Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b695a6b-ec66-4d2c-9703-db1465b53dd4.roa
File: 6b695a6b-ec66-4d2c-9703-db1465b53dd4.roa (raw, json)
Hash identifier: aZjXvltlVg7UDS7CKNLXDrinmxwBbMJ51164DSDcPAg=
Subject key identifier: 38:36:D3:A7:9F:E6:59:D5:B8:4B:14:23:18:88:0F:DC:D4:2C:56:BF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 143C93969B8BF92246CB929A5B4186918E9418F5
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b695a6b-ec66-4d2c-9703-db1465b53dd4.roa
Signing time: Mon 02 Sep 2024 00:00:00 +0000
ROA not before: Mon 02 Sep 2024 00:00:00 +0000
ROA not after: Mon 07 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:3c:93:96:9b:8b:f9:22:46:cb:92:9a:5b:41:86:91:8e:94:18:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 2 00:00:00 2024 GMT
Not After : Oct 7 23:59:59 2024 GMT
Subject: serialNumber=0d56c8ade803812eb374fa575c34a228a77e9f3265fa2f45c71a71cb68e00dbe, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:bb:2c:9c:75:4b:87:07:3f:5f:ae:0a:07:b9:
b8:9d:1e:1e:62:3a:e7:31:0c:d4:a7:df:9c:8b:10:
00:9a:3c:cb:8a:02:59:25:1b:b9:ac:a7:8a:dd:bd:
dd:a7:4a:a6:b2:20:9c:29:ae:ea:dd:0e:b4:6d:96:
e2:dd:c9:2b:7f:63:0a:31:25:d2:6c:92:c9:44:d3:
94:b9:87:26:72:83:4d:07:79:11:c4:f3:81:39:b8:
b8:7f:ec:ca:dd:7a:c8:88:53:bb:9a:4e:e7:af:41:
6a:c2:f4:6e:57:51:8f:85:e2:7f:d9:5a:d9:40:aa:
a4:2f:e5:26:0e:c7:d4:61:82:d9:c7:68:cb:d8:8c:
0a:31:a7:2d:e4:b4:b2:65:21:7d:d0:17:52:f1:bd:
51:14:5c:8f:a2:a2:fe:81:52:f5:cd:ef:a7:ae:05:
52:d3:5c:d8:95:1d:40:7c:2d:49:ed:19:11:c3:7a:
dd:c4:ae:80:e6:14:5f:35:a4:56:91:fe:5f:77:03:
eb:b1:6f:95:b4:19:19:b0:ef:38:b2:cc:84:03:bf:
84:ad:01:62:63:51:c3:96:05:25:84:a6:46:9a:44:
6a:bd:1c:bc:0f:06:30:19:15:29:17:02:21:ad:90:
fc:e1:95:3b:62:1c:b4:e7:98:f5:4b:5a:fe:1e:8a:
c6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:36:D3:A7:9F:E6:59:D5:B8:4B:14:23:18:88:0F:DC:D4:2C:56:BF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6b695a6b-ec66-4d2c-9703-db1465b53dd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9d:f6:1f:cb:58:87:0c:51:59:a5:ef:d9:ca:c6:45:14:0c:1d:
48:b7:3c:6e:e3:f5:31:22:e8:59:64:4a:9d:a7:2e:06:be:81:
cb:74:ff:de:f3:33:60:94:e1:83:4e:74:bd:a0:85:e8:1e:ed:
8c:cc:79:d9:ed:ee:32:b6:1b:fc:fe:80:02:76:11:8d:67:ca:
c0:f0:90:9b:36:27:17:c1:af:ea:b1:fd:05:17:59:78:b4:9a:
67:09:2d:0e:38:d4:73:b1:7c:15:08:9e:81:be:4f:81:96:c0:
cf:43:0c:bb:41:fd:88:e0:62:1e:2d:a3:8c:bf:a4:5d:05:71:
b5:af:e8:aa:2f:04:4f:90:1b:10:b2:07:d8:b9:53:2b:c1:88:
e6:d2:ea:47:47:e1:fa:bf:8c:6b:a1:c2:fa:60:c3:24:88:a4:
7d:b1:92:3c:be:4c:e8:e3:2a:8f:6c:16:c6:50:1c:5b:02:b0:
ea:e5:b3:83:92:d7:13:0f:82:7a:53:49:18:a7:70:74:0c:fb:
26:52:51:7b:f9:4c:b9:29:99:13:eb:c2:dd:5d:04:70:14:66:
71:9b:99:3a:ee:08:8b:54:49:0b:bb:47:9e:eb:ae:17:a1:8f:
54:08:25:cc:53:78:cb:20:1d:29:c5:fa:5e:5f:85:21:24:b0:
41:22:70:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 01:39:49 2024 by rpki-client on console-ams.rpki-client.org