Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01060bed-8b00-41db-905e-7e744843b50f.roa
File: 01060bed-8b00-41db-905e-7e744843b50f.roa (raw, json)
Hash identifier: ajlenNbsVD/YWL0pjfcrnto7u8oViQymImampqBAYBI=
Subject key identifier: DC:01:D8:AA:3F:DE:2B:B8:FC:8C:32:F0:9F:99:02:87:25:1D:49:0B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 46377525B3C68DD46715D50D7DBB04DE7AA7CDD2
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01060bed-8b00-41db-905e-7e744843b50f.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:9000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:37:75:25:b3:c6:8d:d4:67:15:d5:0d:7d:bb:04:de:7a:a7:cd:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=80fbbdc786c757ea897afb34bc81210ce1e20dd05c74e882fd2ac81c4881b62f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:64:2b:72:1f:27:f1:13:7b:fa:49:a2:e0:87:
ee:ef:83:30:17:0c:5a:36:36:9a:fc:e2:88:cb:3c:
e3:b1:44:4b:1e:04:ab:a2:57:88:32:89:37:d4:62:
eb:a2:8d:18:da:8f:9a:b9:2a:18:cb:86:ac:e6:32:
ee:40:47:e1:77:6d:c0:d8:92:67:f4:f8:d3:ed:2d:
47:91:17:73:c3:0b:86:51:af:0c:75:d6:bc:dc:89:
6c:0d:a7:49:23:4d:d7:0e:f5:f4:20:a0:9c:a8:2d:
33:37:5e:6e:52:74:b2:68:8f:f5:67:ba:72:36:54:
97:f5:de:10:d3:33:94:40:cc:87:4e:df:8c:51:4c:
7e:c9:1b:29:52:21:bb:4e:3b:3f:bb:7b:05:f9:17:
7a:50:c3:8b:d8:5e:bc:e5:8a:19:c9:bb:b6:57:d2:
82:8b:a9:46:a2:e3:de:44:78:5d:7f:4a:9a:83:f5:
e1:c2:96:2b:d1:d9:4b:3a:1e:21:a6:6e:c5:3b:1e:
af:f3:79:10:c1:dc:6b:0c:8b:fe:97:81:24:a0:1e:
e8:e3:31:0d:48:b6:63:19:04:71:49:31:27:7c:78:
38:a9:10:2e:95:4e:ff:41:10:f3:76:b8:9f:80:f6:
8c:c0:3a:52:1a:5c:c0:93:d7:18:2a:3f:25:20:37:
c5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:01:D8:AA:3F:DE:2B:B8:FC:8C:32:F0:9F:99:02:87:25:1D:49:0B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/01060bed-8b00-41db-905e-7e744843b50f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:9000::/40
Signature Algorithm: sha256WithRSAEncryption
32:ba:47:6e:23:a2:80:6b:ad:ef:f8:e9:68:c5:07:86:61:e1:
8f:2a:99:27:5c:e2:62:7e:a1:ce:52:db:a4:a1:cf:25:73:ce:
3f:e7:89:5e:cb:22:36:bf:eb:ff:14:68:f9:40:3e:2f:5d:e1:
53:c0:10:85:e6:7c:2d:1a:ef:0f:66:96:dc:66:28:b3:49:2a:
ff:46:90:ac:ce:8a:71:24:53:b4:dd:fd:b6:d5:54:3d:72:b1:
81:67:cc:b5:10:0c:06:94:ba:cc:8e:02:9e:34:6d:32:1e:ce:
7d:8d:c5:31:01:ac:78:b8:c4:58:02:43:c2:90:70:22:b6:2f:
01:4c:df:aa:0a:ea:7c:7f:e1:d6:d8:2c:85:3b:81:84:73:f5:
56:56:ae:a7:c3:c2:86:e8:6f:cc:fb:3b:50:6d:3e:30:9b:93:
5f:80:e6:6f:4e:41:5b:d4:0d:a8:ea:f6:06:3a:24:73:ae:eb:
55:62:1b:ee:70:86:f8:a8:dc:5e:6c:e4:d2:16:b6:6d:40:22:
c4:65:64:19:34:38:60:59:06:f7:fe:0c:0c:d1:82:e8:12:66:
75:34:94:dd:ac:22:40:36:5a:37:e3:b4:f8:94:1c:05:c7:9c:
0f:ad:20:77:33:27:2e:49:ea:22:6c:fe:2e:cd:37:35:61:87:
b8:89:7a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 16:40:26 2023 by rpki-client on console-ams.rpki-client.org