Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/87659113-4050-43f4-ade6-cfd7a3483d5c.roa
File: 87659113-4050-43f4-ade6-cfd7a3483d5c.roa (raw, json)
Hash identifier: 4MY91l/z2dS1+iuXORlWcmTxonNjCGELoZoiwwy+lSk=
Subject key identifier: DD:2C:8A:84:07:07:5F:75:5F:9C:6F:78:1D:47:B2:42:B8:74:19:BE
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 182D7D25E309A688DDC7122B26CDEF1C39425000
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/87659113-4050-43f4-ade6-cfd7a3483d5c.roa
Signing time: Mon 02 Sep 2024 00:00:00 +0000
ROA not before: Mon 02 Sep 2024 00:00:00 +0000
ROA not after: Mon 07 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d078:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:2d:7d:25:e3:09:a6:88:dd:c7:12:2b:26:cd:ef:1c:39:42:50:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 2 00:00:00 2024 GMT
Not After : Oct 7 23:59:59 2024 GMT
Subject: serialNumber=dabbf1ee7a30829e58e1731af4b429a51dc2a8ba469c7d3d035e14cf114be024, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:bc:40:bb:0b:38:c2:90:4b:ff:86:63:c2:
71:cf:6c:e9:15:5d:0d:d1:af:12:d4:e6:ca:40:d9:
8a:cf:9a:6d:d7:3d:fa:06:1e:a6:91:f7:b4:c2:b3:
c6:6d:ff:b1:84:8c:6d:48:8b:c4:d8:0b:70:0b:00:
5b:a7:ba:3b:36:be:40:83:e7:ab:b3:ab:a6:ac:1c:
af:8a:a9:ca:a4:83:9b:4d:44:a7:b3:bf:31:c1:7d:
2a:8c:8f:34:c8:c0:e4:13:15:c8:b8:82:62:16:bc:
13:83:ae:53:67:ab:57:3e:bd:fa:05:c5:9c:18:66:
82:f7:01:69:d3:d6:01:26:7a:d9:7d:31:2a:ed:c3:
6c:9d:93:4c:07:c8:61:31:c2:fc:34:1e:31:d9:d5:
98:d6:df:9f:db:58:7c:ee:eb:62:0a:c9:e5:6a:fe:
5a:ef:03:be:fb:5d:34:b9:0a:85:76:55:e6:43:01:
16:92:07:64:2c:1a:13:49:4e:a2:da:51:ef:30:3a:
30:94:ad:f7:91:f2:13:2b:c2:ed:97:0d:de:f3:68:
2d:ec:1d:b8:4b:46:35:02:91:37:8a:d8:86:bd:38:
45:7a:65:bd:28:56:07:62:3e:ca:ab:c0:8e:70:d2:
13:4b:b5:23:8c:36:74:1e:40:3f:c3:16:65:2a:74:
29:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:8A:84:07:07:5F:75:5F:9C:6F:78:1D:47:B2:42:B8:74:19:BE
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/87659113-4050-43f4-ade6-cfd7a3483d5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d078:8000::/40
Signature Algorithm: sha256WithRSAEncryption
30:f4:e9:10:71:70:0c:fe:28:fc:3f:7e:48:e4:b0:76:7d:fb:
3b:04:6a:71:7a:fe:ac:60:46:5a:5b:a4:a6:18:f5:d4:8b:fd:
1e:94:f0:fb:99:62:2c:51:59:1c:31:77:dc:e2:01:6d:47:e7:
79:6c:23:48:48:09:f5:a2:62:70:19:4c:08:e1:00:a0:ab:c6:
96:a6:ea:33:c9:e8:f0:03:8b:44:58:99:95:aa:d9:96:e0:cb:
f8:e9:e8:f5:b2:a9:b9:c8:ae:c4:6b:58:e6:61:bc:ae:c6:ec:
ec:7f:e2:4f:d5:32:e2:55:a9:1a:35:c2:db:c5:35:ce:9d:76:
9b:65:c8:d3:cb:ea:53:8d:a3:73:91:4c:7b:d3:95:ea:63:ac:
35:4a:30:99:67:17:22:84:0b:78:39:e6:34:79:ba:62:0c:18:
b2:24:4a:07:7c:cf:33:2b:d9:d5:9e:2d:83:0e:85:7a:f4:b7:
12:02:93:c9:4e:c8:96:f1:b6:01:c0:0b:29:e2:eb:22:fc:c5:
09:9b:4e:71:a7:df:30:2c:b1:20:6c:b2:de:03:22:e9:ca:31:
4e:3b:23:d3:b5:f2:d8:59:c6:32:3d:59:29:8d:e2:6a:0c:2f:
15:b7:e7:c9:20:6f:c3:c9:cf:40:d3:2e:b1:68:ca:00:ca:56:
e7:f2:81:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 02:13:45 2024 by rpki-client on console-fra.rpki-client.org