Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d2cb3d7-ba4b-4b69-8603-f7aa5683c7ba.roa
File: 9d2cb3d7-ba4b-4b69-8603-f7aa5683c7ba.roa (raw, json)
Hash identifier: kTaC+IUtpri7F5gJc1i4n2O+u+jNY+qvF8r5Qblms+c=
Subject key identifier: 11:19:26:89:CD:5C:BE:8B:E1:6D:77:7C:B6:AF:89:A2:63:24:75:BB
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6A233EDC5E7D2316BA738049869A7B8591D5CDAA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d2cb3d7-ba4b-4b69-8603-f7aa5683c7ba.roa
Signing time: Wed 17 Apr 2024 00:00:00 +0000
ROA not before: Wed 17 Apr 2024 00:00:00 +0000
ROA not after: Wed 22 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 176.32.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Apr 2024 20:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:23:3e:dc:5e:7d:23:16:ba:73:80:49:86:9a:7b:85:91:d5:cd:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 17 00:00:00 2024 GMT
Not After : May 22 23:59:59 2024 GMT
Subject: serialNumber=3bd4f5c15e8af9edceeab81864bc2f068d193e8964c19432797775be982fd0f7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:a1:32:5f:7e:50:f3:a2:43:1e:ee:cb:a9:d1:
c5:20:bc:de:5f:8d:e2:0a:ce:de:3d:25:7b:62:18:
93:e7:fb:23:12:29:52:82:99:97:ee:f8:cb:20:e3:
18:35:24:63:6f:2d:14:d7:ab:30:9b:e4:25:ad:6c:
4f:28:ab:4e:93:17:a8:58:5c:f7:6b:cd:00:7c:2c:
76:c6:c4:fb:ba:a9:aa:23:13:ea:10:ec:3a:3a:0d:
41:1b:dc:e2:40:a0:b1:00:8f:17:15:f8:64:05:2f:
36:f4:ac:d3:34:fe:95:28:d7:46:a0:e8:e9:56:e4:
77:1e:ac:ac:67:e4:26:97:02:4a:63:ef:4a:2d:75:
ce:18:87:8f:db:16:ad:60:5a:62:12:ad:dc:7e:04:
41:16:c7:ff:69:f3:0c:12:1d:f9:b1:f8:33:67:dd:
f6:9d:a1:4b:9e:19:64:8d:66:c8:54:c6:59:48:6a:
c0:6a:69:20:1f:17:c0:b1:e6:39:21:48:e0:20:3b:
69:8b:00:e3:11:6b:82:a8:87:56:f7:ca:5e:1b:f9:
92:39:21:79:c5:bd:d2:f0:e3:03:a4:b8:a9:00:cb:
54:d2:53:b4:57:2f:38:e1:bc:f5:58:86:ba:1e:6f:
c8:b2:79:e0:70:f4:fb:f3:37:fc:4f:9e:2f:1a:9f:
0b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:19:26:89:CD:5C:BE:8B:E1:6D:77:7C:B6:AF:89:A2:63:24:75:BB
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9d2cb3d7-ba4b-4b69-8603-f7aa5683c7ba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:cf:9b:6d:9a:c6:2e:79:b0:cb:3e:28:b6:23:f7:30:b9:1f:
ec:84:de:80:2a:f9:5f:48:35:cf:d3:92:0a:5a:fa:f8:c9:05:
62:ae:6c:8f:57:75:34:45:18:9b:ce:7c:d6:b6:69:45:17:98:
94:9e:56:2a:87:67:ea:b4:a1:1f:8d:97:48:75:64:f6:cd:4a:
e4:9a:2f:35:57:39:be:00:4a:b5:a1:8f:eb:e6:cc:8c:bc:ae:
12:a8:46:ca:4e:89:0d:e5:28:55:67:16:9e:e0:86:71:3a:5c:
24:df:37:ad:5f:02:29:67:64:df:e4:79:b6:4e:f1:d3:2f:be:
ee:d6:e9:ab:21:8a:35:00:e4:d3:6d:77:0d:e8:11:5c:97:7c:
d6:bd:9b:bf:5c:46:9a:27:ff:5a:89:ba:d7:60:33:45:79:83:
f1:a4:a6:88:23:85:3d:97:fa:2a:9e:b2:3a:d6:77:3e:c3:79:
50:86:f9:b8:d5:e1:77:9c:00:46:ce:d8:de:75:e7:39:f1:11:
7e:a1:7f:d1:03:1f:19:3e:3b:e5:67:4a:a6:3d:c4:11:0b:6e:
ee:a6:fb:20:ff:64:83:f6:2a:e3:01:2e:6b:a0:e6:79:50:ae:
5c:35:f2:e7:f6:af:d7:59:df:b7:40:9d:09:e4:fc:ed:51:25:
f9:11:0f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 03:34:51 2024 by rpki-client on console-ams.rpki-client.org