Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
File: 7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa (raw, json)
Hash identifier: Us2K8Xz/Q96Vqr6WoIgyBTv7ecGTdnODLMoE7vjh9RA=
Subject key identifier: 05:A1:4F:5A:8B:5E:5B:68:D1:F2:17:B9:2F:96:C7:D6:A8:5A:22:79
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2E4DD4152BF294D291FB5D08A9760CC43FA400AA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
Signing time: Fri 06 Sep 2024 00:00:00 +0000
ROA not before: Fri 06 Sep 2024 00:00:00 +0000
ROA not after: Fri 11 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:e000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:4d:d4:15:2b:f2:94:d2:91:fb:5d:08:a9:76:0c:c4:3f:a4:00:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 6 00:00:00 2024 GMT
Not After : Oct 11 23:59:59 2024 GMT
Subject: serialNumber=0efe9cb9a3a091c8265b78305d300a2d7f57969b4deafd0264d426dd651c6ecf, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b9:99:9f:cd:10:64:5f:8d:07:26:cd:e3:73:
19:78:f4:e4:fa:7a:f1:43:65:c9:1f:b9:0b:2a:8a:
2b:01:79:c9:0d:ee:10:56:9f:45:83:15:4a:84:55:
58:cf:26:11:f1:99:7f:9e:2d:e1:a4:ba:1a:53:d9:
f4:1b:43:0e:59:bc:b9:0d:87:bf:e5:5e:ed:cf:d1:
e9:3c:3a:05:8c:4a:1c:d8:47:9f:e6:55:87:45:44:
3e:a6:91:b4:b5:32:d2:94:50:08:07:6c:df:05:06:
69:4a:be:d3:1a:f2:4a:a2:98:a7:b5:b1:51:82:4f:
13:4a:e7:db:d2:0f:05:fa:14:7a:f5:5a:97:cf:ef:
dc:91:69:a1:6c:c0:07:e3:eb:6f:bc:3d:15:ff:4a:
4b:8b:bd:d3:38:91:2c:e3:79:c7:69:3a:e9:ea:76:
9e:31:41:68:4d:e8:bf:8f:bf:54:a8:66:a1:f9:3e:
04:3c:2d:f1:55:c7:e2:d9:fa:5b:98:69:34:62:3c:
80:a5:f2:26:4d:8b:b8:f2:7c:f5:3a:8a:89:e5:9a:
33:57:57:0c:33:89:21:c5:c0:31:3a:47:45:4c:54:
17:26:27:d7:bc:03:cc:4c:89:db:82:08:25:50:8f:
1d:46:6c:2a:b5:8b:c6:69:bb:76:28:11:a2:7d:5d:
f7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A1:4F:5A:8B:5E:5B:68:D1:F2:17:B9:2F:96:C7:D6:A8:5A:22:79
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:e000::/40
Signature Algorithm: sha256WithRSAEncryption
4e:dc:69:57:c3:9a:dc:db:93:d0:4b:9c:e9:91:18:88:43:c9:
df:05:cb:60:08:11:fe:c6:92:94:ed:20:e7:40:e4:63:5d:78:
25:28:a1:c7:5d:5f:97:c4:fe:c7:47:b0:5b:2e:38:87:07:58:
66:14:ec:4c:50:7b:b8:a5:50:88:f0:11:2a:d3:3d:15:94:9f:
16:d9:6d:ae:e2:fc:d5:8f:d2:d0:dd:30:d1:f7:04:4b:08:6b:
2d:c5:b0:dd:95:1c:6c:7f:99:b1:3b:6b:3a:0a:b9:b2:fc:5c:
2e:58:a0:ee:48:61:58:15:87:aa:58:54:c0:dc:d1:b8:24:0f:
e8:b5:da:9e:e9:4c:75:d0:33:35:ee:32:53:20:63:3f:66:62:
34:41:40:ad:67:e3:51:e8:44:fe:09:14:00:ac:5b:6a:74:1f:
b0:e1:cb:8b:8f:7e:66:77:53:61:7f:cb:ac:0f:ae:aa:7f:93:
20:7c:47:8f:cd:e1:3e:ae:82:63:94:5c:01:3e:77:4f:89:a5:
ed:1d:06:9e:54:46:41:3e:e1:59:d8:b5:f3:de:71:76:76:82:
8b:0c:34:65:1c:bb:b3:68:15:ca:82:7d:2b:dd:08:f2:0f:a9:
b0:48:47:a4:6a:27:9d:81:45:45:ba:99:57:30:1f:aa:a0:26:
a8:ff:6b:17
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIULk3UFSvylNKR+10IqXYMxD+kAKowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA5MDYwMDAwMDBaFw0yNDEwMTEyMzU5NTlaMHoxSTBHBgNV
BAUTQDBlZmU5Y2I5YTNhMDkxYzgyNjViNzgzMDVkMzAwYTJkN2Y1Nzk2OWI0ZGVh
ZmQwMjY0ZDQyNmRkNjUxYzZlY2YxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAL25mZ/NEGRfjQcmzeNzGXj05Pp68UNlyR+5CyqKKwF5yQ3uEFafRYMVSoRV
WM8mEfGZf54t4aS6GlPZ9BtDDlm8uQ2Hv+Ve7c/R6Tw6BYxKHNhHn+ZVh0VEPqaR
tLUy0pRQCAds3wUGaUq+0xrySqKYp7WxUYJPE0rn29IPBfoUevVal8/v3JFpoWzA
B+Prb7w9Ff9KS4u90ziRLON5x2k66ep2njFBaE3ov4+/VKhmofk+BDwt8VXH4tn6
W5hpNGI8gKXyJk2LuPJ89TqKieWaM1dXDDOJIcXAMTpHRUxUFyYn17wDzEyJ24II
JVCPHUZsKrWLxmm7digRon1d9xcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQFoU9a
i15baNHyF7kvlsfWqFoieTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
N2EyMjE1ZTctNWVlMi00MjBiLThmOTgtNWUwZmFlZjRjYmVhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Djg
MA0GCSqGSIb3DQEBCwUAA4IBAQBO3GlXw5rc25PQS5zpkRiIQ8nfBctgCBH+xpKU
7SDnQORjXXglKKHHXV+XxP7HR7BbLjiHB1hmFOxMUHu4pVCI8BEq0z0VlJ8W2W2u
4vzVj9LQ3TDR9wRLCGstxbDdlRxsf5mxO2s6Crmy/FwuWKDuSGFYFYeqWFTA3NG4
JA/otdqe6Ux10DM17jJTIGM/ZmI0QUCtZ+NR6ET+CRQArFtqdB+w4cuLj35md1Nh
f8usD66qf5MgfEePzeE+roJjlFwBPndPiaXtHQaeVEZBPuFZ2LXz3nF2doKLDDRl
HLuzaBXKgn0r3QjyD6mwSEekaiedgUVFuplXMB+qoCao/2sX
-----END CERTIFICATE-----
Generated at Sat Sep 7 01:39:49 2024 by rpki-client on console-ams.rpki-client.org