Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/056ba6e3-7c55-40b5-9c67-9ca2afb3d662.roa
File: 056ba6e3-7c55-40b5-9c67-9ca2afb3d662.roa (raw, json)
Hash identifier: Xlgo4L+NzYAUX5Kt+hEboG7gWrzKOOTyfi8owxZIX+k=
Subject key identifier: E2:45:E8:36:24:E1:00:92:B8:7B:1D:0D:50:2E:A2:DA:41:CA:54:24
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 34872F204C18D4B6462071AC091402B9A070AEEF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/056ba6e3-7c55-40b5-9c67-9ca2afb3d662.roa
Signing time: Tue 19 Nov 2024 00:00:00 +0000
ROA not before: Tue 19 Nov 2024 00:00:00 +0000
ROA not after: Tue 24 Dec 2024 23:59:59 +0000
asID: 7224
IP address blocks: 46.51.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:87:2f:20:4c:18:d4:b6:46:20:71:ac:09:14:02:b9:a0:70:ae:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 19 00:00:00 2024 GMT
Not After : Dec 24 23:59:59 2024 GMT
Subject: serialNumber=4170756cf0b7e1785ef9263590821f8bd22539b05d823986d52f810080105846, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:45:ef:5b:fd:60:1d:33:3d:70:e0:46:53:2c:
0e:7f:82:07:e4:99:4a:e1:4d:a0:0f:a3:15:7d:52:
5e:ef:62:e9:0d:b4:f4:93:32:df:07:59:b9:03:a9:
21:6f:6e:74:05:29:8a:1e:24:20:ef:cc:2f:d7:df:
ae:4d:db:5c:c8:da:02:2e:f0:06:36:e1:3c:5c:fc:
46:e2:8c:e0:e4:60:60:dd:81:67:29:d4:d8:70:4b:
6f:02:70:c3:fb:88:2b:53:bf:4a:54:8e:1b:0b:a5:
b4:a2:2c:8f:a7:55:ee:30:4e:ba:6f:60:34:30:9c:
31:42:5d:ae:46:0f:67:97:e7:5f:02:39:df:55:95:
98:86:6c:a3:cf:e9:b7:26:9b:cc:cd:22:b8:6d:0b:
6f:4b:7f:77:9c:49:29:af:23:53:4a:93:09:b4:b5:
b2:cd:3b:b6:31:39:e1:e3:66:0d:31:3d:61:89:43:
6e:3c:b2:aa:15:db:07:27:a8:f6:44:7e:9a:15:28:
de:ef:52:20:a3:f8:a0:be:c6:f0:7c:c1:a6:6f:93:
be:e4:ad:55:cf:1c:e0:b0:78:d7:f9:6f:b2:12:49:
86:5a:7b:39:c7:29:79:05:a0:24:4b:57:2a:76:5c:
07:1e:04:51:45:b1:bc:ee:c7:1d:d9:4a:26:e4:51:
ca:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:45:E8:36:24:E1:00:92:B8:7B:1D:0D:50:2E:A2:DA:41:CA:54:24
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/056ba6e3-7c55-40b5-9c67-9ca2afb3d662.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.128.0/17
Signature Algorithm: sha256WithRSAEncryption
57:0d:7d:f6:68:5c:56:21:da:b2:41:0b:79:b3:c7:dd:78:bf:
f0:a6:50:33:37:c1:8b:f3:68:4c:1a:44:53:a4:87:1a:88:f1:
c4:14:d8:1f:d6:11:8f:06:88:ba:df:3d:4d:72:91:0f:e7:9d:
1e:36:ef:ad:e0:df:ee:31:51:a9:18:5a:38:d5:f1:b8:08:7e:
ff:39:db:b3:e3:91:94:e2:5e:96:77:77:ac:e8:4a:91:0d:05:
af:b7:79:f2:8f:b1:32:41:49:0d:3e:57:a5:f6:10:75:fe:f4:
e5:4b:1c:b4:78:09:50:0b:56:88:5d:bb:e3:d8:85:cc:c1:d5:
ec:a6:3e:3e:04:2e:5f:67:4f:72:d4:76:23:dc:cb:cf:92:77:
c0:e9:10:01:93:eb:4d:28:75:c8:1f:44:bf:b1:36:ba:90:6a:
6e:0d:8e:e6:6c:ab:6a:25:a6:c7:7e:08:90:dd:d9:a9:17:8f:
a2:15:4b:3a:3f:f6:04:25:f2:18:18:8a:2b:65:74:90:53:01:
77:38:3b:c1:d6:94:e5:b8:d5:91:da:79:77:16:30:c1:5e:fc:
64:35:55:eb:0d:58:09:17:22:15:98:f1:61:ca:44:7e:30:ab:
18:79:fe:ef:6d:9d:5a:59:30:7a:a9:0a:86:02:61:5e:42:28:
fb:3e:e3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:30 2024 by rpki-client on console-fra.rpki-client.org