Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2f449809-abd8-4202-adc3-ce8dd1767b62.roa
File: 2f449809-abd8-4202-adc3-ce8dd1767b62.roa (raw, json)
Hash identifier: c5z3OZUugasKoKEeG0ohD5TjRa63+9/SLZYy/YLwzBs=
Subject key identifier: DA:DB:09:80:5D:07:EB:1A:6C:4D:28:4A:CF:CE:B5:E3:68:AF:C1:F9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 399E626F785864D0B5EEA9757D1AD98CC9AAED93
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2f449809-abd8-4202-adc3-ce8dd1767b62.roa
Signing time: Fri 06 Sep 2024 00:00:00 +0000
ROA not before: Fri 06 Sep 2024 00:00:00 +0000
ROA not after: Fri 11 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:9e:62:6f:78:58:64:d0:b5:ee:a9:75:7d:1a:d9:8c:c9:aa:ed:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 6 00:00:00 2024 GMT
Not After : Oct 11 23:59:59 2024 GMT
Subject: serialNumber=55ff4c55efeef2e9f4c92a5db774564661edb2c923cda928749ab73c16631707, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:63:0d:16:93:ef:3a:6c:f7:e9:e3:eb:45:10:
84:6c:c5:ef:a0:31:0e:c6:86:cf:29:77:93:6c:04:
13:07:3c:9f:81:57:b6:f7:0f:4c:01:28:4f:5a:f6:
f7:d2:ef:e7:5a:3b:c0:9d:fc:1c:97:ee:c8:88:57:
3e:ed:62:fe:14:03:2a:35:7f:80:fb:b5:cf:5b:60:
2a:cd:78:62:56:d5:31:9a:d6:53:52:d6:99:26:2b:
32:ed:14:42:b5:80:62:24:15:1c:92:39:6e:07:24:
8d:1a:75:2b:7f:76:5a:bf:5e:0b:2d:61:43:c7:66:
2b:40:52:2a:f8:24:b7:62:52:e4:5b:f4:cc:79:65:
49:e6:f0:b0:65:95:26:cb:10:80:f3:bd:01:ac:b6:
5a:03:ae:8f:1d:52:8e:f6:6d:5d:b6:c6:06:db:e8:
7a:d3:44:ee:08:05:c3:43:77:ed:13:5c:e4:9f:cb:
28:3f:e1:ee:8a:51:8c:c6:ff:d8:df:4d:b9:31:dc:
82:f6:78:11:02:fe:a1:64:2c:d4:92:d7:5d:3d:cb:
cf:11:8c:9d:13:48:eb:e0:59:ae:f8:ce:09:b1:d6:
9b:70:45:46:4a:44:45:d2:57:93:62:c2:ff:64:0e:
bf:10:1c:37:cf:69:15:e6:08:0f:58:7d:05:cd:e2:
4f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DB:09:80:5D:07:EB:1A:6C:4D:28:4A:CF:CE:B5:E3:68:AF:C1:F9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2f449809-abd8-4202-adc3-ce8dd1767b62.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:5000::/40
Signature Algorithm: sha256WithRSAEncryption
43:8a:3e:f0:db:a6:48:58:26:b1:60:2d:9d:ba:e7:d6:01:c4:
02:a4:6e:2d:b7:f7:4c:af:51:26:b6:33:bd:8c:39:5b:c1:ca:
85:3a:8d:1f:25:aa:e5:20:4d:ff:07:46:99:f2:c7:99:1e:cc:
37:31:6b:0f:e2:3e:fd:2b:4a:fd:a7:a2:87:a0:8b:93:a1:e8:
9f:f1:7a:5b:1d:13:6f:01:53:d8:2c:d1:c1:82:0c:66:06:9e:
b1:08:b6:2b:d9:62:bc:e6:bb:81:61:91:d2:8e:60:25:87:5f:
99:e2:e5:db:a5:8b:c8:88:90:89:2a:50:e6:82:d2:ff:be:67:
cb:7d:66:bd:89:87:d0:2e:ca:70:d6:90:1d:dc:fe:b1:4f:48:
f3:77:77:96:59:3a:44:b2:6f:de:21:82:b0:6d:b0:f0:01:64:
99:c4:d7:06:f7:41:1c:3e:da:7b:a6:72:f9:73:64:5a:ec:f5:
70:23:06:f0:e0:ff:4a:ff:5f:a6:de:7e:a3:3f:03:5d:1f:6a:
f4:ed:d1:db:cb:8c:a7:fd:92:00:55:03:68:4f:02:c8:f0:6b:
a9:8f:c9:91:31:d3:33:84:26:7d:4c:7f:f4:a8:b0:d2:3e:e1:
37:d8:5d:ab:a7:a2:c2:4b:aa:39:6a:c0:be:59:fc:e9:51:4d:
cf:83:b4:be
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUOZ5ib3hYZNC17ql1fRrZjMmq7ZMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA5MDYwMDAwMDBaFw0yNDEwMTEyMzU5NTlaMHoxSTBHBgNV
BAUTQDU1ZmY0YzU1ZWZlZWYyZTlmNGM5MmE1ZGI3NzQ1NjQ2NjFlZGIyYzkyM2Nk
YTkyODc0OWFiNzNjMTY2MzE3MDcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALtjDRaT7zps9+nj60UQhGzF76AxDsaGzyl3k2wEEwc8n4FXtvcPTAEoT1r2
99Lv51o7wJ38HJfuyIhXPu1i/hQDKjV/gPu1z1tgKs14YlbVMZrWU1LWmSYrMu0U
QrWAYiQVHJI5bgckjRp1K392Wr9eCy1hQ8dmK0BSKvgkt2JS5Fv0zHllSebwsGWV
JssQgPO9Aay2WgOujx1SjvZtXbbGBtvoetNE7ggFw0N37RNc5J/LKD/h7opRjMb/
2N9NuTHcgvZ4EQL+oWQs1JLXXT3LzxGMnRNI6+BZrvjOCbHWm3BFRkpERdJXk2LC
/2QOvxAcN89pFeYID1h9Bc3iT5cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTa2wmA
XQfrGmxNKErPzrXjaK/B+TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MmY0NDk4MDktYWJkOC00MjAyLWFkYzMtY2U4ZGQxNzY3YjYyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DhQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBDij7w26ZIWCaxYC2duufWAcQCpG4tt/dMr1Em
tjO9jDlbwcqFOo0fJarlIE3/B0aZ8seZHsw3MWsP4j79K0r9p6KHoIuToeif8Xpb
HRNvAVPYLNHBggxmBp6xCLYr2WK85ruBYZHSjmAlh1+Z4uXbpYvIiJCJKlDmgtL/
vmfLfWa9iYfQLspw1pAd3P6xT0jzd3eWWTpEsm/eIYKwbbDwAWSZxNcG90EcPtp7
pnL5c2Ra7PVwIwbw4P9K/1+m3n6jPwNdH2r07dHby4yn/ZIAVQNoTwLI8Gupj8mR
MdMzhCZ9TH/0qLDSPuE32F2rp6LCS6o5asC+WfzpUU3Pg7S+
-----END CERTIFICATE-----
Generated at Sat Sep 7 02:13:45 2024 by rpki-client on console-fra.rpki-client.org