Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2dc7b564-c3e1-49ef-a78c-f36f4139b43f.roa
File: 2dc7b564-c3e1-49ef-a78c-f36f4139b43f.roa (raw, json)
Hash identifier: CtMjp7db4BobpgWLlX8fg25VWhsJegKbFcMML8f/uAQ=
Subject key identifier: 7F:0E:2F:DD:F2:27:1A:4C:48:ED:60:B6:F1:A9:B2:2B:0E:3E:7E:B3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2EAC6AC1801E5B41D59B9E0D8E03DBE0FCBE2A55
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2dc7b564-c3e1-49ef-a78c-f36f4139b43f.roa
Signing time: Fri 30 Aug 2024 00:00:00 +0000
ROA not before: Fri 30 Aug 2024 00:00:00 +0000
ROA not after: Fri 04 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d078:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:ac:6a:c1:80:1e:5b:41:d5:9b:9e:0d:8e:03:db:e0:fc:be:2a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Aug 30 00:00:00 2024 GMT
Not After : Oct 4 23:59:59 2024 GMT
Subject: serialNumber=ef27cb554bdaad9a3d96787223f9d1d68b14fe45507ace7e16112755be5a951d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d3:3c:28:56:f3:c2:81:da:ba:2e:dd:15:7c:
9a:33:4c:6b:69:80:8d:8d:4b:c3:6d:bb:c1:10:c8:
2e:79:05:42:ae:3f:25:4d:db:2a:ac:be:4b:d1:d3:
c5:8e:d9:92:66:7d:48:f7:6f:51:79:0b:d3:c1:8f:
45:40:06:d3:f9:c6:48:52:78:50:32:88:f4:41:ec:
c6:1f:34:52:31:f8:e5:80:49:ea:af:8d:dd:be:5b:
36:e2:93:49:20:fa:4a:56:68:cb:23:41:04:06:38:
ef:8a:29:d8:f2:90:d4:32:51:5b:46:c2:f4:02:b9:
54:6e:36:2e:46:2a:1c:5d:09:3f:1d:fa:fb:f8:9f:
9f:35:8e:bd:9a:4e:2e:78:19:2d:84:c3:e1:1b:69:
c2:1d:45:9d:01:67:96:9d:71:d7:5f:f0:13:16:27:
bd:21:c0:2b:1d:5f:88:10:43:d7:86:7d:2a:76:d3:
be:87:00:6b:2a:9b:b1:69:d8:90:8a:fe:c4:ee:97:
f7:50:3d:c6:96:d7:b0:f5:50:6d:e7:4b:b8:d5:2e:
87:61:60:e3:9c:12:f4:82:20:75:2f:f3:b8:c1:bb:
ad:bc:5c:cf:eb:1a:e8:70:0a:c2:ab:6f:0e:38:47:
40:87:ab:2e:e3:47:bc:97:28:b6:49:a5:b4:91:04:
89:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:0E:2F:DD:F2:27:1A:4C:48:ED:60:B6:F1:A9:B2:2B:0E:3E:7E:B3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2dc7b564-c3e1-49ef-a78c-f36f4139b43f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d078:a000::/40
Signature Algorithm: sha256WithRSAEncryption
56:a3:80:49:b5:db:c8:e6:d2:ca:fb:f8:d2:61:17:72:b7:98:
ac:1b:33:55:e0:13:71:4d:c5:3c:a1:1f:92:e8:23:67:f6:9f:
7a:54:be:20:b4:37:84:ad:fb:4c:82:c2:cd:4c:15:75:9f:ea:
44:e1:4f:fb:c8:25:46:bd:29:01:3e:e6:d5:8e:dd:15:f9:fa:
7d:68:c5:94:92:0c:01:ce:f0:d2:3f:02:3a:4b:bd:2f:97:ef:
0b:fb:f7:94:aa:58:cb:4a:01:7b:bb:73:ed:05:59:78:ad:c0:
70:32:86:39:55:00:af:d4:10:2e:5d:9e:f2:31:c7:01:c4:6f:
e4:ea:db:f7:56:30:3f:eb:a7:1b:a1:67:da:b0:42:7c:d3:99:
72:37:0f:4b:e3:eb:51:4c:24:48:d3:31:8b:86:06:a6:ec:07:
97:41:3a:d4:9f:b3:7e:4f:e7:91:30:fc:eb:0b:54:5c:30:3e:
22:dd:ec:18:83:bd:87:9c:d2:00:33:a4:0e:58:be:a1:17:0f:
5f:0d:d0:1d:11:ec:00:cb:a1:91:a7:b3:71:07:0e:20:90:6e:
9d:54:45:50:5c:69:80:3d:46:c8:56:2d:23:5a:43:80:43:19:
d3:e9:7c:13:85:09:61:1c:db:61:01:8d:c6:b3:12:84:8a:af:
94:a3:6f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 01:39:48 2024 by rpki-client on console-ams.rpki-client.org