Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4eac002e-4d26-4f92-ab97-0d7001e1cf2f.roa
File: 4eac002e-4d26-4f92-ab97-0d7001e1cf2f.roa (raw, json)
Hash identifier: rZCfJnS5zlyZ7dDuskpjypxXkvprkl453AUtLLzWz8o=
Subject key identifier: 45:99:98:4E:40:ED:24:37:2F:FF:90:C2:CD:DE:09:1D:A8:8B:35:39
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2AD2E7D87879D75D158D97DD2F019B6BABCDB8DD
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4eac002e-4d26-4f92-ab97-0d7001e1cf2f.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d079:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:d2:e7:d8:78:79:d7:5d:15:8d:97:dd:2f:01:9b:6b:ab:cd:b8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=a998250384ca8b91d3341ed615b758a6d2a18a2e105f6e041f2d66f334d2ec86, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cf:b3:26:38:1e:d8:2f:fb:4b:cd:49:a1:17:
1e:91:94:27:f0:00:58:37:fa:f7:ff:27:81:6a:e9:
fc:6f:8c:97:27:07:04:92:63:77:59:8c:56:97:7c:
7e:8e:3b:9c:00:d2:c7:56:4a:0a:eb:6e:4d:b3:49:
77:1d:4b:2b:ee:f8:3b:c2:06:ce:ff:37:af:67:0b:
90:b2:0d:03:1a:36:bf:25:be:ee:11:f4:fa:09:58:
16:8f:d8:f7:92:3c:9d:67:91:30:ab:1f:5e:c4:36:
a2:05:04:18:67:fe:c5:a1:4b:a0:23:0f:47:38:43:
54:fe:5a:56:49:c0:20:da:0f:1d:6b:ca:12:61:ba:
9c:b5:40:ae:ff:4d:c9:1d:9f:09:29:de:0f:53:93:
44:0d:f5:43:b7:d4:93:75:a9:a3:f0:fa:96:78:3e:
8c:45:ae:b9:57:53:7f:78:04:d6:1c:55:c6:9e:ae:
7c:df:aa:da:56:fc:e2:90:85:32:85:96:7d:81:ea:
18:78:08:3b:12:86:8d:1b:8f:00:e4:df:0b:5d:67:
bd:fa:a4:39:a1:0a:e5:96:fa:75:d9:6f:78:2f:b5:
e0:8f:3e:94:21:1a:4b:84:d7:af:1c:98:de:12:79:
34:b1:4f:bb:db:f4:0a:5a:8b:0d:c9:f2:10:2a:37:
e6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:99:98:4E:40:ED:24:37:2F:FF:90:C2:CD:DE:09:1D:A8:8B:35:39
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4eac002e-4d26-4f92-ab97-0d7001e1cf2f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d079:a000::/40
Signature Algorithm: sha256WithRSAEncryption
c5:0f:96:f3:59:a1:01:55:c4:fe:4c:59:be:f0:69:44:76:eb:
49:fb:0b:3d:60:5c:3f:1e:88:a0:b9:01:eb:d8:d9:c5:78:a3:
52:54:92:ce:65:e4:5e:96:72:f3:15:f4:84:2d:15:fd:35:03:
76:bc:2e:ad:13:21:36:24:7d:db:a7:2c:ff:a2:47:b4:4e:5e:
44:59:43:c3:32:0e:05:7e:18:fc:33:20:87:f9:0d:25:fa:c7:
f2:d3:17:cc:5a:26:67:8f:dc:28:fe:b2:29:07:99:97:55:26:
25:a1:34:aa:e5:bd:8b:9e:41:4e:ab:84:1d:a5:16:cf:af:40:
d9:d7:2a:70:1f:96:49:a6:7e:0a:be:98:e4:78:0c:b1:16:cb:
54:b1:1e:b1:3c:08:dc:b6:bb:93:f3:47:13:cc:a1:30:e5:a2:
84:c1:de:c1:c3:d1:f3:4e:f5:58:79:30:68:a9:17:aa:43:c0:
0d:03:21:f0:c1:25:11:e6:dd:c9:20:01:6f:c4:7c:11:b5:af:
91:a9:b1:20:2a:ca:60:12:15:c0:cd:77:eb:e8:a7:43:5d:8c:
b6:d6:94:21:fc:bc:93:20:1c:e0:a9:88:e6:9a:fd:39:90:4f:
94:47:c4:e3:97:42:6a:f5:fa:8c:66:29:d6:41:97:bd:d3:15:
13:63:9c:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:44:15 2024 by rpki-client on console-ams.rpki-client.org