Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2ff17242-6969-405d-8fb0-659ea027b7bd.roa
File: 2ff17242-6969-405d-8fb0-659ea027b7bd.roa (raw, json)
Hash identifier: 8RUGIMoZo5X9sYn9I6aBCyFotKSZO8YKb9cCbbTKvsU=
Subject key identifier: 2E:1D:18:18:F7:7C:73:52:C6:C9:A2:C2:E8:A1:BB:31:A2:07:9B:E0
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 75431CC51EE1A7571B821E41F62BC78820E37D20
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2ff17242-6969-405d-8fb0-659ea027b7bd.roa
Signing time: Fri 06 Sep 2024 00:00:00 +0000
ROA not before: Fri 06 Sep 2024 00:00:00 +0000
ROA not after: Fri 11 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:43:1c:c5:1e:e1:a7:57:1b:82:1e:41:f6:2b:c7:88:20:e3:7d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 6 00:00:00 2024 GMT
Not After : Oct 11 23:59:59 2024 GMT
Subject: serialNumber=fa9ba92f00ac862e7f68cbf8976402daf8426d3bd5d251f84064698ab8038aa6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:97:1c:4d:d2:61:d1:df:b3:15:d4:15:f6:07:
35:78:37:a8:7a:ac:4f:21:a3:49:f1:ad:db:11:96:
b3:6a:24:94:8b:de:08:70:de:84:d1:34:8b:54:e8:
e1:b3:b2:8a:60:eb:73:67:5f:fe:d8:c9:fc:7a:9a:
03:db:37:02:46:47:5d:37:60:b8:75:d9:51:b2:07:
8c:4f:bf:b1:d5:d6:40:23:f8:3e:8c:39:10:42:85:
70:8f:7e:00:57:42:3f:50:12:99:db:b9:54:0c:66:
a8:3d:ef:c4:ba:05:e9:cb:b5:ac:1d:02:c1:5e:31:
cd:7d:82:47:ca:fa:3f:64:05:38:08:0f:ee:b6:19:
20:0a:dd:81:c3:04:e7:a0:94:38:6d:70:5c:af:be:
ac:44:f2:79:f6:2f:21:97:a1:14:f8:37:61:b5:a7:
79:b9:59:66:c7:1a:a7:30:3f:f4:ea:34:99:d2:aa:
d2:94:61:bc:69:a0:91:49:bc:e7:9f:89:a6:8e:82:
c5:e7:dd:52:3c:6b:47:7e:2f:83:23:4c:41:7d:04:
3b:b4:7b:92:45:d2:37:e4:6f:93:2a:7b:68:2e:32:
9b:ad:d8:ff:44:78:dd:90:c2:61:e4:3f:f5:e0:2a:
34:0d:ad:3f:aa:28:47:b5:2f:f3:c3:f7:93:86:cd:
3a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1D:18:18:F7:7C:73:52:C6:C9:A2:C2:E8:A1:BB:31:A2:07:9B:E0
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2ff17242-6969-405d-8fb0-659ea027b7bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:8000::/40
Signature Algorithm: sha256WithRSAEncryption
68:f5:52:25:6e:d9:31:28:1e:5b:2c:06:50:57:6e:46:6f:4d:
92:36:5b:09:d0:98:85:20:24:ac:69:8f:c9:d1:67:af:6f:ec:
60:8e:56:dd:b6:c5:ad:a4:51:99:be:03:98:6d:9d:31:d2:e2:
4d:9b:9b:f2:7c:45:9f:cf:a6:89:79:85:12:e8:da:97:a2:84:
9c:b1:5e:41:a6:20:78:06:0a:f0:f0:0d:49:99:f0:3b:90:ac:
d9:22:d7:88:f2:bb:6f:5f:c0:ea:80:0b:bd:3a:2e:8f:46:be:
2d:18:ec:44:81:61:16:d1:0f:34:26:92:f9:e7:ec:c9:b5:08:
b1:3d:c3:21:f1:f4:50:d1:b7:69:79:89:9a:8f:da:57:e4:10:
03:fa:e9:22:ed:1c:f0:7e:1f:91:22:18:23:3d:a3:a1:80:83:
85:ce:e8:bd:9a:ea:6d:65:75:86:de:d3:cd:a3:a1:94:4f:83:
fe:dc:f4:27:95:48:c8:f7:59:b1:f2:c5:f2:03:27:20:73:1f:
a5:7a:17:ed:f7:f8:07:4c:94:f3:34:ef:82:89:52:b8:d0:86:
92:7b:c9:55:ed:35:e7:d3:d7:83:d3:38:5b:28:f3:92:ac:75:
2d:0b:37:63:5b:a9:b5:33:f5:c9:be:bb:b2:4e:33:42:dc:bb:
55:10:ba:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 01:39:48 2024 by rpki-client on console-ams.rpki-client.org