Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e492412-994d-4c48-a29e-9082ebce3349.roa
File: 8e492412-994d-4c48-a29e-9082ebce3349.roa (raw, json)
Hash identifier: iDXRdzrsPBYDcOSmeyfy2os8taUa3MHCipUb7FhOhpE=
Subject key identifier: C2:44:A3:01:11:28:05:0C:71:95:CC:91:00:34:F6:E0:D8:41:63:4E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 128332B7D906C5A7577412F7CBCA58D164D918DC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e492412-994d-4c48-a29e-9082ebce3349.roa
Signing time: Sat 09 Sep 2023 00:00:00 +0000
ROA not before: Sat 09 Sep 2023 00:00:00 +0000
ROA not after: Sat 14 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07a:8000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:83:32:b7:d9:06:c5:a7:57:74:12:f7:cb:ca:58:d1:64:d9:18:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 9 00:00:00 2023 GMT
Not After : Oct 14 23:59:59 2023 GMT
Subject: serialNumber=109b9386c53e9d5a082bca2e4af33d93dedc2f726e04bf024c0c9bc9576380fc, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:77:a5:61:9c:33:28:50:12:dd:5b:56:08:6c:
f7:87:bd:d9:6b:41:16:fe:e4:b5:b3:7c:e7:02:cf:
18:02:fe:cf:4a:7a:c2:dc:b6:d2:56:76:51:97:e9:
ea:b5:b1:3a:07:48:7d:56:90:4e:00:8b:93:75:0c:
c2:6e:a2:fe:d3:ca:04:47:8d:4d:9b:a3:74:ae:77:
97:8d:47:88:45:70:5d:91:5a:7c:6e:47:9c:6a:77:
67:e3:81:30:19:e1:15:77:7e:27:51:43:15:fb:75:
27:46:81:07:dc:99:82:dd:0f:19:dc:72:ef:05:32:
1a:38:b8:ba:b1:92:ff:69:be:bf:5e:5a:15:4b:c2:
c6:83:b2:a6:ef:33:b2:f5:d7:d6:e4:9c:00:e0:12:
74:c3:d1:70:81:d8:b1:be:38:9f:93:ba:bd:58:39:
4a:99:d4:39:9a:c3:6a:c4:05:2a:26:4e:a1:4f:8d:
bc:12:14:81:78:ea:c8:2b:b5:c8:04:3f:2a:4b:ff:
a9:c0:a6:2b:1d:44:53:4c:9d:e2:1e:84:50:69:62:
84:bc:f4:58:de:52:82:53:7e:f8:3c:56:32:55:b7:
7e:56:82:62:da:a8:a4:c7:52:ea:ca:d6:8e:b0:7f:
9c:6c:80:85:2d:52:64:f6:b6:e8:d5:72:1a:c5:83:
96:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:44:A3:01:11:28:05:0C:71:95:CC:91:00:34:F6:E0:D8:41:63:4E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8e492412-994d-4c48-a29e-9082ebce3349.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07a:8000::/40
Signature Algorithm: sha256WithRSAEncryption
10:6a:20:3c:c9:47:1f:18:93:6d:0d:ad:08:fb:77:96:fb:b0:
a3:eb:47:29:6d:ac:4b:de:4d:87:94:f5:ec:91:aa:15:87:98:
a9:ea:e4:f2:9d:89:94:ac:34:a0:5c:ed:3a:e7:fb:3a:26:e2:
a7:6f:55:7f:65:9a:b5:65:e5:e1:54:50:70:fe:70:6c:28:2d:
b6:95:f2:7b:b5:55:63:3e:f4:b8:cd:71:f6:2b:c6:78:ea:ac:
e3:c8:54:b4:b1:9f:e5:de:e8:c7:f9:10:2b:b1:dd:28:96:1b:
84:ff:32:54:87:68:14:e6:44:5e:0b:1c:d8:84:ae:e9:e1:f1:
db:98:03:f9:c3:57:e1:4e:f8:0d:84:53:c4:24:11:e3:bb:16:
d3:98:40:42:49:2e:d2:ce:75:8c:68:ac:09:1f:f2:dd:3d:db:
8c:76:8f:4d:dd:4a:09:cf:87:92:ad:2d:88:ab:d7:b8:3b:c6:
96:f0:21:08:be:37:7c:ce:de:be:9b:86:c0:26:43:34:4e:1d:
7e:ee:02:49:9f:76:f1:fb:5a:52:d7:f8:91:03:2f:14:a1:e4:
65:e8:50:8f:de:64:21:e4:62:85:96:16:8f:b4:d9:5b:47:17:
c7:fa:e4:49:6d:fd:9b:d0:3c:2a:04:d0:fb:6e:db:1b:6c:74:
63:2e:c1:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org