Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5082df94-4660-4774-b6d0-01ed17f52832.roa
File: 5082df94-4660-4774-b6d0-01ed17f52832.roa (raw, json)
Hash identifier: M6rFz70XBp+o1GXCVez4uRaHOTp0lHnINsRJtX1s6tw=
Subject key identifier: B9:C2:FD:09:D2:1C:CA:D2:98:10:B6:9C:42:8F:75:32:25:0D:CE:8C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 406419C1FF38FF881ECAF27E7757AAB671C49ED1
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5082df94-4660-4774-b6d0-01ed17f52832.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d025::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Apr 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:64:19:c1:ff:38:ff:88:1e:ca:f2:7e:77:57:aa:b6:71:c4:9e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=832d0ff5f57eb81e455eb77cefab69edf7edc9f873276ba3f405513764846658, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:5e:26:7b:c1:71:13:61:11:63:b5:97:93:
b4:43:5b:b5:08:0e:3f:dc:5f:fd:c4:98:22:1b:45:
e5:83:0e:a6:5f:08:99:d7:0f:38:e0:be:b3:f2:92:
7e:01:44:2a:8d:a9:be:b3:fe:bb:80:d1:71:e9:b3:
a1:e9:f7:0c:9c:c2:f6:f0:7d:98:24:d3:32:aa:32:
a4:3b:1c:d8:26:f3:7b:a5:2a:db:82:96:d5:20:9f:
19:8c:15:d2:5f:84:e2:10:45:9a:52:b9:25:df:4c:
05:f9:75:4c:67:41:d3:3a:97:ce:59:97:e5:02:b5:
cb:ad:b7:e0:4b:9d:59:6b:59:1f:64:f4:2b:c6:e9:
7d:89:6b:19:bc:49:0b:c9:32:d0:17:9a:90:6d:e7:
37:b3:a8:52:c2:6c:26:f1:8c:72:84:41:61:f9:05:
23:07:e7:5c:c4:ff:02:cc:2f:10:0b:53:84:4e:e7:
03:9f:13:34:a4:6f:02:9e:9c:0f:87:65:dc:ae:d2:
4a:38:03:1e:33:1b:bb:ab:a0:ef:55:e9:16:a6:9c:
c5:88:51:7f:bf:5c:50:91:0c:92:e1:a4:1c:a6:5a:
af:35:20:26:cb:07:d4:ce:36:e6:f2:a2:58:64:35:
b7:26:16:cb:85:0b:29:8e:09:88:24:88:d6:11:63:
b6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C2:FD:09:D2:1C:CA:D2:98:10:B6:9C:42:8F:75:32:25:0D:CE:8C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5082df94-4660-4774-b6d0-01ed17f52832.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d025::/36
Signature Algorithm: sha256WithRSAEncryption
2e:d5:63:be:bb:68:be:b7:13:bb:85:6d:b1:77:0b:b6:bb:5d:
42:ee:e9:50:07:de:a1:40:23:33:a2:32:c7:b0:ab:88:b7:6e:
12:49:73:ec:c3:19:c6:87:cb:06:c7:8c:ca:fe:b7:6c:1f:2a:
75:f2:03:89:d0:a1:ee:7f:1e:b0:c6:2d:ba:c6:ea:9d:67:df:
18:8d:58:68:62:3e:0f:1a:13:74:ff:89:d7:49:f1:14:a7:f5:
78:43:7b:ca:f4:42:4d:63:07:8f:e1:65:06:f9:2f:09:d9:62:
48:09:ce:c9:4f:47:f0:68:46:e9:c6:1c:7a:ab:87:a1:d3:fb:
9f:bf:b9:bd:61:a1:9c:f1:f7:1d:98:1f:26:e9:fa:34:03:63:
35:7b:bc:e5:40:72:1b:f1:c9:5b:0b:7b:b0:68:2d:6c:86:a9:
d5:21:60:b6:e0:70:a1:d6:ca:0e:12:25:7c:92:51:57:5d:9d:
b5:af:cb:23:9a:77:da:54:d5:e4:92:7b:05:00:15:e0:b5:eb:
b4:91:79:c4:44:48:6a:af:41:96:71:ed:dd:85:3e:30:82:52:
ec:ee:c2:29:5a:a9:33:95:83:d9:33:76:b4:5b:40:b7:24:cd:
10:de:39:fb:7c:f4:28:c9:14:a5:94:ec:38:d7:d3:4b:b2:b2:
be:f0:df:2c
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUQGQZwf84/4geyvJ+d1eqtnHEntEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA0MDIwMDAwMDBaFw0yNDA1MDcyMzU5NTlaMHoxSTBHBgNV
BAUTQDgzMmQwZmY1ZjU3ZWI4MWU0NTVlYjc3Y2VmYWI2OWVkZjdlZGM5Zjg3MzI3
NmJhM2Y0MDU1MTM3NjQ4NDY2NTgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMqbXiZ7wXETYRFjtZeTtENbtQgOP9xf/cSYIhtF5YMOpl8ImdcPOOC+s/KS
fgFEKo2pvrP+u4DRcemzoen3DJzC9vB9mCTTMqoypDsc2Cbze6Uq24KW1SCfGYwV
0l+E4hBFmlK5Jd9MBfl1TGdB0zqXzlmX5QK1y6234EudWWtZH2T0K8bpfYlrGbxJ
C8ky0BeakG3nN7OoUsJsJvGMcoRBYfkFIwfnXMT/AswvEAtThE7nA58TNKRvAp6c
D4dl3K7SSjgDHjMbu6ug71XpFqacxYhRf79cUJEMkuGkHKZarzUgJssH1M425vKi
WGQ1tyYWy4ULKY4JiCSI1hFjtj0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBS5wv0J
0hzK0pgQtpxCj3UyJQ3OjDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NTA4MmRmOTQtNDY2MC00Nzc0LWI2ZDAtMDFlZDE3ZjUyODMyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CUA
MA0GCSqGSIb3DQEBCwUAA4IBAQAu1WO+u2i+txO7hW2xdwu2u11C7ulQB96hQCMz
ojLHsKuIt24SSXPswxnGh8sGx4zK/rdsHyp18gOJ0KHufx6wxi26xuqdZ98YjVho
Yj4PGhN0/4nXSfEUp/V4Q3vK9EJNYweP4WUG+S8J2WJICc7JT0fwaEbpxhx6q4eh
0/ufv7m9YaGc8fcdmB8m6fo0A2M1e7zlQHIb8clbC3uwaC1shqnVIWC24HCh1soO
EiV8klFXXZ21r8sjmnfaVNXkknsFABXgteu0kXnEREhqr0GWce3dhT4wglLs7sIp
WqkzlYPZM3a0W0C3JM0Q3jn7fPQoyRSllOw419NLsrK+8N8s
-----END CERTIFICATE-----
Generated at Thu Apr 18 03:34:50 2024 by rpki-client on console-ams.rpki-client.org