Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d18fde79-f555-4173-b698-355d8129ae53.roa
File: d18fde79-f555-4173-b698-355d8129ae53.roa (raw, json)
Hash identifier: VrgDarh0N53oF5wSM5pWkRzbSPNomrBV/23dbkqWWlY=
Subject key identifier: EC:57:B5:4C:18:34:6F:99:EC:5D:13:4F:6C:EB:52:36:ED:34:DA:D1
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 23DDBE6C579798EC4FDD48014E9E4B1FD0362920
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d18fde79-f555-4173-b698-355d8129ae53.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 23:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:dd:be:6c:57:97:98:ec:4f:dd:48:01:4e:9e:4b:1f:d0:36:29:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=4d42afcb664d76927718ab946300cdcdd2c3a4ef7f21bcddd29b70439cb4e5e8, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f0:33:ec:7c:5a:2a:34:94:fe:b8:78:88:18:
45:23:aa:b0:6b:d0:89:6b:d6:62:4b:43:41:c2:7d:
56:4f:8f:3b:b2:85:54:ee:9e:bd:fc:7a:02:1d:84:
c4:78:d5:f2:4e:5e:69:08:73:93:03:ce:60:be:d8:
82:3c:b1:39:c4:70:f4:f1:4d:de:eb:19:e3:bd:4a:
cf:36:14:1a:05:00:69:dd:12:ea:34:70:23:fc:42:
2d:4a:af:c0:16:fe:2d:44:71:6b:b9:62:01:2b:b2:
75:7a:ea:51:5c:64:7c:f0:22:e9:ee:24:07:9f:66:
31:00:63:59:6b:ae:72:07:a2:06:12:9a:71:c9:1e:
0d:2a:6e:e2:33:c0:e7:f8:c5:ba:e7:58:ff:e4:9c:
9c:fc:e0:da:d9:b2:d8:36:2c:df:8e:6a:79:dd:14:
94:d6:47:94:bd:b1:60:49:af:bc:2c:c6:02:2a:53:
83:33:c0:4c:1b:bd:76:2a:08:37:f1:f8:87:82:d4:
19:e8:ca:30:77:26:6f:b2:4e:b4:ae:5f:4a:27:05:
b8:52:f7:34:6a:e0:e2:1a:6a:9a:6b:f1:b1:69:50:
e4:12:1e:fe:48:84:97:b4:82:ba:37:70:d1:02:d4:
50:27:2d:9f:7c:04:2c:da:2f:42:9d:f8:33:ce:da:
2c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:57:B5:4C:18:34:6F:99:EC:5D:13:4F:6C:EB:52:36:ED:34:DA:D1
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d18fde79-f555-4173-b698-355d8129ae53.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.0.0/19
Signature Algorithm: sha256WithRSAEncryption
24:76:fd:56:e5:5d:a2:65:f8:10:5d:a8:ab:65:85:ba:a8:b2:
fc:ab:4e:d8:9b:4e:f6:53:28:b0:c0:b5:6d:fe:2a:4d:9d:84:
d2:0e:a2:33:2e:b7:d9:84:f8:a8:0c:8b:5c:cb:60:a4:0b:fe:
22:0d:c8:dc:11:06:6d:1e:1f:e3:6e:eb:52:5c:fc:4b:f2:76:
c1:ac:f9:0d:91:5a:4d:a1:fc:48:e9:f0:70:a5:c2:15:98:59:
be:e3:00:c5:40:de:b2:a7:33:ad:83:54:49:59:16:f4:94:cd:
6b:51:d9:ed:81:2d:1c:8b:26:93:93:7d:e4:ad:66:6b:4e:97:
ff:dd:be:be:52:5d:ab:12:e2:fd:84:77:4a:46:fc:5e:b8:79:
68:2d:c6:79:5d:61:c1:10:37:78:22:cc:7e:8f:3d:71:d8:6b:
42:d1:2c:72:8a:0f:07:8f:74:06:c3:58:54:ae:18:2f:25:2f:
61:12:0b:82:49:d4:a5:71:ca:14:7e:ad:7f:12:ec:5b:54:1a:
ae:11:1e:9c:72:e8:73:3a:cd:b2:69:4b:57:e0:34:e4:2c:af:
8c:be:e3:c0:bd:39:e2:ee:f8:26:a9:d1:de:a4:40:82:73:92:
02:2e:54:64:eb:1a:e1:37:fc:df:8c:d9:c8:90:e0:5c:0b:f6:
48:87:8c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 02:08:54 2024 by rpki-client on console-ams.rpki-client.org