Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d7fdedfc-2bdc-42cd-a714-2abbc02deae9.roa
File: d7fdedfc-2bdc-42cd-a714-2abbc02deae9.roa (raw, json)
Hash identifier: sJdb58PdOzkGKLr7NikordLIAOFx+8YIrn7P0BDlQV8=
Subject key identifier: 1B:2F:43:2F:F1:09:02:44:1A:B7:B0:AD:37:1E:2C:63:AA:5E:0F:4B
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 518BA1B0D140C07D63E6B0D63DABD1094232B5D5
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d7fdedfc-2bdc-42cd-a714-2abbc02deae9.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 51.151.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 08:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:8b:a1:b0:d1:40:c0:7d:63:e6:b0:d6:3d:ab:d1:09:42:32:b5:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=4dc9edf2698efbe52a25ceec21225a7f034ea18c5b46cab291298be81a64a353, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:73:2e:1b:ae:60:70:b7:ce:4b:4d:d2:bf:
e4:10:b4:ac:37:76:06:02:3a:dd:d9:17:20:b9:32:
bc:05:9e:8f:70:cb:e2:ef:0d:88:89:6a:cb:82:1f:
1a:61:e0:e1:03:07:8e:59:94:61:94:74:17:42:d8:
6a:75:2a:d1:ab:d1:c7:23:38:48:70:fc:c1:5b:99:
24:47:b6:85:be:5b:98:a6:d4:9c:ef:60:1d:40:ef:
12:31:85:b6:69:3b:4c:a2:f9:9d:ef:7d:65:31:5d:
2b:7c:e4:c1:5f:f4:13:6c:71:3d:7d:f3:df:22:ca:
48:c2:ae:af:b0:49:f6:2f:6d:a1:10:8c:2f:e1:78:
15:ac:b8:f8:c4:3b:33:00:1c:22:fc:52:ce:a7:68:
2f:c5:ca:36:d7:5c:da:ad:ac:40:dc:85:68:ed:26:
13:5c:25:55:9a:ec:d5:46:ee:23:cc:e5:0e:f7:df:
ee:0e:96:b9:7f:09:a3:3b:a8:2b:44:f5:b1:7e:df:
a7:e8:0c:2c:d0:0d:58:d2:af:a5:20:21:e6:79:9d:
96:a2:d4:2d:2c:ac:70:8b:14:9f:22:75:05:12:0c:
0b:aa:7c:2c:27:f8:7e:16:c5:5e:4b:92:c8:a6:d9:
11:08:0a:ee:06:cf:5a:19:d2:99:ff:6f:4e:88:41:
f1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2F:43:2F:F1:09:02:44:1A:B7:B0:AD:37:1E:2C:63:AA:5E:0F:4B
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d7fdedfc-2bdc-42cd-a714-2abbc02deae9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.151.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:eb:ae:ab:5d:fd:f0:e2:6c:88:b1:b6:1e:ff:5c:c5:d0:74:
ef:52:d0:21:a4:2b:e9:ee:3a:20:09:d5:87:60:cd:dc:84:2f:
4f:06:86:44:96:37:86:55:be:f4:86:7c:ab:80:74:93:b3:b5:
e8:74:eb:04:b2:40:bf:21:10:ab:65:98:29:31:31:f9:d9:d0:
f1:8b:bd:1f:86:35:43:04:c7:51:61:2a:9b:8d:c6:05:98:5c:
f4:4a:5c:8d:17:2f:8f:19:60:66:7d:51:e0:2c:21:2d:20:15:
e7:4b:bd:15:96:b0:d0:ac:e5:b0:0a:17:82:18:81:cd:69:9d:
35:17:ed:51:61:94:13:11:95:01:84:57:b2:d2:13:8b:0a:18:
b6:87:6f:8b:52:ba:69:3f:bd:d3:45:30:25:6e:6f:f9:ba:bf:
84:c8:5e:b9:42:f8:20:76:ff:c6:6d:2e:77:ef:59:67:40:e7:
9d:20:f6:a0:5e:ae:49:e2:72:5c:55:15:1f:3e:4d:93:2a:b7:
27:df:a9:76:23:10:f9:e9:30:52:dd:74:2a:85:45:c1:2c:21:
10:5e:0a:fc:bb:26:fe:a5:07:7c:e6:10:13:55:9b:95:9a:d7:
ea:0e:93:c7:21:83:e5:f2:a0:6a:17:fc:7e:65:74:5d:93:4d:
a4:38:e0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 15:41:28 2023 by rpki-client on console-ams.rpki-client.org