Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c7ebe19f-8477-476a-894a-ce55eb72ce4b.roa
File: c7ebe19f-8477-476a-894a-ce55eb72ce4b.roa (raw, json)
Hash identifier: WudASrXW/1Hx5vE9dv2KkSFEerVZ7Eqtf5cqbHqgXuE=
Subject key identifier: 8D:17:2C:AA:BB:90:AE:00:04:DC:87:2C:83:EC:83:7B:4C:36:90:A9
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 334A65D84BF6A9F922CCF6FB5D933D701C7EC337
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c7ebe19f-8477-476a-894a-ce55eb72ce4b.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 195.254.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:4a:65:d8:4b:f6:a9:f9:22:cc:f6:fb:5d:93:3d:70:1c:7e:c3:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=b842abad448d4fcbb2ed1879cc88da38657edd68c407fdb6f588aaf5e3376fd6, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8f:57:a6:2e:0b:68:b1:ee:18:67:35:96:b7:
6e:57:e2:34:d2:da:53:a4:f2:86:e0:f2:68:60:5e:
88:2d:8e:70:29:c6:6c:9c:b5:c7:9d:f3:68:8e:12:
09:bd:66:e4:1b:21:4d:bc:f4:38:9e:78:ac:e2:dc:
28:e2:14:76:19:81:17:0c:43:1c:6f:cc:a5:ae:c9:
81:18:ec:6e:a3:a6:ef:77:ca:c7:4e:fe:d9:9e:0d:
dc:0e:af:53:bd:13:5d:fe:7c:b9:20:3c:3b:dd:36:
ad:43:d9:3e:f9:13:7b:a0:f3:c8:b1:6f:23:bc:91:
2b:ac:cc:53:61:b5:49:01:d3:54:47:f1:61:95:4c:
37:e4:d8:8a:1d:9d:bb:c5:e1:f4:28:bf:4e:09:e6:
9c:36:91:aa:be:db:1a:2b:6f:b5:c1:eb:84:e8:87:
3b:82:f7:8c:96:c7:5b:92:74:69:ff:98:f8:dc:90:
3d:df:d8:de:8d:59:ff:87:8b:6f:42:06:2e:d6:2b:
54:3d:7d:fd:f2:65:73:3b:e1:a1:5e:9d:05:4f:8b:
bb:a8:11:cc:25:69:6e:dd:1c:47:b5:dc:d5:a7:ac:
67:65:60:d1:e3:0a:7d:01:65:8c:8a:c7:60:0b:0f:
80:87:79:da:ad:f8:69:07:27:70:9f:ce:50:fe:4c:
c0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:17:2C:AA:BB:90:AE:00:04:DC:87:2C:83:EC:83:7B:4C:36:90:A9
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/c7ebe19f-8477-476a-894a-ce55eb72ce4b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6f:75:e3:66:e6:1f:1c:e6:1d:f0:5d:dd:27:5b:15:55:1f:c8:
75:4b:37:9b:a3:28:ef:85:b7:45:e8:43:1f:a5:35:07:09:c8:
5f:f8:a5:04:db:7b:5c:bb:f2:12:54:8f:1d:b8:e2:1b:f1:1a:
05:4a:02:bb:bd:e6:c7:37:be:72:6e:31:fb:64:ec:7b:2e:06:
f1:38:76:59:71:00:1e:12:3b:0d:40:a9:c9:f7:fa:9f:c4:15:
f9:a0:26:d9:97:d3:6a:89:6e:0b:77:97:87:cc:75:a2:d7:fa:
20:ab:1f:06:54:06:48:8b:b6:96:93:05:41:d3:a5:12:b9:e1:
29:5e:22:35:3f:c2:8a:6d:95:d1:33:ff:7b:b7:58:e5:a8:72:
ec:6a:10:ab:95:85:3a:a5:d4:4f:16:12:ea:ca:ab:a2:e0:d2:
d1:08:ce:98:27:85:4d:63:9c:45:ef:71:db:50:40:10:84:3c:
65:c7:33:50:c8:04:a0:7f:ac:a3:89:be:0c:dc:9a:1b:33:6e:
10:ad:f7:bf:83:e5:3d:8c:1d:3f:ba:fb:ae:7d:a4:d4:b2:cd:
da:6a:99:ac:a9:72:d2:ae:43:6f:bd:5e:ad:fc:e5:67:3a:44:
17:19:6e:50:08:a8:cd:d7:95:88:1f:9c:50:58:6d:5a:9b:7a:
7b:92:14:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 16:40:22 2024 by rpki-client on console-ams.rpki-client.org