Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fc50f617-7597-4f4e-b8f6-87763b28caf0.roa
File: fc50f617-7597-4f4e-b8f6-87763b28caf0.roa (raw, json)
Hash identifier: TZetpj19FuI2Y7R0h/amPQV428Yyeuq4WChUNGQQOtg=
Subject key identifier: CC:94:3B:CD:1D:DE:01:85:E6:89:7E:72:80:22:A4:A9:8F:64:97:D9
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 295DFE9C55557852A6258725F93F0DA21964AD6D
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fc50f617-7597-4f4e-b8f6-87763b28caf0.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.121.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.mft
rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:5d:fe:9c:55:55:78:52:a6:25:87:25:f9:3f:0d:a2:19:64:ad:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=eb75711a8a182cb9b4950fdb55254f64d9b98350b9cd30bb7e5b4524ad606e8d, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d1:2b:34:14:1a:07:98:c7:da:4c:9f:a3:af:
c0:ec:b5:f7:68:22:aa:f1:6e:66:27:ed:f1:b8:44:
f5:13:e4:dd:34:7e:ab:93:92:1b:4e:a9:78:59:60:
a5:fe:11:4c:dd:c9:ad:93:1f:54:3b:cb:58:89:41:
a5:10:2f:2f:db:e7:99:af:d5:80:c3:50:e2:0b:3d:
d1:4c:58:8c:5f:a2:4e:c6:af:75:0f:55:1f:8a:9d:
5e:10:da:f8:34:bf:83:e4:69:f8:bc:f2:fd:54:a8:
26:11:5e:ca:11:57:60:c5:1e:ce:03:55:ad:06:f6:
bc:c7:c1:9c:bd:76:70:6d:9c:bd:b9:a1:9e:e7:00:
2b:0b:39:78:96:cb:50:e5:58:7d:f5:94:a7:55:71:
91:d5:65:3c:4d:9b:35:81:c9:56:0b:d3:91:51:a3:
15:60:d3:47:2e:43:a4:fc:2a:ae:3b:9c:14:79:44:
d5:bc:85:6a:89:03:68:cc:b2:6a:f2:f9:4b:33:41:
5e:0b:62:45:28:d0:c2:8a:13:5d:26:09:6e:97:69:
c4:e6:7f:16:9d:d8:5c:7f:2a:ca:7b:cf:00:de:ec:
d5:7f:99:d6:a6:ae:e0:d4:05:60:18:6e:34:3c:a4:
f5:9d:ac:7f:0b:a8:86:81:39:22:de:f4:77:ee:a0:
82:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:94:3B:CD:1D:DE:01:85:E6:89:7E:72:80:22:A4:A9:8F:64:97:D9
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/fc50f617-7597-4f4e-b8f6-87763b28caf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.121.0.0/16
Signature Algorithm: sha256WithRSAEncryption
aa:4f:45:0a:55:3c:42:af:18:34:8d:71:36:d0:3e:82:77:91:
f2:ef:22:03:59:4d:0a:e2:d2:2d:ef:19:bb:58:5c:63:ab:e7:
04:24:a1:8b:e3:a6:16:d9:16:a8:cf:30:95:a2:0c:87:aa:5e:
35:67:aa:0e:87:54:4d:71:17:8d:02:9c:3a:43:d5:26:f6:1b:
ff:b8:fc:ea:bf:96:ef:8c:76:7c:82:76:52:5a:2a:d9:8e:ee:
cd:91:8e:e9:d1:f0:f9:3c:c6:fc:5f:08:bf:38:f2:4e:7f:25:
07:ee:8d:5b:eb:2b:fa:cb:3e:47:c6:e9:5f:1a:84:e2:5e:94:
2f:42:96:1a:44:27:7d:1e:56:89:15:b1:2b:8a:15:8e:bf:c2:
13:1d:eb:60:b4:cb:b9:1b:7b:58:64:22:52:21:6e:be:ce:66:
9a:75:38:4f:49:84:8f:87:0a:04:1d:27:52:32:7e:87:aa:a2:
a9:69:d6:75:25:98:00:08:3d:62:70:5c:8c:4f:d0:ab:85:3a:
a7:08:40:18:21:f6:89:52:95:f1:ef:28:00:da:7d:6d:39:93:
b8:1f:76:d7:7f:1e:f0:06:ef:50:b9:eb:f4:74:41:dd:3f:b3:
6b:f3:53:2b:d7:3e:6c:2a:7d:c8:78:14:49:b5:72:49:34:6a:
24:ee:7b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:35:26 2024 by rpki-client on console-ams.rpki-client.org