Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/26c0d0b7-a86e-46e0-b9ac-92bdbae4fe99.roa
File: 26c0d0b7-a86e-46e0-b9ac-92bdbae4fe99.roa (raw, json)
Hash identifier: ekqyKT0+MH0AnNpCQia2N0VqV1c45GRReXi+OEZUx3Y=
Subject key identifier: A6:86:EC:89:7A:EA:C7:63:20:82:B2:CA:53:DE:0D:DA:64:26:CE:F2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4EFE0E925D2B51B3000287749BF6E2E1250BDD38
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/26c0d0b7-a86e-46e0-b9ac-92bdbae4fe99.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:fe:0e:92:5d:2b:51:b3:00:02:87:74:9b:f6:e2:e1:25:0b:dd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=ec58735d384bd3304a9227d4192ac16006dd37ac0cae7ca09599a446bfa20ba0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:08:22:fc:f4:04:26:6b:d5:d6:45:65:22:37:
53:76:8e:8e:c0:34:f7:8c:4e:28:43:33:a3:dd:77:
f4:9b:72:92:4b:15:7b:ab:3d:75:e0:5c:d3:14:73:
3b:b4:f8:1b:38:9c:89:c7:bf:84:15:b2:ef:dc:b9:
64:f7:cb:ed:a3:87:37:87:43:78:57:d0:be:bf:b2:
ae:a5:f0:c5:d4:2a:53:3b:66:57:eb:5d:64:7b:ce:
af:93:57:51:7d:33:dc:13:17:88:e4:08:9f:84:db:
87:8c:65:2b:20:a7:b3:dc:3c:fd:a6:8c:b3:8f:e4:
57:30:7a:b0:37:1b:47:cf:83:02:75:d6:80:96:fb:
3d:86:ea:22:6a:8b:a6:d8:7f:9a:6e:12:68:f6:0b:
2d:4c:87:4b:d9:dc:d3:89:12:5f:d3:ce:93:30:71:
41:73:0c:0e:fd:3b:54:11:8e:27:23:9e:0c:d7:b1:
b5:05:b2:bd:25:cb:38:9f:d7:bc:fa:ed:48:a0:6d:
91:81:06:55:8b:99:ea:5f:52:56:a7:46:0d:48:44:
0e:8b:47:a7:0b:52:25:f6:21:0f:d8:70:f3:eb:bd:
76:b2:64:09:c2:f3:61:a0:75:cc:5e:bd:4a:60:a4:
4e:2c:9f:8f:35:e5:c4:e9:38:8f:c1:c1:ad:50:98:
47:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:86:EC:89:7A:EA:C7:63:20:82:B2:CA:53:DE:0D:DA:64:26:CE:F2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/26c0d0b7-a86e-46e0-b9ac-92bdbae4fe99.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:a000::/40
Signature Algorithm: sha256WithRSAEncryption
b9:6a:e9:d5:f3:0f:d7:80:e5:40:a4:f8:34:ad:76:d1:b1:5c:
22:46:38:5b:32:de:ff:8e:a8:ad:05:e8:74:01:2a:b7:d7:8c:
61:26:06:9b:eb:53:3c:67:a5:31:9f:f5:8d:87:ad:47:7c:27:
cf:86:88:b7:50:44:d3:e3:52:c2:67:73:16:2a:6b:35:d4:01:
ac:32:bd:d5:81:91:d5:85:ee:e2:ed:df:d1:57:ab:d8:92:b2:
dd:f8:51:9e:ea:cb:2e:cc:11:7f:8b:47:63:54:d9:08:33:95:
36:f4:72:7b:f9:ea:cc:e4:f1:6e:95:e7:76:be:6d:c7:7f:0e:
01:9d:17:a3:d7:2d:4d:52:51:d3:89:2b:89:91:41:eb:51:7b:
28:7e:f0:cb:0b:17:57:c4:eb:4c:41:98:b4:7e:bb:22:84:e8:
f3:25:76:a5:f7:f2:eb:08:b9:85:bc:6a:c3:4d:fc:60:41:44:
e3:22:79:a0:60:77:30:60:eb:bb:76:8b:72:70:07:07:5c:24:
bb:52:1a:ec:0f:8e:22:37:ed:ef:34:7e:e5:26:1e:74:50:5c:
b0:d0:31:e3:27:20:6f:36:88:11:1a:8d:38:f2:29:e3:50:91:
2f:03:43:f8:24:a0:08:55:4e:cc:af:26:ce:af:04:c0:85:61:
96:bf:8c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:44:15 2024 by rpki-client on console-ams.rpki-client.org