42:6e:09:73:1c:6b:3a:3f:2d:a3:
47:77:dc:4c:fe:ef:14:24:7c:77:93:0c:26:e1:72:a2:0e:cc:
0b:69:86:ff:49:3a:13:a4:8a:db:66:2b:70:d3:f8:d1:ab:ab:
d1:84:fd:11:d8:1e:bc:2b:4d:6a:3e:7a:d0:60:aa:6a:dc:e7:
34:8b:b7:57:3c:47:77:38:3b:66:1a:a3:19:33:60:43:76:58:
55:63:16:7d:58:5c:e5:d6:65:b0:33:55:b6:d5:2c:40:64:70:
50:c2:57:0b:8b:27:c0:90:5d:17:03:cd:31:09:ba:79:d6:b7:
a0:be:ba:dd:1d:bf:c9:d7:68:30:20:47:fe:2e:05:44:63:a5:
9a:63:bd:bd
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgIUR9rHXKm/R1hR+Eysfn1yNcsG4AEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDEwMjkwMDAwMDBaFw0yNDEyMDMyMzU5NTlaMHoxSTBHBgNV
BAUTQGY3Y2YzMjEyNTdmNjY3MDIxY2M4ZjdmY2RmOWFhOGExNzgwZjljNTVmMDUx
MGZkYTgxMTlmYTBjNmJkNjI4ZTgxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOlJbmA1eGifqiX4qAdutYq0klP2v8IrZWY9cL4+CykGuqkfbp5m1JJGFceL
2KAMXfJITdnWB7DDQ1Wrb4AOl2EY3OP3lo7ASmInpzBS3rfzZwscdVYmfSfsPs6K
skSxoqIcTsv8jzdb1X0kHdYw0lg94FHU6YyrY8EzAt4PGV3ZxcyCVwo6cf4hXuV+
q4LIrhW5HCZZVtwIPymFsXBnaA8e8BtuCgYFNHXh/ffaUAwsEiIuU6DTwA9I6Vh6
H8vlo3YcIfoX+OkZYbLIGfMQnxyGRmL0R1rjp9utvsiX1iZ7pKkXAG+CuL7Y7hyI
0NsGWx+g/RwkvdiJV9vV+GdJL6kCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBTGbSr7
KiASmZAWpvKvbUp8BBNQVTAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
YjU1YTdkNzAtZGNiMC00ZmY0LThlZmMtN2VkYWM2M2E3NGYzLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAItPMA0G
CSqGSIb3DQEBCwUAA4IBAQCA8BXE7MmRdkMlyl+dxpOxhgFOP0FYPj2nG2seG2oc
tE+s5P7ly3ttdp6Na9lyE0DrVDoBGI6HP8ADP/PMCYzeYkRfcahFGm8YKZLrxop8
W8AOKFVlXlJ/c0H09ZyDaZXpvjqKgmlLmIjT2E+b7DEwLh0Fd0JuCXMcazo/LaNH
d9xM/u8UJHx3kwwm4XKiDswLaYb/SToTpIrbZitw0/jRq6vRhP0R2B68K01qPnrQ
YKpq3Oc0i7dXPEd3ODtmGqMZM2BDdlhVYxZ9WFzl1mWwM1W21SxAZHBQwlcLiyfA
kF0XA80xCbp51regvrrdHb/J12gwIEf+LgVEY6WaY729
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:30 2024 by rpki-client on console-ams.rpki-client.org