Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdd33562-2653-4549-84dc-25f96aa10a83.roa
File: bdd33562-2653-4549-84dc-25f96aa10a83.roa (raw, json)
Hash identifier: Hm4wfLWJmAAA6QOQIWsiCiLcdNGWGuYV8KxTIH2UegY=
Subject key identifier: FB:15:24:96:1E:AE:E7:A8:28:31:5F:F5:06:8C:9C:E1:4A:4B:AD:C0
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 51C440BEE6BE81BB2EBAD66E2DB72C22CDDFB84D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdd33562-2653-4549-84dc-25f96aa10a83.roa
Signing time: Wed 23 Oct 2024 00:00:00 +0000
ROA not before: Wed 23 Oct 2024 00:00:00 +0000
ROA not after: Wed 27 Nov 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d021::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Oct 2024 11:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c4:40:be:e6:be:81:bb:2e:ba:d6:6e:2d:b7:2c:22:cd:df:b8:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Oct 23 00:00:00 2024 GMT
Not After : Nov 27 23:59:59 2024 GMT
Subject: serialNumber=a04c07fc9bc4e70b09fa9ae768cd477ffdd557f51d85bf17658a2ab379abbb73, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b6:98:ca:cf:91:ea:61:59:5f:41:6c:2f:04:
92:07:f7:70:04:4a:e7:00:99:b3:fe:06:6a:25:66:
11:5e:39:ce:c4:e3:36:0a:db:70:c2:30:ef:a6:30:
b6:1d:48:6a:05:27:8a:25:4b:3a:d7:e3:5d:6b:5b:
87:5e:d8:a6:9e:e0:07:dd:95:82:a4:cb:3f:08:77:
e9:81:58:73:99:dd:5c:1d:d2:66:ef:c0:51:3e:8f:
b3:0c:df:2b:5c:0c:9b:e2:f1:b6:2a:b8:05:fe:10:
aa:b8:26:05:62:aa:79:0f:22:07:d3:5b:1b:4d:77:
6c:ee:9c:de:e2:8a:d4:bc:b8:94:12:f6:94:80:74:
09:3f:3e:bf:ce:88:b5:27:c6:7c:3a:b6:19:73:12:
f4:37:63:d8:9a:97:56:ba:55:41:2a:73:8e:46:af:
29:8f:50:8b:e3:dd:cc:20:6d:46:3c:b7:23:24:0e:
b2:91:b5:0a:df:dc:72:a4:9d:d2:b5:3e:b2:2f:db:
b5:20:f6:87:d7:73:58:9c:4c:de:32:8a:9f:83:81:
ec:64:94:80:b3:12:25:1f:c7:7c:78:e3:d3:61:5f:
d7:99:fa:d2:18:94:4d:d4:52:a0:46:fb:a5:68:29:
76:b6:95:e0:c1:48:05:bb:09:8d:ac:4f:a6:2a:6c:
0c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:15:24:96:1E:AE:E7:A8:28:31:5F:F5:06:8C:9C:E1:4A:4B:AD:C0
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdd33562-2653-4549-84dc-25f96aa10a83.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d021::/36
Signature Algorithm: sha256WithRSAEncryption
58:cc:c5:86:57:94:88:80:a5:67:54:28:bd:9d:08:da:13:75:
dc:62:e3:35:a7:00:95:c5:c9:17:57:a8:cc:e8:71:d8:4b:6e:
70:e9:63:bc:c3:5e:10:1a:ca:94:76:e4:8f:89:17:2e:83:19:
85:12:43:87:de:3c:5c:52:76:ca:45:86:e0:a5:91:1e:4b:ce:
27:ff:9d:50:af:76:75:72:d6:63:6f:12:54:26:8f:39:ed:17:
48:da:f6:b5:77:2e:21:d2:ec:1b:bb:6c:24:a9:8e:7d:5f:5a:
4a:fe:22:53:2e:47:8c:a3:9a:17:74:41:43:e4:45:96:b6:31:
49:2b:77:83:a6:ab:49:2b:45:6d:4a:6c:85:40:af:88:4e:33:
0a:4d:e1:26:2f:8b:01:1c:a1:a7:64:63:d7:c2:63:cd:e7:be:
26:ea:a7:3d:98:55:97:67:26:33:5f:d5:7e:f0:20:e5:dd:a7:
3a:54:1e:82:e6:4c:fa:a8:34:79:40:5c:f7:e8:dd:9a:63:21:
2f:77:8c:e2:e6:68:88:a2:ac:cb:88:3b:7a:76:ce:9a:12:4e:
5c:ad:c7:a8:f7:17:42:b3:57:42:1f:36:1d:32:42:bb:3e:05:
c6:3f:27:44:00:69:63:a4:65:89:8e:8c:95:66:49:af:6a:9d:
7b:dd:ec:9b
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUUcRAvua+gbsuutZuLbcsIs3fuE0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDEwMjMwMDAwMDBaFw0yNDExMjcyMzU5NTlaMHoxSTBHBgNV
BAUTQGEwNGMwN2ZjOWJjNGU3MGIwOWZhOWFlNzY4Y2Q0NzdmZmRkNTU3ZjUxZDg1
YmYxNzY1OGEyYWIzNzlhYmJiNzMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMS2mMrPkephWV9BbC8Ekgf3cARK5wCZs/4GaiVmEV45zsTjNgrbcMIw76Yw
th1IagUniiVLOtfjXWtbh17Ypp7gB92VgqTLPwh36YFYc5ndXB3SZu/AUT6Pswzf
K1wMm+Lxtiq4Bf4QqrgmBWKqeQ8iB9NbG013bO6c3uKK1Ly4lBL2lIB0CT8+v86I
tSfGfDq2GXMS9Ddj2JqXVrpVQSpzjkavKY9Qi+PdzCBtRjy3IyQOspG1Ct/ccqSd
0rU+si/btSD2h9dzWJxM3jKKn4OB7GSUgLMSJR/HfHjj02Ff15n60hiUTdRSoEb7
pWgpdraV4MFIBbsJjaxPpipsDDcCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBT7FSSW
Hq7nqCgxX/UGjJzhSkutwDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YmRkMzM1NjItMjY1My00NTQ5LTg0ZGMtMjVmOTZhYTEwYTgzLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0CEA
MA0GCSqGSIb3DQEBCwUAA4IBAQBYzMWGV5SIgKVnVCi9nQjaE3XcYuM1pwCVxckX
V6jM6HHYS25w6WO8w14QGsqUduSPiRcugxmFEkOH3jxcUnbKRYbgpZEeS84n/51Q
r3Z1ctZjbxJUJo857RdI2va1dy4h0uwbu2wkqY59X1pK/iJTLkeMo5oXdEFD5EWW
tjFJK3eDpqtJK0VtSmyFQK+ITjMKTeEmL4sBHKGnZGPXwmPN574m6qc9mFWXZyYz
X9V+8CDl3ac6VB6C5kz6qDR5QFz36N2aYyEvd4zi5miIoqzLiDt6ds6aEk5crceo
9xdCs1dCHzYdMkK7PgXGPydEAGljpGWJjoyVZkmvap173eyb
-----END CERTIFICATE-----
Generated at Fri Oct 25 17:03:18 2024 by rpki-client on console-fra.rpki-client.org