Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
File: 24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa (raw, json)
Hash identifier: T0C5Xjkc9egEkev6iPR818MqzxetXXIPrh55ifRQ7Nw=
Subject key identifier: 2C:3A:2C:33:40:D9:63:BB:9A:0B:A6:BB:09:19:FF:C8:C4:B3:1B:69
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 06C7C2BD8D6804707B2246F0F7106DF39AEA80D4
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
Signing time: Fri 29 Mar 2024 00:00:00 +0000
ROA not before: Fri 29 Mar 2024 00:00:00 +0000
ROA not after: Fri 03 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:c7:c2:bd:8d:68:04:70:7b:22:46:f0:f7:10:6d:f3:9a:ea:80:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 29 00:00:00 2024 GMT
Not After : May 3 23:59:59 2024 GMT
Subject: serialNumber=124efc0884d85256fcaed299826cfaed69acd8a1c350003bd1a4374e7466ce8e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e0:84:4b:0d:03:d7:63:eb:97:f2:27:da:bb:
43:0a:8e:98:75:00:d6:e7:6d:f1:3c:19:ba:d9:4d:
ee:fe:ee:61:19:e9:b3:4d:9e:72:9c:22:5a:6e:e1:
ef:52:1c:04:f2:f6:35:61:04:d0:7e:fa:12:2c:4f:
56:ef:f3:47:6d:a7:de:34:c7:17:d8:8a:58:fd:9d:
c2:58:91:ce:61:84:55:e1:81:4e:fb:fc:ca:f4:73:
95:3d:db:bd:18:06:48:23:b8:e7:1a:d2:07:88:f1:
3f:1e:98:50:07:c4:59:43:d8:14:71:19:83:47:67:
b3:43:89:40:2b:54:ca:39:aa:26:7b:1a:1c:4f:03:
61:f5:e7:d9:6f:e4:24:6c:3c:89:97:6c:ff:ef:23:
cd:2e:28:bc:7e:9e:00:bd:38:c3:6a:8c:8d:86:68:
0f:f4:5b:36:91:4e:ca:7b:14:04:43:71:a1:d5:69:
76:0c:9b:b6:63:c0:8f:48:51:0c:ad:7a:36:d4:e8:
6d:c1:38:26:54:a7:38:b5:85:80:98:e5:af:a1:2b:
28:8d:b2:37:d0:c4:99:1d:b0:60:8d:14:79:10:95:
e5:d4:a4:e0:0d:dd:cd:51:1c:ea:be:f4:c5:36:e1:
c3:70:f7:f9:ce:15:81:22:48:62:b8:9d:12:dc:8d:
af:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:3A:2C:33:40:D9:63:BB:9A:0B:A6:BB:09:19:FF:C8:C4:B3:1B:69
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:8000::/40
Signature Algorithm: sha256WithRSAEncryption
1a:6a:c7:91:4c:2d:58:83:14:ea:ad:c7:f2:be:47:f0:fb:37:
61:4d:8e:a0:95:f0:ca:95:38:81:d7:3d:d1:74:a3:2a:79:fe:
96:97:77:90:af:09:97:97:e4:ca:2f:96:5a:56:5d:4d:0e:2b:
f5:27:a3:af:e8:44:f2:b5:80:b2:ec:30:7e:55:ab:79:ea:91:
38:65:b7:93:3a:da:53:03:1d:37:24:b5:16:92:8a:0d:c2:93:
36:84:e8:1d:c9:8b:e8:29:e5:ae:1e:10:2d:cf:4e:70:be:65:
cd:30:d7:fd:5c:d8:e7:7e:20:f6:86:82:d3:7f:36:94:fb:2f:
5b:75:07:d5:51:19:c1:57:e5:e2:ff:db:62:13:be:09:af:33:
40:bd:9c:e4:ac:94:1c:ae:7a:e8:49:a9:3b:85:13:0a:23:c9:
e9:83:69:a7:bb:93:5b:9d:52:46:ca:54:33:ed:3e:46:32:80:
20:0c:02:3d:9d:8b:31:32:5c:3b:bf:b9:55:1d:f4:50:22:e8:
e5:80:0e:d3:c7:b1:12:c2:97:81:47:4b:cb:13:02:46:4a:71:
c5:86:8c:db:19:bc:b4:0b:28:64:c2:e2:b7:75:a0:90:81:6a:
ae:f7:86:c5:ff:f8:13:62:39:82:38:5b:e9:47:bc:9f:ea:85:
f1:e9:02:8b
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUBsfCvY1oBHB7Ikbw9xBt85rqgNQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDAzMjkwMDAwMDBaFw0yNDA1MDMyMzU5NTlaMHoxSTBHBgNV
BAUTQDEyNGVmYzA4ODRkODUyNTZmY2FlZDI5OTgyNmNmYWVkNjlhY2Q4YTFjMzUw
MDAzYmQxYTQzNzRlNzQ2NmNlOGUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANHghEsNA9dj65fyJ9q7QwqOmHUA1udt8TwZutlN7v7uYRnps02ecpwiWm7h
71IcBPL2NWEE0H76EixPVu/zR22n3jTHF9iKWP2dwliRzmGEVeGBTvv8yvRzlT3b
vRgGSCO45xrSB4jxPx6YUAfEWUPYFHEZg0dns0OJQCtUyjmqJnsaHE8DYfXn2W/k
JGw8iZds/+8jzS4ovH6eAL04w2qMjYZoD/RbNpFOynsUBENxodVpdgybtmPAj0hR
DK16NtTobcE4JlSnOLWFgJjlr6ErKI2yN9DEmR2wYI0UeRCV5dSk4A3dzVEc6r70
xTbhw3D3+c4VgSJIYridEtyNr58CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQsOiwz
QNlju5oLprsJGf/IxLMbaTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MjRjYjJiZDUtMzdkYS00ZmUxLWI4ZGUtY2M1OWJjOWQ1NTExLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HeA
MA0GCSqGSIb3DQEBCwUAA4IBAQAaaseRTC1YgxTqrcfyvkfw+zdhTY6glfDKlTiB
1z3RdKMqef6Wl3eQrwmXl+TKL5ZaVl1NDiv1J6Ov6ETytYCy7DB+Vat56pE4ZbeT
OtpTAx03JLUWkooNwpM2hOgdyYvoKeWuHhAtz05wvmXNMNf9XNjnfiD2hoLTfzaU
+y9bdQfVURnBV+Xi/9tiE74JrzNAvZzkrJQcrnroSak7hRMKI8npg2mnu5NbnVJG
ylQz7T5GMoAgDAI9nYsxMlw7v7lVHfRQIujlgA7Tx7ESwpeBR0vLEwJGSnHFhozb
Gby0CyhkwuK3daCQgWqu94bF//gTYjmCOFvpR7yf6oXx6QKL
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:02:32 2024 by rpki-client on console-fra.rpki-client.org