Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
File: 70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa (raw, json)
Hash identifier: hV/T/oWDLEGLd2/Z/h1GreJ4ka6dYRpbZWC6ntCca1Q=
Subject key identifier: ED:98:AE:E3:11:08:78:3A:80:39:7F:C8:86:FE:CB:D2:17:E1:E1:5B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 04B064649A2CADB690A8CF5F45D782435A776F78
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
Signing time: Fri 26 Apr 2024 00:00:00 +0000
ROA not before: Fri 26 Apr 2024 00:00:00 +0000
ROA not after: Fri 31 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:e000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Apr 2024 11:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b0:64:64:9a:2c:ad:b6:90:a8:cf:5f:45:d7:82:43:5a:77:6f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 26 00:00:00 2024 GMT
Not After : May 31 23:59:59 2024 GMT
Subject: serialNumber=e059d6820420cac5b044f5ee0502048de040df5ee9948e753511f58f76854319, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:85:12:7f:88:cf:a1:2a:3e:fc:8d:8d:0a:33:
0d:23:28:3f:13:06:71:64:26:2d:b6:e3:ee:99:b7:
9d:e3:f0:0b:59:73:6a:af:d5:c2:fe:29:40:32:7a:
ff:30:e8:56:7d:dc:5a:6b:e4:b5:e7:e5:a8:b3:78:
2d:9a:a1:76:62:ad:03:c2:71:4a:a6:b0:64:8c:e4:
fd:8c:66:15:aa:de:34:8c:87:60:ab:14:46:f2:29:
38:ec:5c:ed:08:3e:df:d1:87:e1:73:65:7f:a2:70:
cd:6e:f3:0b:80:e2:f2:7a:68:a6:d2:87:3e:fa:ad:
0f:9b:da:b0:9a:b9:a0:67:75:db:06:d9:1e:fc:13:
84:77:ec:6d:31:98:ad:02:5b:59:1d:e1:3f:a4:6c:
80:12:1f:65:5f:82:80:ae:6f:11:4d:d8:9e:7a:88:
56:e0:93:21:7d:56:14:0c:0c:0d:05:04:f9:81:e9:
b9:0b:ba:05:bc:e4:0a:56:52:6e:21:50:ee:9e:3d:
ec:1c:77:d6:92:f3:24:2c:b7:f6:f3:21:36:2e:3f:
91:63:8d:0e:38:e6:c7:5f:a5:3f:fe:4b:55:ed:5d:
ab:7c:8b:dc:8f:44:bc:94:ed:98:6b:f0:01:ff:c2:
e1:88:6f:03:f1:45:dd:f1:0f:5d:2a:dd:8d:88:6f:
b3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:98:AE:E3:11:08:78:3A:80:39:7F:C8:86:FE:CB:D2:17:E1:E1:5B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70a2bc6f-ae0f-4f13-9499-78c505a5f7c9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:e000::/40
Signature Algorithm: sha256WithRSAEncryption
5a:ea:f3:31:0a:32:ad:f3:cb:fa:2a:c2:b1:fd:6f:55:b0:6a:
8c:48:db:d2:2c:8a:5d:44:d4:13:27:a7:d6:3e:d5:db:aa:8d:
2d:f2:21:8a:34:72:8c:7b:13:fe:48:46:86:d8:18:35:a6:34:
37:52:d1:b6:b6:68:3e:7f:ef:70:aa:2e:84:47:d6:7c:4f:83:
dd:f1:21:3a:3b:82:e8:66:57:16:fc:6a:14:51:1e:b8:fb:41:
2b:72:65:80:76:87:ad:45:1f:d1:a9:b3:d0:26:94:f3:8d:be:
d9:2a:e4:2b:59:6f:ac:4c:65:7c:c8:26:77:a8:87:06:7c:93:
14:96:5d:42:f1:50:63:9b:03:7d:5e:42:4a:5a:b9:a3:be:44:
28:f3:71:06:09:3a:68:96:b3:a4:cd:0e:ae:ca:36:c3:40:82:
d2:65:aa:bd:f0:87:90:03:0a:8e:25:3d:a8:c2:90:1b:ab:a8:
14:4d:1f:72:05:22:90:58:f7:e2:e5:bf:ee:21:b2:b4:1c:64:
65:01:8c:e1:32:0b:c2:fe:30:d7:e4:6f:91:44:b5:f3:04:79:
4c:cf:95:44:b4:69:67:ec:0f:47:2b:3c:ae:a3:44:53:87:8d:
ba:48:68:de:cc:e4:3d:93:9a:f2:73:98:b3:96:b5:06:31:e6:
fe:ec:b5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 17:54:24 2024 by rpki-client on console-ams.rpki-client.org