Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11438c8f-0517-4bd0-b3e1-4c738a71c912.roa
File: 11438c8f-0517-4bd0-b3e1-4c738a71c912.roa (raw, json)
Hash identifier: QzI8ryOebZ4oiuFKYrjSvz0n8B0MgaKqndNvi6Z/Xmg=
Subject key identifier: F3:4E:42:30:2B:66:D4:87:7B:2C:C1:A4:50:18:EF:D5:44:BD:31:A2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 59FEF270CF6B40E2915A834C12EAC996D3EA368B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11438c8f-0517-4bd0-b3e1-4c738a71c912.roa
Signing time: Tue 19 Nov 2024 00:00:00 +0000
ROA not before: Tue 19 Nov 2024 00:00:00 +0000
ROA not after: Tue 24 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:fe:f2:70:cf:6b:40:e2:91:5a:83:4c:12:ea:c9:96:d3:ea:36:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 19 00:00:00 2024 GMT
Not After : Dec 24 23:59:59 2024 GMT
Subject: serialNumber=f5124deb4059a2d53a34aa0f54232196780c0b7b5ca7992e6c184718cf9dcb0d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5e:61:1d:87:43:e7:68:41:4c:d1:e6:32:b5:
38:29:94:cc:6a:67:9e:d0:c8:04:cf:d7:55:43:bd:
f7:14:3f:d1:ec:1c:d2:27:b9:3a:96:de:42:ec:0b:
df:5e:9d:87:3b:c6:59:9a:95:c7:a2:68:8d:90:bd:
4b:65:eb:b1:12:5c:a5:8c:3d:ac:bb:d4:63:98:3b:
d0:b4:3e:4f:de:2a:b4:57:36:03:b2:e6:5a:ab:2a:
58:cc:30:43:d5:52:cb:c5:e2:3b:34:68:50:52:cc:
ba:b6:4a:8a:90:96:79:8e:5f:3e:2d:df:9e:e2:f0:
ae:d6:ad:2b:29:75:c1:0e:c3:d6:c3:ce:d6:52:58:
34:ba:ff:87:c5:77:51:96:86:92:71:7b:5a:95:f3:
da:b6:2b:81:0f:8f:ee:bb:8b:d1:a1:79:2b:f3:ec:
5d:78:f6:2f:23:05:a6:8d:42:9f:36:72:45:99:79:
2a:05:71:9d:6d:90:73:95:52:db:27:3b:8b:fd:09:
8a:84:bc:dc:e3:e9:10:10:57:19:35:66:e3:8d:fc:
24:c8:82:5c:9a:ce:9a:6a:c9:39:f1:04:82:ed:33:
09:bc:7c:8c:aa:7e:3f:03:7b:9a:ef:48:a3:2d:12:
34:27:a3:25:d8:46:b2:4e:68:f1:85:9d:61:a0:2f:
06:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:4E:42:30:2B:66:D4:87:7B:2C:C1:A4:50:18:EF:D5:44:BD:31:A2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/11438c8f-0517-4bd0-b3e1-4c738a71c912.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.32.0/19
Signature Algorithm: sha256WithRSAEncryption
32:b7:56:fa:d7:43:0b:52:88:99:cc:6a:75:7a:f1:5f:a6:bc:
15:77:d9:0a:e9:02:b4:7b:9f:9f:4c:a0:84:10:d3:1f:18:81:
19:57:49:7e:07:df:c5:43:41:a9:5a:e3:d4:0e:6d:e0:e3:84:
a9:95:c3:8f:26:f7:e1:ce:36:a7:60:6e:fb:4d:88:75:bc:85:
5b:1c:fb:47:a3:e2:f9:e7:1f:82:fe:f3:36:29:aa:de:eb:7e:
28:8a:96:59:96:b2:ef:b3:f5:1b:bd:0b:89:03:20:8b:51:92:
12:c0:6b:cf:31:e3:b8:6e:2b:27:d8:2b:fb:68:e3:2e:76:7d:
2c:1a:c1:41:20:42:28:b7:71:e1:da:91:ed:d9:cd:e7:49:76:
bc:22:d0:4e:e3:03:91:a7:ec:b8:49:d5:79:01:86:9f:1c:5a:
a8:06:31:23:23:f2:e8:91:67:95:d2:f4:f3:26:2d:dd:37:7b:
38:74:47:94:4a:0e:6d:2c:ce:4a:7b:19:8c:0c:fd:a0:25:c5:
39:c1:d6:06:7a:05:84:5f:39:77:78:cc:ad:a1:84:f8:08:94:
60:88:0b:d5:2c:55:cf:ab:f1:84:3a:78:b6:a2:59:6f:43:6d:
a8:1e:f0:07:ff:c5:5d:16:48:1a:77:6c:3f:2d:45:37:89:25:
95:c6:e5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:40:31 2024 by rpki-client on console-ams.rpki-client.org