Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6d580cc8-bbc1-409c-bd57-046c5b70250f.roa
File: 6d580cc8-bbc1-409c-bd57-046c5b70250f.roa (raw, json)
Hash identifier: IFuxfo1SdJ9ZWqSelhXVHn+dQdDNMSBu8/bX005ix/g=
Subject key identifier: 3C:3A:3F:92:4D:D2:1C:EE:FE:F7:8F:DD:DF:4F:BD:E9:AC:54:90:AF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 11B5525CB59BE1903C6C53639AB9DDD220C8748B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6d580cc8-bbc1-409c-bd57-046c5b70250f.roa
Signing time: Fri 29 Mar 2024 00:00:00 +0000
ROA not before: Fri 29 Mar 2024 00:00:00 +0000
ROA not after: Fri 03 May 2024 23:59:59 +0000
asID: 14618
IP address blocks: 46.51.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Apr 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:b5:52:5c:b5:9b:e1:90:3c:6c:53:63:9a:b9:dd:d2:20:c8:74:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 29 00:00:00 2024 GMT
Not After : May 3 23:59:59 2024 GMT
Subject: serialNumber=ae53c9920aa5fd554e4bf249d76f0125489d57a14d8e7c60152b0326d3fe00ee, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0f:a6:a6:19:d1:b0:5d:37:fb:45:1f:d2:47:
b0:b9:19:cb:78:83:34:2d:4f:0f:db:ac:11:6e:cf:
23:57:d0:4b:63:66:5d:94:a8:52:05:2d:bd:9a:c0:
61:db:45:e6:aa:bf:67:f0:bf:b9:05:bb:19:5e:b7:
43:58:71:52:db:7e:4c:74:b3:71:d8:28:48:f5:8d:
c5:85:e1:46:ee:61:c8:a5:cc:cb:1b:b8:b1:f4:6e:
4d:bc:61:2c:c3:33:c2:64:32:fb:06:ac:c2:80:fe:
8e:e5:27:8b:53:5f:50:f6:60:bb:df:1b:09:d4:32:
84:1e:b7:bb:3f:62:56:8b:43:95:08:65:16:1a:a4:
2c:8b:0d:31:f0:2e:20:be:60:da:5e:a0:f1:97:6c:
17:d3:3f:15:11:93:52:c2:6d:5b:71:ec:ba:bc:92:
ef:16:2e:ad:9c:bb:20:35:cd:2d:b9:55:f9:44:2b:
ab:35:f5:21:62:56:a5:7d:d2:39:5a:83:1f:4d:d3:
0e:24:05:66:7d:13:11:23:27:7a:a2:f2:58:9f:d8:
6b:cf:5e:a2:5c:7c:6a:93:aa:96:4f:d7:46:f9:c4:
3f:c3:3c:9b:a5:ed:aa:34:bf:2d:9a:9b:7d:24:a1:
de:73:45:09:e4:06:c0:56:a9:25:fc:35:97:18:fa:
22:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3A:3F:92:4D:D2:1C:EE:FE:F7:8F:DD:DF:4F:BD:E9:AC:54:90:AF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6d580cc8-bbc1-409c-bd57-046c5b70250f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.208.0/22
Signature Algorithm: sha256WithRSAEncryption
97:59:8d:fa:4a:58:5c:63:d8:72:ea:17:ee:0f:c8:34:46:2b:
44:a6:dd:66:65:9c:59:47:06:03:34:c3:8b:81:be:2f:b7:59:
1e:99:0b:a1:dc:d6:bc:18:53:87:c3:3a:dd:e7:01:eb:41:59:
1f:36:e0:00:46:da:83:b0:9c:b9:76:96:e4:a1:66:8b:4f:05:
0f:41:7d:60:f6:d1:13:f4:a9:4d:98:ee:7f:f8:49:dd:48:53:
3c:10:9b:69:fc:f2:78:76:bf:fb:12:00:4f:45:f0:eb:ff:21:
1a:69:a4:1e:33:cb:18:e1:4c:e3:47:54:63:e0:3c:c4:09:a4:
8a:e8:fb:40:db:71:a6:dd:fd:28:f4:91:84:ac:44:e6:40:a6:
6d:1b:b0:a5:bc:d3:d4:de:d0:0c:fe:d0:5d:93:21:c5:b6:1d:
c5:bb:d4:0b:23:bb:5f:d0:2b:c1:7e:68:c2:7d:e6:b3:1c:33:
c7:b6:c5:50:c5:f4:be:21:a3:bc:3b:64:8b:12:6a:74:f9:17:
7c:29:d6:94:84:28:96:43:12:be:37:e1:93:79:24:8c:f5:98:
75:bc:7e:40:b0:6c:62:6e:aa:cf:52:52:ac:27:3c:c0:d6:9c:
4d:a7:c4:29:86:88:ae:48:e1:b0:76:e3:07:47:d1:3f:14:b4:
30:bd:d0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 03:34:51 2024 by rpki-client on console-ams.rpki-client.org