Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa
File: e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa (raw, json)
Hash identifier: 0eeJPuIAejUSQ+9TA5KSHz2eMcxvKrDnQo+LWCjGBVs=
Subject key identifier: A0:D1:4E:3C:8A:84:E3:B9:D5:54:DC:25:CA:EE:FA:D2:20:FD:E6:DC
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3BE5D47715D9BFB7AA654D2ECC05CEB0CE96F084
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa
Signing time: Mon 11 Nov 2024 00:00:00 +0000
ROA not before: Mon 11 Nov 2024 00:00:00 +0000
ROA not after: Mon 16 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 62.230.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:e5:d4:77:15:d9:bf:b7:aa:65:4d:2e:cc:05:ce:b0:ce:96:f0:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Nov 11 00:00:00 2024 GMT
Not After : Dec 16 23:59:59 2024 GMT
Subject: serialNumber=c2c64ee8a245ab7064525d7104be75599bdb2c0631532c1c6ca44b2410570595, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:64:80:19:0f:90:b2:ef:98:99:34:52:68:97:
40:92:83:c5:8d:f1:8b:43:8e:7f:4e:3c:1e:83:4f:
53:90:31:20:8f:4c:4b:9f:9d:3b:45:79:95:20:0b:
a0:23:e9:ff:d5:22:ca:5a:66:ea:c6:67:dc:bc:21:
0b:7d:61:f5:bb:69:83:e6:f0:2a:c1:eb:6a:4d:a5:
9e:f6:f7:01:76:12:83:8b:8b:3a:e8:f5:26:5d:19:
44:e6:c3:bf:c1:4b:43:6e:1d:85:b2:78:f0:38:99:
7e:fb:be:eb:43:1e:cc:e4:2c:60:ad:d3:82:de:a1:
0c:8f:df:35:55:58:ed:6a:09:f9:f9:d7:14:03:53:
c7:bb:81:16:d0:6a:5f:97:65:95:bc:8e:a8:1d:d6:
42:4b:17:1f:4f:ed:d6:ce:af:f6:26:f1:83:cb:e8:
60:ee:f5:9b:61:36:42:7c:74:d3:e6:33:b1:cf:57:
eb:e6:c4:3e:6e:e7:8e:c6:ac:5f:fa:f0:b1:6d:e8:
1f:81:31:2c:2a:ad:49:59:be:3e:f3:56:fd:6c:b9:
04:79:3c:25:f3:66:2e:af:91:42:f9:dc:2c:e2:83:
8d:82:e9:c0:9a:51:4d:a9:42:a8:e6:2b:a4:6a:3a:
0e:47:b5:ab:53:3c:0b:23:81:6a:a8:fd:c3:56:17:
5c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D1:4E:3C:8A:84:E3:B9:D5:54:DC:25:CA:EE:FA:D2:20:FD:E6:DC
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e91c1f40-9f81-4796-b5cc-2c1fe9202cdf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.230.0.0/16
Signature Algorithm: sha256WithRSAEncryption
27:4c:88:cd:79:2f:95:d0:4e:42:f7:9a:00:8f:c1:1d:73:5d:
c7:a0:03:61:d3:72:91:b9:ef:8f:2d:9f:c0:36:a9:41:51:ed:
d2:d3:c2:91:a7:5f:94:d2:85:12:25:cc:ca:66:fc:41:34:36:
a7:0f:ab:b1:17:7d:61:89:8d:89:5e:82:32:a5:38:71:7d:34:
40:68:c3:c4:fa:4a:05:13:aa:49:60:41:63:0c:c0:f9:d3:db:
76:b0:7b:ea:57:43:79:76:1c:4b:6c:ef:49:46:86:e0:82:6a:
48:9d:12:df:fb:10:2e:94:b4:f4:04:11:53:49:7b:df:9f:92:
c1:31:df:0b:cb:d2:95:d7:3e:b3:fe:b1:98:f3:22:a4:cd:68:
12:70:36:02:38:00:27:d6:ea:40:5d:46:22:e8:14:d6:6a:b1:
da:32:ee:7f:e2:23:71:4c:b4:eb:39:71:cd:2c:35:7a:0b:d6:
0b:0a:48:ba:68:a6:29:86:4a:c1:4c:3f:1e:92:29:ac:07:0c:
2d:a2:2a:a4:6f:fd:77:0e:63:2e:a3:17:ac:90:91:a4:ab:3e:
ed:9f:d8:ec:e8:c0:01:51:3d:7f:6a:86:9f:ae:22:58:bf:46:
32:1f:d6:2c:ad:f8:61:92:3d:3d:a8:6c:09:e6:20:d4:31:7a:
71:4f:48:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:31 2024 by rpki-client on console-ams.rpki-client.org