Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa
File: b176a187-5863-4413-a001-74ccc0321be5.roa (raw, json)
Hash identifier: pjjBUryfyf7ZUBLnKAoj0d0WzbwtqpIT2X7c19iItl8=
Subject key identifier: 00:1A:28:1C:1E:88:DA:87:26:6D:56:B6:CD:3A:D3:BA:74:F8:84:F7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5EE5BF98045F74D02661F34D40DCA464B7FE2407
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d02c::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:e5:bf:98:04:5f:74:d0:26:61:f3:4d:40:dc:a4:64:b7:fe:24:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=d346feeb134b1a551107d59b5390c9aeec7c2fa7a61ea4022009ddd07540f4ca, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a3:a0:8c:d9:7f:03:ac:13:28:73:1e:a5:69:
ee:fb:5b:59:6b:6f:f1:b1:30:a1:db:fc:da:e4:94:
e2:d0:21:30:af:48:7c:6b:f6:b7:6e:e5:57:c2:da:
b4:9d:8f:90:45:bd:59:62:62:b9:11:64:9e:54:a9:
2e:36:5f:70:e1:5d:b3:71:65:a8:ae:5a:88:7a:8d:
b5:03:65:2f:25:64:0a:f6:be:6c:83:f2:ff:97:38:
17:d4:07:c0:0c:91:8e:ff:b9:7b:8c:6a:82:89:f6:
7e:d8:f3:a1:14:a7:1f:e6:d6:34:6d:34:98:da:33:
8b:b7:78:15:f4:c2:2e:58:ca:b6:f2:9f:47:a8:b7:
1b:48:69:33:d8:e2:a2:4a:eb:d2:89:ba:c0:ff:ca:
2d:40:3c:ca:58:87:35:a5:c1:9d:7f:60:ed:2f:83:
9d:aa:fb:82:8a:ba:5b:f3:61:2b:80:2e:9e:06:30:
68:6e:3e:ff:eb:d0:73:fd:ba:49:33:e6:99:eb:b6:
35:bc:dd:ae:6f:2e:4b:97:48:6a:b0:79:16:be:05:
a4:95:93:10:78:fa:08:6d:37:02:fa:52:7e:c1:40:
2f:92:c5:f7:4a:4c:40:58:2e:b2:72:97:b3:57:5f:
b9:43:1d:5b:9e:d3:c9:aa:93:1d:44:f3:08:f4:ae:
95:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:1A:28:1C:1E:88:DA:87:26:6D:56:B6:CD:3A:D3:BA:74:F8:84:F7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b176a187-5863-4413-a001-74ccc0321be5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d02c::/36
Signature Algorithm: sha256WithRSAEncryption
89:8d:b6:ac:6d:ed:e9:aa:d9:e6:fc:12:ab:59:94:f2:a4:9c:
49:c4:a4:ee:9a:0f:6a:3d:9a:5e:0f:43:a3:d8:bb:c0:e7:d5:
31:03:18:90:0c:52:92:6b:70:0d:80:d0:66:82:f0:b1:6c:a0:
ad:76:da:82:6c:c8:83:4d:ad:c7:7a:37:6d:b0:88:de:2a:7e:
64:85:0a:5a:0c:bf:b9:94:81:ee:22:7e:07:bc:8e:4a:f4:0e:
26:21:4e:dc:27:f9:cf:26:85:0d:89:ac:a9:76:63:6f:7e:ff:
a5:17:72:8c:97:01:11:f3:87:9b:f5:0e:5d:2d:a9:31:45:4b:
6f:71:f4:08:4f:37:1d:fa:db:f6:81:66:28:41:ed:53:fc:66:
15:24:70:53:3d:63:91:fa:13:d6:91:df:ee:c4:3b:75:49:f3:
9f:92:ce:3f:8d:6e:a1:bf:58:06:9f:a5:2d:d8:87:85:7e:46:
11:c8:06:11:f2:94:6a:ec:1a:af:68:34:1d:c9:d4:35:97:11:
83:f1:b1:e3:c0:ed:a4:51:02:03:83:76:08:25:9a:5b:fa:f7:
10:44:6b:68:d8:31:e1:85:6e:13:41:d3:75:22:6f:23:14:83:
65:f9:38:1b:f7:d1:94:fe:a5:84:92:3e:dd:38:9e:b5:cd:61:
ae:24:34:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:16:39 2024 by rpki-client on console-fra.rpki-client.org