Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
File: 24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa (raw, json)
Hash identifier: qpaxJEoclI/8DcRkfJgIw/7Ku0oSyRw2/HQhg//fpOw=
Subject key identifier: 19:6A:7C:54:89:C2:16:59:C5:6F:AF:E1:4E:CE:F7:56:09:2E:12:65
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 67242D2AF141D99E517444FD450EEB28F1F8929A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
Signing time: Fri 15 Nov 2024 00:00:00 +0000
ROA not before: Fri 15 Nov 2024 00:00:00 +0000
ROA not after: Fri 20 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:24:2d:2a:f1:41:d9:9e:51:74:44:fd:45:0e:eb:28:f1:f8:92:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 15 00:00:00 2024 GMT
Not After : Dec 20 23:59:59 2024 GMT
Subject: serialNumber=814241c4167368a682dfcfbc36435fcf031ff235a95e4e11dc0f11049a3f25d2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:d8:1f:09:16:70:91:9d:76:90:6f:c0:19:d5:
a5:11:ad:53:24:c9:1f:c3:84:7f:fa:6b:ba:7f:e3:
c8:48:b4:f8:c8:49:cb:29:07:4f:9d:72:37:a3:30:
cb:64:76:54:10:85:ee:44:68:c4:58:c9:01:37:97:
65:32:fc:fd:80:da:c1:2c:ea:b0:f9:c1:b5:64:57:
c4:fa:2b:57:1e:75:43:5e:35:b1:91:e5:9c:bb:65:
e4:01:ed:21:6b:7f:96:d8:40:98:e1:ad:23:3f:05:
08:9e:8f:e6:91:87:0f:88:40:af:a7:69:e6:da:33:
ef:3d:57:fa:bc:5a:aa:e9:23:a1:2f:77:fe:86:37:
b7:34:46:e0:35:b4:71:d0:0f:9e:3b:09:5d:49:90:
cb:7f:ac:d3:f9:54:f5:24:c9:3b:72:27:9e:72:78:
9f:37:58:05:5f:96:e3:eb:76:b9:35:2f:c2:c4:42:
8d:e1:9e:c8:3e:6b:ad:ef:a2:0a:c0:46:63:df:2f:
70:73:5b:ac:0a:27:df:a6:bb:09:6a:f1:6a:ae:d3:
49:9a:5d:5b:3a:12:93:c9:07:1d:4a:95:e5:eb:fa:
84:f0:50:a8:27:6f:28:5f:eb:8c:ef:31:1b:1e:29:
f6:85:d0:bf:46:30:fa:2c:f1:23:2f:87:2b:52:1d:
7d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:6A:7C:54:89:C2:16:59:C5:6F:AF:E1:4E:CE:F7:56:09:2E:12:65
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/24cb2bd5-37da-4fe1-b8de-cc59bc9d5511.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:8000::/40
Signature Algorithm: sha256WithRSAEncryption
15:46:60:81:63:4d:d6:0a:db:31:19:2b:66:3b:50:b3:08:26:
cc:12:9e:c1:e7:3e:f1:7d:34:3c:a5:71:4f:b2:23:9b:e3:da:
16:3a:26:3e:e2:fd:1b:e5:20:b5:99:ce:89:38:d9:6b:a9:8b:
97:26:25:5d:51:bd:9f:b6:a1:c0:64:9c:39:93:cc:62:a4:d7:
91:8d:88:4d:27:e5:4d:0d:07:b6:b7:ac:93:b0:94:56:18:00:
26:56:d6:6e:f6:4c:05:a4:6c:1f:af:f4:ac:51:72:7e:ea:09:
97:15:d7:ab:62:0c:69:6e:1c:2b:a3:57:e1:43:cc:b3:7c:ce:
cb:58:ef:91:e2:a6:ed:ae:7d:84:76:1e:4a:32:25:64:05:c2:
5d:13:ad:81:6d:5f:44:3a:fa:4c:f1:85:5c:43:bb:f2:3e:5a:
b7:97:4b:07:5f:1d:04:17:ee:f7:8e:9b:c6:66:64:fc:4e:55:
8b:b8:44:64:86:76:eb:02:3d:0d:3b:b9:1a:6e:f4:4d:ef:d3:
28:2b:57:78:16:ec:2a:04:7a:7c:bf:43:35:8e:72:86:f5:e1:
fd:84:11:12:61:bd:e4:a2:eb:ce:92:bd:4f:87:63:92:6d:f6:
bc:aa:83:9c:9d:8b:0e:94:15:b7:70:17:b0:4a:3f:26:bc:9b:
09:83:df:9e
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUZyQtKvFB2Z5RdET9RQ7rKPH4kpowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDExMTUwMDAwMDBaFw0yNDEyMjAyMzU5NTlaMHoxSTBHBgNV
BAUTQDgxNDI0MWM0MTY3MzY4YTY4MmRmY2ZiYzM2NDM1ZmNmMDMxZmYyMzVhOTVl
NGUxMWRjMGYxMTA0OWEzZjI1ZDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANXYHwkWcJGddpBvwBnVpRGtUyTJH8OEf/prun/jyEi0+MhJyykHT51yN6Mw
y2R2VBCF7kRoxFjJATeXZTL8/YDawSzqsPnBtWRXxPorVx51Q141sZHlnLtl5AHt
IWt/lthAmOGtIz8FCJ6P5pGHD4hAr6dp5toz7z1X+rxaqukjoS93/oY3tzRG4DW0
cdAPnjsJXUmQy3+s0/lU9STJO3InnnJ4nzdYBV+W4+t2uTUvwsRCjeGeyD5rre+i
CsBGY98vcHNbrAon36a7CWrxaq7TSZpdWzoSk8kHHUqV5ev6hPBQqCdvKF/rjO8x
Gx4p9oXQv0Yw+izxIy+HK1IdfT0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQZanxU
icIWWcVvr+FOzvdWCS4SZTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MjRjYjJiZDUtMzdkYS00ZmUxLWI4ZGUtY2M1OWJjOWQ1NTExLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HeA
MA0GCSqGSIb3DQEBCwUAA4IBAQAVRmCBY03WCtsxGStmO1CzCCbMEp7B5z7xfTQ8
pXFPsiOb49oWOiY+4v0b5SC1mc6JONlrqYuXJiVdUb2ftqHAZJw5k8xipNeRjYhN
J+VNDQe2t6yTsJRWGAAmVtZu9kwFpGwfr/SsUXJ+6gmXFderYgxpbhwro1fhQ8yz
fM7LWO+R4qbtrn2Edh5KMiVkBcJdE62BbV9EOvpM8YVcQ7vyPlq3l0sHXx0EF+73
jpvGZmT8TlWLuERkhnbrAj0NO7kabvRN79MoK1d4FuwqBHp8v0M1jnKG9eH9hBES
Yb3kouvOkr1Ph2OSbfa8qoOcnYsOlBW3cBewSj8mvJsJg9+e
-----END CERTIFICATE-----
Generated at Sun Nov 24 23:07:44 2024 by rpki-client on console-ams.rpki-client.org