Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ac6fa2-24c1-44ea-9f18-30991eb06d32.roa
File: 55ac6fa2-24c1-44ea-9f18-30991eb06d32.roa (raw, json)
Hash identifier: UP8R5mVVQLRWMJcSwHttr4mpB9sw25WfZAv0SUtUEGY=
Subject key identifier: 15:F7:13:36:68:9B:54:50:02:45:87:07:3B:5A:8C:79:26:5F:28:84
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4660FBF3AF95244AA742850446A574CE38540247
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ac6fa2-24c1-44ea-9f18-30991eb06d32.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:60:fb:f3:af:95:24:4a:a7:42:85:04:46:a5:74:ce:38:54:02:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=db0d10000ef1235f6fb1fed0c5860e3df6da42c494b777251b07c00392bdd2a5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c3:72:98:f6:11:2a:68:48:d8:19:f4:f8:74:
0b:42:b2:a2:a4:69:60:08:a4:f8:56:12:02:26:20:
99:8d:51:ce:d7:0f:1f:4c:c3:59:e3:65:a0:eb:74:
55:bf:de:ba:58:95:cb:86:ee:c0:95:b8:db:a4:50:
eb:38:50:79:f1:ee:a9:3c:57:0f:2e:67:68:7a:b0:
cd:e8:4b:ea:fb:27:93:33:2e:18:e8:6a:c4:50:09:
23:90:23:72:f3:5b:50:d5:c3:40:63:e1:92:01:15:
20:bf:34:ca:ce:cb:a6:97:ff:f1:06:71:8d:d8:d7:
8f:62:49:0b:64:3f:78:ac:d6:4b:84:37:12:9b:b8:
41:50:e7:57:0b:35:10:c1:0f:fb:56:3d:dc:aa:02:
4c:bf:dc:d8:e3:74:b6:2a:1a:8b:6e:13:5a:d8:f2:
79:1a:59:5f:4f:2d:e8:8d:28:a8:92:31:0a:c3:0e:
b2:f0:83:ba:51:a4:b6:33:b1:dc:83:c9:af:b4:42:
6a:99:5e:21:a4:89:38:14:a7:9a:09:b0:da:f6:56:
98:ec:51:6f:4e:84:b0:e2:ef:be:a4:22:9e:72:48:
61:2f:83:2e:01:2e:2d:97:2a:13:4d:b4:79:55:49:
9f:d7:82:c5:43:27:64:1f:54:6b:5c:cd:a4:68:ca:
1e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F7:13:36:68:9B:54:50:02:45:87:07:3B:5A:8C:79:26:5F:28:84
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ac6fa2-24c1-44ea-9f18-30991eb06d32.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.192.0/19
Signature Algorithm: sha256WithRSAEncryption
50:2b:d4:ae:40:c0:f3:79:20:d7:4e:41:55:2f:3b:77:e5:a1:
e8:e8:05:80:73:cb:fd:64:c6:db:8e:12:35:34:90:bb:52:f3:
83:50:87:fe:11:72:2b:35:81:be:5c:1f:13:4e:9d:dd:6d:bf:
37:7e:24:c3:ce:41:1b:9d:ac:14:f9:d3:2e:53:53:29:ec:37:
b1:40:b9:d3:b7:80:e5:26:d7:38:71:c2:1d:5c:4d:88:d7:a2:
36:96:1a:b9:5f:ee:27:b7:0f:35:b0:b9:1c:22:dc:f3:49:2e:
ef:88:fc:75:52:91:54:53:40:d9:b4:82:3e:a2:8c:3a:b7:d1:
e3:b1:a0:c7:14:6f:da:ea:c0:83:00:16:07:23:ce:74:12:9e:
41:57:a1:b8:f4:0c:2d:05:6a:3e:df:f1:17:b0:a7:ee:e0:00:
d2:f9:b5:c4:d4:5b:6a:25:4c:87:84:71:fc:0a:7e:e9:37:a7:
09:20:1c:f2:8c:00:e1:1a:5c:c8:5b:91:a2:81:ec:ab:27:d2:
14:6d:7f:c7:f5:fa:1d:96:27:dd:77:2b:3e:d8:d8:7a:d3:fd:
1b:38:47:38:7e:8b:53:21:ad:91:e1:82:88:10:9a:58:68:21:
27:89:2f:67:36:30:ae:01:5a:d9:96:39:76:1c:d4:34:d6:76:
cb:43:49:ab
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIURmD786+VJEqnQoUERqV0zjhUAkcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yMzA5MTEwMDAwMDBaFw0yMzEwMTYyMzU5NTlaMHoxSTBHBgNV
BAUTQGRiMGQxMDAwMGVmMTIzNWY2ZmIxZmVkMGM1ODYwZTNkZjZkYTQyYzQ5NGI3
NzcyNTFiMDdjMDAzOTJiZGQyYTUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL3Dcpj2ESpoSNgZ9Ph0C0KyoqRpYAik+FYSAiYgmY1RztcPH0zDWeNloOt0
Vb/euliVy4buwJW426RQ6zhQefHuqTxXDy5naHqwzehL6vsnkzMuGOhqxFAJI5Aj
cvNbUNXDQGPhkgEVIL80ys7Lppf/8QZxjdjXj2JJC2Q/eKzWS4Q3Epu4QVDnVws1
EMEP+1Y93KoCTL/c2ON0tioai24TWtjyeRpZX08t6I0oqJIxCsMOsvCDulGktjOx
3IPJr7RCapleIaSJOBSnmgmw2vZWmOxRb06EsOLvvqQinnJIYS+DLgEuLZcqE020
eVVJn9eCxUMnZB9Ua1zNpGjKHuECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQV9xM2
aJtUUAJFhwc7Wox5Jl8ohDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NTVhYzZmYTItMjRjMS00NGVhLTlmMTgtMzA5OTFlYjA2ZDMyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBS6JwDAN
BgkqhkiG9w0BAQsFAAOCAQEAUCvUrkDA83kg105BVS87d+Wh6OgFgHPL/WTG244S
NTSQu1Lzg1CH/hFyKzWBvlwfE06d3W2/N34kw85BG52sFPnTLlNTKew3sUC507eA
5SbXOHHCHVxNiNeiNpYauV/uJ7cPNbC5HCLc80ku74j8dVKRVFNA2bSCPqKMOrfR
47GgxxRv2urAgwAWByPOdBKeQVehuPQMLQVqPt/xF7Cn7uAA0vm1xNRbaiVMh4Rx
/Ap+6TenCSAc8owA4RpcyFuRooHsqyfSFG1/x/X6HZYn3XcrPtjYetP9GzhHOH6L
UyGtkeGCiBCaWGghJ4kvZzYwrgFa2ZY5dhzUNNZ2y0NJqw==
-----END CERTIFICATE-----
Generated at Mon Sep 11 16:32:02 2023 by rpki-client on console-fra.rpki-client.org