Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1de09e6a-4b24-4aab-95d6-9e1b8fd34f67.roa
File: 1de09e6a-4b24-4aab-95d6-9e1b8fd34f67.roa (raw, json)
Hash identifier: k0SCu8XD0TRZvJVjOrrwbK0NYAPzgt+OzTWdTM5O1Ak=
Subject key identifier: 32:0D:8D:26:11:A3:5D:CA:16:68:CA:C2:AB:2D:47:F1:43:7A:A4:26
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 42D5E22003D00D5B6F9BCB21C12D050D0005AAC5
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1de09e6a-4b24-4aab-95d6-9e1b8fd34f67.roa
Signing time: Wed 17 Apr 2024 00:00:00 +0000
ROA not before: Wed 17 Apr 2024 00:00:00 +0000
ROA not after: Wed 22 May 2024 23:59:59 +0000
asID: 8987
IP address blocks: 176.32.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 23:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:d5:e2:20:03:d0:0d:5b:6f:9b:cb:21:c1:2d:05:0d:00:05:aa:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 17 00:00:00 2024 GMT
Not After : May 22 23:59:59 2024 GMT
Subject: serialNumber=e858e0d30330e53763380eaea4c489764b497f9ca3777a16cebcfb59c82fc264, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:67:f6:7e:31:5e:19:18:f8:ae:06:3b:ab:ed:
3d:22:55:7b:f6:80:85:d2:ed:bc:8f:25:10:ba:1d:
1f:0e:01:fa:43:8d:80:ea:87:22:66:f8:b4:ed:a1:
f6:5b:a5:04:22:70:bf:6b:ab:f0:15:06:55:37:31:
9a:49:15:13:a5:00:8f:be:2a:e2:17:e7:66:f1:c8:
de:00:e3:bc:38:71:c7:5c:a7:7f:bd:e0:6f:72:78:
68:5d:b4:62:5b:ba:5c:4e:e9:0b:6f:b5:e2:56:e1:
9f:6d:75:12:03:04:30:21:da:c9:5b:bc:76:56:78:
0d:1d:ca:50:f5:35:34:30:ae:99:7c:3b:34:ef:ee:
80:8d:8d:e5:43:20:a3:8f:75:0c:f4:c9:e2:ed:f3:
3f:f6:35:68:2d:a4:f7:a6:69:12:24:83:a9:d8:f2:
d9:17:05:5c:20:df:1a:16:35:90:5c:ce:a8:a8:09:
a3:f5:ee:af:f5:6b:7e:05:f1:f1:28:ae:79:5a:2a:
de:87:34:89:69:80:6c:62:a4:e5:ca:07:79:84:47:
60:b5:7f:82:dc:3e:3e:1c:be:1e:97:ff:cf:57:ca:
40:90:ab:c9:63:22:36:53:92:e2:b4:e9:7a:c9:51:
3d:16:f0:62:71:0c:48:75:dd:ea:30:c1:be:f2:d2:
4d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0D:8D:26:11:A3:5D:CA:16:68:CA:C2:AB:2D:47:F1:43:7A:A4:26
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1de09e6a-4b24-4aab-95d6-9e1b8fd34f67.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.64.0/18
Signature Algorithm: sha256WithRSAEncryption
c0:de:70:43:e1:a8:27:df:54:5d:49:e5:6b:48:90:cd:f8:5e:
11:cf:07:e3:04:1a:f5:f5:88:c7:cf:1c:ef:0c:da:1a:8b:bd:
ee:cc:fe:b7:ee:aa:a2:75:3e:d9:69:24:c8:d9:0b:3a:57:f5:
86:18:36:5c:d0:40:2b:3f:5d:32:6d:37:9d:87:59:3b:6c:3f:
91:88:25:12:2a:7b:28:9e:26:61:c3:c0:79:61:b3:c3:dc:7c:
64:32:51:c6:b6:d7:64:06:d8:32:e2:35:90:7b:e9:40:17:0b:
f7:fe:c9:2c:4c:bb:c0:87:85:2c:fc:65:a3:46:82:cb:3c:04:
5c:71:46:2f:86:e1:dc:50:0d:33:e3:43:66:3b:bc:92:fb:29:
26:64:f6:82:6c:94:70:b9:67:18:0b:14:98:15:9c:5f:93:ad:
55:32:38:a4:ae:e4:95:d6:99:fd:84:3c:ac:af:a9:eb:72:9f:
f5:a4:c0:9b:a7:62:fa:36:ee:64:4c:52:93:86:fe:72:2a:c2:
96:b1:a4:91:22:c7:5a:4c:9d:fb:df:b5:02:6d:93:9a:e5:10:
ad:20:16:81:4a:c9:c0:1f:1f:6b:1c:7f:1e:d2:ec:2b:d8:40:
a7:17:88:9f:83:c8:cf:4e:07:dc:46:5b:a5:85:b7:5c:57:c7:
30:c3:88:f8
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUQtXiIAPQDVtvm8shwS0FDQAFqsUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA0MTcwMDAwMDBaFw0yNDA1MjIyMzU5NTlaMHoxSTBHBgNV
BAUTQGU4NThlMGQzMDMzMGU1Mzc2MzM4MGVhZWE0YzQ4OTc2NGI0OTdmOWNhMzc3
N2ExNmNlYmNmYjU5YzgyZmMyNjQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMVn9n4xXhkY+K4GO6vtPSJVe/aAhdLtvI8lELodHw4B+kONgOqHImb4tO2h
9lulBCJwv2ur8BUGVTcxmkkVE6UAj74q4hfnZvHI3gDjvDhxx1ynf73gb3J4aF20
Ylu6XE7pC2+14lbhn211EgMEMCHayVu8dlZ4DR3KUPU1NDCumXw7NO/ugI2N5UMg
o491DPTJ4u3zP/Y1aC2k96ZpEiSDqdjy2RcFXCDfGhY1kFzOqKgJo/Xur/VrfgXx
8SiueVoq3oc0iWmAbGKk5coHeYRHYLV/gtw+Phy+Hpf/z1fKQJCryWMiNlOS4rTp
eslRPRbwYnEMSHXd6jDBvvLSTYsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQyDY0m
EaNdyhZoysKrLUfxQ3qkJjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MWRlMDllNmEtNGIyNC00YWFiLTk1ZDYtOWUxYjhmZDM0ZjY3LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBrAgQDAN
BgkqhkiG9w0BAQsFAAOCAQEAwN5wQ+GoJ99UXUnla0iQzfheEc8H4wQa9fWIx88c
7wzaGou97sz+t+6qonU+2WkkyNkLOlf1hhg2XNBAKz9dMm03nYdZO2w/kYglEip7
KJ4mYcPAeWGzw9x8ZDJRxrbXZAbYMuI1kHvpQBcL9/7JLEy7wIeFLPxlo0aCyzwE
XHFGL4bh3FANM+NDZju8kvspJmT2gmyUcLlnGAsUmBWcX5OtVTI4pK7kldaZ/YQ8
rK+p63Kf9aTAm6di+jbuZExSk4b+cirClrGkkSLHWkyd+9+1Am2TmuUQrSAWgUrJ
wB8faxx/HtLsK9hApxeIn4PIz04H3EZbpYW3XFfHMMOI+A==
-----END CERTIFICATE-----
Generated at Fri Apr 26 06:08:15 2024 by rpki-client on console-ams.rpki-client.org