Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d8e831e-4d61-449b-a532-a1dd9d743ac9.roa
File: 5d8e831e-4d61-449b-a532-a1dd9d743ac9.roa (raw, json)
Hash identifier: hOM55BQzyxWtwFBrvMOEg3gQyug3cklZs7oKhK7SWXw=
Subject key identifier: AA:77:62:DC:99:A3:D6:6D:BF:32:C0:FD:40:40:9A:D3:69:D8:98:53
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 795F889A83E9FBF2E689F7BADCD5CAEABB218D1A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d8e831e-4d61-449b-a532-a1dd9d743ac9.roa
Signing time: Sat 09 Sep 2023 00:00:00 +0000
ROA not before: Sat 09 Sep 2023 00:00:00 +0000
ROA not after: Sat 14 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07a:2000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:5f:88:9a:83:e9:fb:f2:e6:89:f7:ba:dc:d5:ca:ea:bb:21:8d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 9 00:00:00 2023 GMT
Not After : Oct 14 23:59:59 2023 GMT
Subject: serialNumber=8fff55ea27d56ffb36fd88202ef0ed734c549e7ab9119ce01da0837c7f0b3d5e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:08:71:10:f3:4a:43:1b:b8:ec:b1:f9:8c:86:
c2:e0:a2:3b:5b:dc:2c:0b:d6:7a:af:8d:1a:e8:8e:
b9:15:71:4e:2e:22:35:98:9c:8a:dd:2e:ac:d5:c7:
8e:f1:91:f6:f1:cc:14:aa:0b:fc:bc:74:cf:2c:ed:
e3:c6:ad:3a:9c:56:3a:56:37:7e:f3:8f:71:7c:df:
d6:b3:79:5d:5c:fd:74:ab:b9:e6:87:08:88:e3:95:
af:b7:32:fc:92:7a:4a:94:15:74:7c:fd:c9:b2:3e:
20:1d:19:e4:ca:c8:fb:06:99:3b:be:bc:21:33:fa:
20:c0:c5:7f:55:22:d2:e1:69:be:fc:a9:8b:86:b0:
69:00:68:6a:37:01:1d:b6:30:a9:37:31:4d:ed:1e:
bc:68:a1:b8:a2:71:ad:12:09:f6:34:3d:61:e1:db:
81:e2:ab:df:8b:47:83:2d:58:cc:a4:77:1c:d6:07:
e4:b8:92:c6:4b:bd:77:2f:fd:3d:8a:12:b5:98:93:
b8:eb:e9:09:9d:74:6b:37:cb:57:ab:af:82:94:62:
d1:28:f7:de:01:2e:97:a5:fe:92:3b:2f:f0:96:05:
e8:1e:bb:2b:8e:01:9f:5f:4d:09:ca:f8:bb:1a:73:
6a:10:e7:97:60:a5:82:86:2a:47:73:4b:6c:92:a2:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:77:62:DC:99:A3:D6:6D:BF:32:C0:FD:40:40:9A:D3:69:D8:98:53
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5d8e831e-4d61-449b-a532-a1dd9d743ac9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07a:2000::/40
Signature Algorithm: sha256WithRSAEncryption
8b:75:3d:52:9c:d8:10:3f:fc:8b:6a:a4:67:1a:25:e7:12:6d:
cf:a9:9e:81:09:61:b9:4e:83:5c:da:9b:6f:12:ea:c4:3e:46:
84:7f:be:21:0a:f7:a0:6f:4d:46:25:8f:fd:b1:60:24:36:16:
59:5f:e1:5c:d7:da:f8:18:88:6d:16:88:6e:41:94:30:fe:f2:
68:83:18:10:44:61:96:df:24:22:c2:5d:20:4f:a2:78:43:97:
31:8e:77:df:34:d6:84:79:16:62:6c:83:96:d6:ee:3c:51:ca:
b4:29:d9:82:db:44:be:f1:6c:9b:7d:fd:3a:cb:ce:c3:72:49:
85:f0:c8:2f:2d:61:e5:16:27:4b:36:3a:de:a5:f5:fa:88:b3:
e2:ad:b4:d5:93:f9:f3:39:c1:45:a2:80:71:23:18:6f:47:e9:
de:25:8f:23:3d:56:d7:6b:33:f9:a7:71:26:30:ea:f0:4c:da:
cf:5a:c4:25:41:a8:2d:38:2e:51:f4:ce:1f:bc:09:9e:cc:e3:
c4:8f:89:05:07:bf:91:fc:85:f7:62:be:a1:48:ec:59:b3:b7:
7e:b2:89:86:e0:a6:94:52:2f:9f:0c:a7:0a:57:6d:6a:f8:80:
e6:c0:9a:65:80:e0:be:12:3c:2d:2c:dc:5e:0c:07:f7:44:7d:
5e:65:b2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org