Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc5d2309-ce0f-4816-b8d0-260ce079f694.roa
File: dc5d2309-ce0f-4816-b8d0-260ce079f694.roa (raw, json)
Hash identifier: mhe6Q34+7zJnghOpUPA1HZx5inxxS2JDjT1RTSrPApI=
Subject key identifier: C2:92:A9:87:5E:95:DB:2B:C9:47:AB:D3:54:C0:9D:B0:A1:71:EC:6C
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 4F56FEB7C8AACCAE82C3E3A6E2D1687EF3574171
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc5d2309-ce0f-4816-b8d0-260ce079f694.roa
Signing time: Fri 08 Sep 2023 00:00:00 +0000
ROA not before: Fri 08 Sep 2023 00:00:00 +0000
ROA not after: Fri 13 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 212.255.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 08:03:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:56:fe:b7:c8:aa:cc:ae:82:c3:e3:a6:e2:d1:68:7e:f3:57:41:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 8 00:00:00 2023 GMT
Not After : Oct 13 23:59:59 2023 GMT
Subject: serialNumber=f2e82a4bda42df8ec19e73a11d0a024cc2cb481192bf43a59f3b835c7d5f9094, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:33:f0:14:28:1b:d7:03:16:28:fd:37:50:37:
a3:68:ab:08:ce:67:70:9a:75:59:7d:ab:72:d8:77:
f8:85:b9:39:2d:9b:30:e6:a9:21:ca:e4:5a:b2:7b:
9d:9b:c5:b8:54:01:f4:c0:24:1e:99:3a:a4:6f:a8:
75:ae:84:cc:81:c3:5e:84:63:97:99:ba:6d:2f:6f:
b8:97:0c:9e:23:3f:15:ac:62:48:31:00:2d:8c:83:
92:e5:2d:d1:28:59:ed:2f:ed:37:2e:c9:69:17:b6:
8f:f2:45:fe:dc:77:5e:05:f2:0e:cd:13:3d:d6:1a:
95:e5:6f:a9:79:6e:d7:26:97:77:98:07:9c:65:ef:
7d:76:ff:fc:da:3c:28:1d:41:5c:fe:a9:da:d7:38:
c7:34:62:6e:2d:fd:e1:ee:ca:4a:13:8f:55:08:a0:
89:9d:eb:09:43:76:70:04:e0:24:48:eb:60:7e:7c:
39:6d:e1:e4:22:58:e4:50:97:ee:14:6f:2e:5e:fa:
91:fe:f2:62:45:d6:50:af:85:57:8f:bc:03:d4:6a:
7f:03:a2:6b:37:08:0a:b2:f0:1a:74:e6:19:57:5b:
66:a6:6b:1c:41:4d:15:b0:f4:8a:b4:2c:3b:25:e6:
fa:59:7d:5c:56:27:b7:ea:40:14:8f:d2:b7:59:ed:
3c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:92:A9:87:5E:95:DB:2B:C9:47:AB:D3:54:C0:9D:B0:A1:71:EC:6C
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc5d2309-ce0f-4816-b8d0-260ce079f694.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.255.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:23:61:65:21:ca:46:e2:1a:15:eb:df:49:e4:ee:08:37:67:
78:81:22:c3:26:6d:5c:15:ea:43:28:bd:a8:92:ad:f5:2c:33:
66:6c:67:64:88:2e:8e:73:0b:08:ab:5b:6a:e6:45:8d:d1:d1:
18:ac:54:98:47:16:b5:b4:ba:13:70:fe:a4:87:2f:f4:5a:7f:
26:82:7c:08:3b:a0:c4:a0:ac:67:fc:90:85:d1:15:d0:9d:6c:
32:ad:92:09:f8:4c:ec:6e:1d:64:7a:cb:52:26:06:f9:e5:e7:
04:74:e4:a3:13:6a:90:36:38:c2:8b:94:d1:1e:ab:2a:22:e8:
c7:7f:2f:34:5f:07:57:8f:83:94:1a:e6:7a:cf:5b:36:f0:f2:
cf:10:03:76:53:37:b1:e6:56:e2:49:06:e6:db:4e:b7:9d:7b:
13:36:72:a2:c8:55:19:e7:79:5a:2f:99:54:4c:0f:9a:39:1e:
8a:72:a6:73:de:3c:7e:9e:81:44:7b:bc:c7:d5:03:ff:30:39:
d6:c6:d4:20:c1:89:2d:41:be:83:90:71:70:eb:07:4a:84:67:
a4:c0:80:c5:68:99:b9:0f:1c:eb:95:1e:75:0e:84:e0:1f:e9:
58:00:22:33:2f:02:33:c9:85:ba:74:35:cf:0d:e6:89:08:59:
e2:89:c7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 8 15:41:28 2023 by rpki-client on console-ams.rpki-client.org