Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c39dd71c-f22c-4bb4-9c6f-dfc8c6a02ffd.roa
File: c39dd71c-f22c-4bb4-9c6f-dfc8c6a02ffd.roa (raw, json)
Hash identifier: 6r2BhIl2Uld1IoivqrzOVy1jmYppKHGPLyetbRQ8XMY=
Subject key identifier: 41:70:99:FD:1C:C4:8F:15:78:07:0B:64:C5:FD:BB:24:7D:ED:6F:B2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 25CE6B6B8CF6C8BF8E7521B9D472BCAB070C9759
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c39dd71c-f22c-4bb4-9c6f-dfc8c6a02ffd.roa
Signing time: Tue 19 Nov 2024 00:00:00 +0000
ROA not before: Tue 19 Nov 2024 00:00:00 +0000
ROA not after: Tue 24 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07e:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:ce:6b:6b:8c:f6:c8:bf:8e:75:21:b9:d4:72:bc:ab:07:0c:97:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 19 00:00:00 2024 GMT
Not After : Dec 24 23:59:59 2024 GMT
Subject: serialNumber=5639f2e27b0885ce2f2019c5ddf9b14aa118e7c0474bed373cd8e5ef25a3ef5d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:72:03:ff:3b:3c:0c:9f:ae:a4:c8:5c:29:b9:
3f:3b:bc:c0:6e:84:78:a0:ff:28:cc:30:cf:46:6e:
f3:58:72:1e:9b:50:1c:fa:8b:98:2b:f7:da:f2:3a:
e9:22:d7:62:54:d3:c7:f8:b4:94:f3:64:24:d5:fa:
2d:66:be:ce:ea:e4:8b:02:a3:4b:a8:6b:b1:4a:d2:
61:60:e0:34:74:08:55:83:e7:72:c5:32:21:da:0b:
3d:f8:36:71:41:10:33:16:8e:37:40:1c:97:9c:01:
7f:d6:2a:ce:ec:1d:f0:5b:73:35:56:9a:1c:90:c8:
16:60:18:95:50:aa:bc:a5:0c:12:96:6f:93:71:00:
06:d8:4a:8d:d5:3f:47:64:28:d7:1c:91:64:46:89:
7c:8b:59:4a:be:2d:e0:eb:71:4d:54:20:62:2e:3d:
4f:30:96:e2:08:02:41:36:e8:bc:4b:de:30:3b:4f:
93:a5:03:26:9d:6a:e3:ce:d3:06:31:c2:0e:69:42:
b6:fc:bc:22:a5:e0:84:c8:26:1d:88:72:2b:ae:6b:
8f:a6:26:34:55:15:59:c9:c2:84:ce:fe:00:3e:54:
79:1b:bf:a8:a6:ad:e1:90:55:43:8e:bd:08:29:75:
c1:65:aa:5d:43:c9:be:99:09:21:b6:13:ee:3e:18:
44:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:70:99:FD:1C:C4:8F:15:78:07:0B:64:C5:FD:BB:24:7D:ED:6F:B2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c39dd71c-f22c-4bb4-9c6f-dfc8c6a02ffd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07e:a000::/40
Signature Algorithm: sha256WithRSAEncryption
56:b3:b2:62:e5:e2:9e:47:a2:51:77:69:4f:89:45:94:c8:cb:
02:9a:a2:1b:89:fc:84:9c:7b:4d:63:4f:30:f6:92:52:45:04:
89:36:f3:16:3d:90:1d:a0:77:66:4f:f4:25:a8:46:f8:e5:8b:
7f:23:67:ea:0b:a0:8f:3f:c7:b8:39:1e:74:48:f0:c9:01:50:
ca:a4:1d:ad:3a:35:d3:c7:c8:63:f1:5b:6b:cc:2c:ab:ea:66:
60:8b:d2:70:50:49:91:e1:20:eb:57:8d:0b:1b:aa:0a:7b:d4:
6f:98:05:9f:b3:e3:73:9d:e5:3a:1a:a7:33:e0:aa:11:f0:e1:
09:e1:4f:95:00:4f:b2:f8:3f:78:4d:fc:57:f6:a6:2d:47:a7:
50:55:33:e1:12:be:0a:d2:96:6d:dd:1a:c0:8b:7b:8e:aa:61:
ba:c6:39:d6:9e:2b:57:33:95:b1:3a:a0:61:45:cb:d2:09:51:
27:6e:8f:0f:d4:c3:8e:43:cf:45:b0:56:8c:23:e4:79:fd:d5:
f1:11:91:9f:3f:86:09:18:bf:02:ec:7d:bd:85:31:47:12:e2:
6e:56:8c:80:d9:4b:42:75:77:ca:79:60:18:a4:8f:ba:37:fe:
4a:87:2a:2e:ae:f3:03:0f:de:5a:b2:e9:19:aa:40:18:96:79:
2e:42:9f:39
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUJc5ra4z2yL+OdSG51HK8qwcMl1kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDExMTkwMDAwMDBaFw0yNDEyMjQyMzU5NTlaMHoxSTBHBgNV
BAUTQDU2MzlmMmUyN2IwODg1Y2UyZjIwMTljNWRkZjliMTRhYTExOGU3YzA0NzRi
ZWQzNzNjZDhlNWVmMjVhM2VmNWQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOVyA/87PAyfrqTIXCm5Pzu8wG6EeKD/KMwwz0Zu81hyHptQHPqLmCv32vI6
6SLXYlTTx/i0lPNkJNX6LWa+zurkiwKjS6hrsUrSYWDgNHQIVYPncsUyIdoLPfg2
cUEQMxaON0Acl5wBf9Yqzuwd8FtzNVaaHJDIFmAYlVCqvKUMEpZvk3EABthKjdU/
R2Qo1xyRZEaJfItZSr4t4OtxTVQgYi49TzCW4ggCQTbovEveMDtPk6UDJp1q487T
BjHCDmlCtvy8IqXghMgmHYhyK65rj6YmNFUVWcnChM7+AD5UeRu/qKat4ZBVQ469
CCl1wWWqXUPJvpkJIbYT7j4YRGECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRBcJn9
HMSPFXgHC2TF/bskfe1vsjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YzM5ZGQ3MWMtZjIyYy00YmI0LTljNmYtZGZjOGM2YTAyZmZkLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H6g
MA0GCSqGSIb3DQEBCwUAA4IBAQBWs7Ji5eKeR6JRd2lPiUWUyMsCmqIbifyEnHtN
Y08w9pJSRQSJNvMWPZAdoHdmT/QlqEb45Yt/I2fqC6CPP8e4OR50SPDJAVDKpB2t
OjXTx8hj8VtrzCyr6mZgi9JwUEmR4SDrV40LG6oKe9RvmAWfs+NzneU6Gqcz4KoR
8OEJ4U+VAE+y+D94TfxX9qYtR6dQVTPhEr4K0pZt3RrAi3uOqmG6xjnWnitXM5Wx
OqBhRcvSCVEnbo8P1MOOQ89FsFaMI+R5/dXxEZGfP4YJGL8C7H29hTFHEuJuVoyA
2UtCdXfKeWAYpI+6N/5KhyourvMDD95asukZqkAYlnkuQp85
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:32 2024 by rpki-client on console-fra.rpki-client.org