Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa
File: 1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa (raw, json)
Hash identifier: l6chinp3Tfot8RlWtTtE8YbGjiaVRH8vtuRxv890DgA=
Subject key identifier: A8:CA:32:14:7F:AD:E4:8A:F5:B5:31:03:83:63:D4:2A:66:ED:FD:7F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 678F289A6C6BDE1B3ABFE93E9FF095071723E2ED
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d034:6000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:8f:28:9a:6c:6b:de:1b:3a:bf:e9:3e:9f:f0:95:07:17:23:e2:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=26b4dc55ae261dac9c8701cb18b6770ce9dafcdd146b44fbd80f11a7e7c705e9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:73:48:b8:df:8b:7a:6c:29:dc:aa:d0:22:e6:
a7:a8:cc:c9:92:30:a7:82:15:12:fc:b4:3e:30:e7:
60:f8:71:34:ea:64:6f:04:c0:2f:c3:e3:12:a0:27:
d2:89:0a:13:09:aa:dd:51:df:3c:ac:a5:9c:20:a9:
ac:71:dd:66:a3:de:63:58:96:aa:9f:be:1d:bb:06:
af:80:3a:c5:f8:01:75:b7:b4:db:ab:f7:2f:88:03:
b5:f7:ca:40:40:7c:ad:d5:3b:fe:8b:9a:df:e9:04:
ac:b4:6d:91:dd:8c:30:7a:30:9b:88:ec:0a:65:33:
67:a9:8b:50:93:14:e5:af:41:27:ac:f6:7d:62:11:
8e:40:59:e8:72:eb:38:3d:c2:34:1e:95:ea:a9:f1:
4d:b6:69:6f:ac:39:7b:b0:b8:1a:64:07:7d:5f:ab:
18:4b:ed:32:87:d5:89:eb:12:df:f4:c8:13:18:d2:
b3:a5:2e:8c:ae:90:c4:90:cb:18:1c:35:f4:07:8d:
2b:5e:f4:4c:c7:74:ba:40:ec:7d:6d:a9:f1:03:ac:
7b:29:5a:08:0e:da:4b:6a:58:f4:85:58:06:ea:aa:
02:10:cd:6e:e3:2a:4a:e9:fe:1f:59:c7:92:11:ed:
ce:f2:f8:89:31:2a:ae:05:a6:1f:b2:1a:e2:cb:28:
11:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CA:32:14:7F:AD:E4:8A:F5:B5:31:03:83:63:D4:2A:66:ED:FD:7F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1ba2d063-915b-4ef5-b1b8-00d73dc8a31a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d034:6000::/40
Signature Algorithm: sha256WithRSAEncryption
c5:34:1f:41:90:a8:97:8c:09:fe:ab:67:38:da:fd:61:99:f2:
9b:18:4f:78:d4:19:ba:46:83:e8:21:ce:d0:89:f5:a5:81:04:
4f:ff:3e:8c:f1:94:58:d0:43:32:de:a4:06:e5:ae:7a:d5:65:
07:6b:ad:a8:b8:54:56:4b:9d:d5:2f:3f:86:f8:a7:e0:cb:8f:
e1:c1:f8:bf:91:bf:97:13:5b:db:31:ac:61:ec:96:65:1f:72:
8a:c5:33:78:f6:a1:f9:93:b2:f3:fb:04:74:57:97:09:99:6f:
5c:93:bc:38:ac:fe:d4:a6:d5:30:9b:ad:f1:05:71:29:48:66:
df:6a:ce:7b:37:d6:21:5f:18:0d:ed:62:be:91:c6:75:39:45:
89:e4:79:56:ed:24:af:09:7a:a0:1a:b2:3f:9f:26:5c:8c:0a:
be:68:d2:07:79:7d:63:12:a9:dc:f2:8d:5d:1a:b0:d2:84:fb:
21:62:54:8d:c3:f1:9c:5e:df:0a:a3:4a:3b:84:9d:a5:36:f4:
3f:a3:ba:39:bf:f6:35:73:f2:29:d9:41:27:5d:73:7c:d4:ae:
2b:14:9f:a3:54:b2:1a:ba:e2:38:b3:63:9e:5f:72:7b:93:80:
f6:76:49:af:26:55:73:5c:2e:1c:84:f2:4a:3d:a8:e6:a0:a9:
11:46:4a:22
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUZ48ommxr3hs6v+k+n/CVBxcj4u0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yMzA5MTEwMDAwMDBaFw0yMzEwMTYyMzU5NTlaMHoxSTBHBgNV
BAUTQDI2YjRkYzU1YWUyNjFkYWM5Yzg3MDFjYjE4YjY3NzBjZTlkYWZjZGQxNDZi
NDRmYmQ4MGYxMWE3ZTdjNzA1ZTkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJtzSLjfi3psKdyq0CLmp6jMyZIwp4IVEvy0PjDnYPhxNOpkbwTAL8PjEqAn
0okKEwmq3VHfPKylnCCprHHdZqPeY1iWqp++HbsGr4A6xfgBdbe026v3L4gDtffK
QEB8rdU7/oua3+kErLRtkd2MMHowm4jsCmUzZ6mLUJMU5a9BJ6z2fWIRjkBZ6HLr
OD3CNB6V6qnxTbZpb6w5e7C4GmQHfV+rGEvtMofViesS3/TIExjSs6UujK6QxJDL
GBw19AeNK170TMd0ukDsfW2p8QOseylaCA7aS2pY9IVYBuqqAhDNbuMqSun+H1nH
khHtzvL4iTEqrgWmH7Ia4ssoEVMCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSoyjIU
f63kivW1MQODY9QqZu39fzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MWJhMmQwNjMtOTE1Yi00ZWY1LWIxYjgtMDBkNzNkYzhhMzFhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DRg
MA0GCSqGSIb3DQEBCwUAA4IBAQDFNB9BkKiXjAn+q2c42v1hmfKbGE941Bm6RoPo
Ic7QifWlgQRP/z6M8ZRY0EMy3qQG5a561WUHa62ouFRWS53VLz+G+Kfgy4/hwfi/
kb+XE1vbMaxh7JZlH3KKxTN49qH5k7Lz+wR0V5cJmW9ck7w4rP7UptUwm63xBXEp
SGbfas57N9YhXxgN7WK+kcZ1OUWJ5HlW7SSvCXqgGrI/nyZcjAq+aNIHeX1jEqnc
8o1dGrDShPshYlSNw/GcXt8Ko0o7hJ2lNvQ/o7o5v/Y1c/Ip2UEnXXN81K4rFJ+j
VLIauuI4s2OeX3J7k4D2dkmvJlVzXC4chPJKPajmoKkRRkoi
-----END CERTIFICATE-----
Generated at Mon Sep 11 16:32:02 2023 by rpki-client on console-fra.rpki-client.org