Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cff39e2-e2f0-442f-b54d-fb69deeea22b.roa
File: 8cff39e2-e2f0-442f-b54d-fb69deeea22b.roa (raw, json)
Hash identifier: DVcBQ+Bexaq+DQa86sUT/LHqMpy+TUUrbQzzfs24ayM=
Subject key identifier: 66:DD:C8:D9:09:81:F3:C0:1B:5C:A0:16:3C:FF:AE:FB:F2:47:F0:C7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 799EC67F0E5E801D0834ECCBB84EE84624DD4974
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cff39e2-e2f0-442f-b54d-fb69deeea22b.roa
Signing time: Sat 09 Sep 2023 00:00:00 +0000
ROA not before: Sat 09 Sep 2023 00:00:00 +0000
ROA not after: Sat 14 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d079:2000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:9e:c6:7f:0e:5e:80:1d:08:34:ec:cb:b8:4e:e8:46:24:dd:49:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 9 00:00:00 2023 GMT
Not After : Oct 14 23:59:59 2023 GMT
Subject: serialNumber=bb8fec2d35e6e818275d11214b65e9ef0cf292cff909d12aaec7e0713f7e9eb8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:0f:86:98:bc:db:c1:fd:d4:e2:ce:20:c6:
6b:ef:9f:a3:42:bf:b1:03:f1:48:67:44:4d:09:dd:
68:7a:0c:7d:9e:f9:80:32:13:56:48:ce:77:d0:34:
dc:0b:37:44:b6:d6:41:5b:96:9e:b0:e4:51:84:1f:
2d:e9:f0:a9:8f:2b:83:47:c8:65:d7:6d:0c:60:53:
46:44:84:71:75:46:6f:b4:1d:a2:03:25:13:2d:e9:
99:cf:d8:88:53:cb:90:67:6e:de:fb:e8:6b:ee:ac:
fc:c7:f9:f0:88:b1:32:99:f0:b8:52:f5:73:70:b8:
fa:39:22:79:90:2a:5f:1f:71:33:dd:80:21:ca:03:
56:7b:f8:80:9f:c8:86:a8:81:2c:da:de:c7:5e:d4:
a0:8b:86:e0:b7:fa:8d:b3:43:c3:c3:d1:fd:1e:e5:
f1:3f:e0:81:9f:be:a8:52:bd:50:08:13:6c:56:9a:
e5:48:40:97:1b:cc:48:a1:a0:d2:1b:52:2f:89:1b:
d6:9d:89:62:f4:6f:e5:34:b0:f7:f0:9e:1e:1d:fd:
fd:c9:3d:53:5f:f6:c8:85:15:96:1b:4d:a8:0e:2a:
dc:32:ac:12:01:33:2d:60:b9:7d:ef:39:71:3b:e1:
f4:75:07:ab:d0:29:03:f4:93:97:f8:c8:e4:04:93:
96:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DD:C8:D9:09:81:F3:C0:1B:5C:A0:16:3C:FF:AE:FB:F2:47:F0:C7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8cff39e2-e2f0-442f-b54d-fb69deeea22b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d079:2000::/40
Signature Algorithm: sha256WithRSAEncryption
96:00:96:54:1c:c5:d6:72:65:2f:8c:fa:11:1f:ed:83:aa:76:
de:ce:eb:24:2d:58:70:57:c6:04:f6:9f:b8:31:f6:c2:c3:4f:
68:26:61:06:6e:6d:12:b2:19:c6:c8:33:47:32:70:a8:93:23:
47:bc:32:f4:f2:c2:5f:2b:03:35:16:85:81:a9:8b:8b:96:ad:
7d:c1:da:1f:55:97:76:95:ec:e1:15:48:46:a3:9b:cb:9d:91:
8d:0f:72:6f:78:a7:3f:0f:73:54:7a:8b:57:90:58:3e:81:ca:
a1:33:71:cb:61:d2:68:cb:00:88:ed:1e:0c:01:db:45:4b:2a:
21:e7:b9:1f:95:51:d3:3a:bd:c4:28:c0:22:c6:45:23:47:28:
ab:2d:7c:4f:d9:f7:1d:46:95:05:95:19:56:3f:d6:7d:28:00:
fa:b6:9a:a5:d5:65:51:d0:b6:b0:c0:e5:94:1d:ed:4d:92:65:
91:f9:7b:7f:c2:52:d0:91:df:7b:98:3c:54:cc:77:e3:1c:22:
06:13:48:34:bc:09:d6:fd:03:1b:6f:56:42:8e:e5:28:e9:cd:
2a:ad:50:1e:33:39:ac:12:81:0b:9a:45:45:2f:12:6e:d5:ab:
53:d1:d5:22:d4:27:ce:bb:cc:22:34:13:ee:b9:4b:89:bf:76:
4d:f9:6d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org