Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6c5c713e-8a57-4e2a-8fc2-b9d88b0df53f.roa
File: 6c5c713e-8a57-4e2a-8fc2-b9d88b0df53f.roa (raw, json)
Hash identifier: ledokBPH8jlDNAXDO7/owUYItsZyjTcYWkfqy2QQVV4=
Subject key identifier: 7E:43:B7:A7:D0:D4:52:5D:1E:E8:BA:C0:B7:83:09:08:E4:99:EB:60
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1E5D960F11072861FD050849E4C34C7D972B2B15
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6c5c713e-8a57-4e2a-8fc2-b9d88b0df53f.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Apr 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:5d:96:0f:11:07:28:61:fd:05:08:49:e4:c3:4c:7d:97:2b:2b:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=9c72f2faf9073a3801c29cc1f8c9e058be787843792906a2968f91e525adae44, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:df:4f:2f:81:6c:35:a9:f4:59:64:93:37:8a:
ed:fe:2c:a8:00:9d:2f:29:52:da:40:29:9e:ac:d8:
b7:36:f1:1a:c1:12:38:aa:73:88:85:4e:45:73:eb:
32:7d:ca:a2:46:cc:af:87:53:31:18:13:50:aa:9b:
7a:70:7d:d1:e7:6d:e7:29:e2:98:5c:98:53:8a:59:
29:32:61:2b:6d:47:19:f6:b2:88:9a:4a:ca:e3:a3:
af:51:ac:02:11:c3:02:53:b0:40:25:cf:52:b6:d0:
a0:46:d5:84:cb:f7:31:05:4d:bf:77:74:d5:5f:51:
7f:b5:40:6e:3e:dd:a9:ad:c6:98:43:af:38:71:68:
b3:62:94:59:b0:67:33:cd:e0:91:a9:3a:22:85:92:
db:1f:59:53:67:ca:37:6b:6f:c4:e1:81:ef:09:b4:
fd:42:fe:e8:c4:45:ff:ad:1e:a9:3f:9c:96:ac:fd:
78:e8:a2:38:68:d2:a0:a6:07:ec:06:15:85:39:20:
62:51:ac:33:ba:d7:fa:18:38:67:31:14:e2:e0:18:
18:cb:48:13:ae:bb:e5:c4:25:8d:d1:ca:ea:17:89:
2f:72:77:8c:23:c3:0c:f9:27:cf:f7:82:61:d9:19:
9f:b2:57:50:09:12:92:4b:a7:bf:49:79:2d:de:d5:
b1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:43:B7:A7:D0:D4:52:5D:1E:E8:BA:C0:B7:83:09:08:E4:99:EB:60
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6c5c713e-8a57-4e2a-8fc2-b9d88b0df53f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:8000::/40
Signature Algorithm: sha256WithRSAEncryption
9b:15:ab:25:92:8e:7e:32:64:80:19:cc:ae:04:41:64:2f:08:
14:bf:1c:bc:d3:60:47:92:f9:dd:bb:5f:20:3c:4d:47:74:8c:
14:d1:ed:1c:7e:35:63:d5:b8:10:06:b8:a3:29:27:b0:12:ed:
9f:8d:a0:b5:48:61:1c:3b:0a:5e:f1:23:99:49:ba:1a:cc:10:
00:5f:48:36:1b:e2:5d:ed:b7:05:4f:a9:57:11:0a:93:a4:43:
96:e3:15:50:49:29:67:04:00:ae:e5:58:09:8b:4d:df:f9:93:
51:7e:71:df:a7:6a:3a:8c:18:37:45:96:b9:ac:1f:57:9e:a7:
ce:74:01:7c:a6:c0:e0:70:38:a1:53:eb:fb:c7:7e:5c:8a:d6:
57:fd:c4:d3:5f:d4:5c:f9:a5:97:c4:2c:1c:2c:55:83:e6:59:
27:ff:6d:ab:df:93:d8:a9:88:92:5f:53:55:54:07:1b:46:7a:
c1:90:ea:27:01:fb:43:14:c6:a6:24:10:56:71:80:c8:97:91:
ad:cd:6a:4b:ca:6a:37:ee:62:cc:91:49:d5:5a:08:f6:4f:d3:
5a:1f:66:d2:0e:15:e4:f2:1d:45:8c:8d:1d:fd:9b:41:fa:1a:
e3:88:c7:9c:66:16:bf:bd:b2:cb:c4:e6:fa:ea:0a:91:28:2e:
a3:25:19:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 03:34:51 2024 by rpki-client on console-ams.rpki-client.org