Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7c168279-3466-4837-b4c2-65829712acef.roa
File: 7c168279-3466-4837-b4c2-65829712acef.roa (raw, json)
Hash identifier: Ros+i5Awt51CXW75xZNbgfq7E68kcRNlys1V4NF+jPk=
Subject key identifier: 2B:66:4E:2E:22:93:5C:6A:00:61:59:C5:2E:BD:88:4D:02:75:A4:D6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0B44E135207F41E76E66B106B9E8CD4466F0BC82
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7c168279-3466-4837-b4c2-65829712acef.roa
Signing time: Mon 28 Oct 2024 00:00:00 +0000
ROA not before: Mon 28 Oct 2024 00:00:00 +0000
ROA not after: Mon 02 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d059:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:44:e1:35:20:7f:41:e7:6e:66:b1:06:b9:e8:cd:44:66:f0:bc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Oct 28 00:00:00 2024 GMT
Not After : Dec 2 23:59:59 2024 GMT
Subject: serialNumber=5a3ca17a3eaecd8057c77e8ba8e01e8dc0ebdcae58fbb8573a92debb0e38d5f5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4d:3a:8c:94:42:7a:35:ea:f0:74:46:20:16:
06:22:63:ff:16:97:59:07:10:ae:e5:41:90:ca:df:
46:38:c6:d4:bb:44:6a:08:22:bc:34:73:64:d7:f8:
09:e4:cb:02:a9:c1:35:7d:6c:a2:e7:05:04:be:c0:
91:6f:cd:1b:81:54:09:67:29:41:8a:82:fc:73:b0:
57:5d:75:01:70:f6:4e:b1:2d:cd:bf:0a:c7:6f:68:
21:0d:16:ef:64:35:ce:dd:37:a2:c8:33:ad:d7:56:
24:84:68:3c:02:8b:b0:03:4a:49:0e:ec:62:0c:4d:
73:65:7e:b0:cc:aa:e1:34:c0:a9:aa:1b:78:86:04:
46:53:da:72:fd:b7:ab:0b:38:69:c8:25:af:5e:b6:
73:9d:ad:f2:b0:fc:3e:57:76:06:83:6c:4f:27:87:
57:38:6a:2f:8c:b8:40:91:79:18:42:bf:1f:e0:8a:
e5:64:61:7b:fc:27:f5:a7:25:13:8a:43:9c:64:50:
2e:d3:63:a6:e0:2a:76:14:8e:e6:89:39:26:78:1b:
80:3c:2a:1b:02:b7:ed:e4:52:33:68:28:5f:d7:40:
2d:c5:9b:a7:3f:64:20:e4:1a:90:64:03:94:52:e7:
ef:77:90:7b:08:57:06:e0:4c:38:18:d4:90:1b:56:
ef:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:66:4E:2E:22:93:5C:6A:00:61:59:C5:2E:BD:88:4D:02:75:A4:D6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7c168279-3466-4837-b4c2-65829712acef.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d059:a000::/40
Signature Algorithm: sha256WithRSAEncryption
a4:59:80:85:6b:bd:00:19:bd:60:bd:65:23:8e:5b:2c:3e:b4:
3b:42:0a:a1:0e:71:16:89:2e:51:f7:c6:a9:51:57:29:ad:4c:
8a:be:d5:ad:ed:41:65:f9:b1:41:88:93:0a:ab:34:0a:55:49:
66:62:76:cc:68:30:aa:51:d6:21:ec:a6:f8:2f:06:30:11:3a:
3e:94:4e:3d:1f:04:04:c6:ad:57:b5:9e:b8:d4:18:12:1c:52:
b8:2d:3d:b7:b6:96:19:03:b5:a0:b2:00:ed:02:5f:00:c4:b8:
3f:3e:fc:0f:30:6e:66:3b:2b:c8:45:1d:e9:a9:f4:2f:33:fa:
46:cd:30:99:96:ca:c9:f4:79:f3:be:47:49:de:44:a6:2d:6c:
53:11:dc:58:57:ed:03:25:44:44:99:03:e6:a0:14:2b:1f:77:
07:c7:7d:86:b6:4e:b1:67:6f:de:aa:b1:50:38:fd:3b:63:7a:
05:25:8a:64:e7:8a:9f:64:ae:0a:bd:d4:8f:83:84:e4:02:d4:
7a:4e:2e:9f:1f:51:a9:d7:17:1f:f6:db:ae:97:81:bf:d0:10:
63:17:78:ef:01:36:81:56:c1:27:74:36:65:3d:06:16:b1:00:
85:ae:52:d7:87:a3:f4:9f:51:32:ff:54:4d:0c:09:79:d7:67:
5a:17:d6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:32 2024 by rpki-client on console-fra.rpki-client.org