Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c8af9121-2fa0-422d-9c11-2e15bcdcdd17.roa
File: c8af9121-2fa0-422d-9c11-2e15bcdcdd17.roa (raw, json)
Hash identifier: sozr+Bnj4oygBY/36UvJF2vKNV5R6iehT1IAVT3/wIo=
Subject key identifier: 72:CE:96:15:DB:63:BC:36:33:B3:D5:A0:F9:C1:A4:36:B1:56:D0:49
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 48FD041F11C4D595970F220EFB7AC3205FADEA45
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c8af9121-2fa0-422d-9c11-2e15bcdcdd17.roa
Signing time: Fri 08 Nov 2024 00:00:00 +0000
ROA not before: Fri 08 Nov 2024 00:00:00 +0000
ROA not after: Fri 13 Dec 2024 23:59:59 +0000
asID: 8987
IP address blocks: 178.236.0.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 17:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:fd:04:1f:11:c4:d5:95:97:0f:22:0e:fb:7a:c3:20:5f:ad:ea:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 8 00:00:00 2024 GMT
Not After : Dec 13 23:59:59 2024 GMT
Subject: serialNumber=912e26ba3393711fe082033ccd47e24b7c60a093bbb34d58dcb679f9edfaeda7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:c4:97:85:03:7b:02:9f:7a:13:ed:b4:a1:
04:b0:83:c4:d6:16:de:c9:99:0f:ea:cf:cd:b7:08:
6b:27:ca:f0:f0:ed:87:78:6a:d4:ca:e4:e6:4a:ed:
b3:f7:85:44:d0:41:be:07:2f:01:25:65:2e:ce:5b:
29:71:4d:6b:24:c1:39:d2:5d:8c:75:e2:98:56:b7:
79:a1:48:5b:73:9f:f7:26:27:68:ff:a2:f1:9a:46:
1b:97:5d:30:f3:81:c8:c9:49:91:8e:65:3f:5d:85:
82:e5:c4:00:f8:fc:bf:d7:80:c2:59:f5:49:e6:b2:
f6:b5:a8:c5:72:ae:fe:ef:f6:39:33:08:b9:7a:b4:
cd:fb:1c:92:69:cd:15:50:6f:78:0b:21:c2:5d:f1:
af:5b:e0:e4:fa:88:2a:5e:4d:8b:77:af:9e:5f:8a:
a4:07:2c:27:8e:b4:30:84:da:bd:f9:91:cf:85:b4:
3f:6c:a7:fb:0e:42:33:fb:ed:7d:c1:e1:7a:83:f9:
c1:99:2a:cc:08:db:28:6f:f6:b5:79:c2:ae:0a:ad:
c8:1c:a5:a0:4e:ca:ac:10:e1:18:ef:6b:54:3e:c6:
7e:7a:68:da:da:1b:e6:5f:d5:0c:17:21:4b:71:a8:
dd:ab:94:05:f6:de:5c:de:99:e0:b4:5b:fa:4e:b3:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CE:96:15:DB:63:BC:36:33:B3:D5:A0:F9:C1:A4:36:B1:56:D0:49
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c8af9121-2fa0-422d-9c11-2e15bcdcdd17.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.0.0/20
Signature Algorithm: sha256WithRSAEncryption
23:ad:d2:d8:cf:ec:15:29:0c:72:d5:6c:bb:5b:82:41:e9:cd:
a5:8b:90:1f:78:d4:b0:ca:e5:58:ae:59:d5:c7:9b:07:39:b6:
86:99:6a:f7:4a:1a:a1:5a:b3:5f:b3:be:97:44:69:e3:aa:fc:
d4:3b:e9:cd:2c:0c:fd:14:34:dd:f1:be:3b:b7:ef:4e:ba:ac:
e2:2f:a6:84:11:c8:84:51:cc:53:10:41:ae:d3:d1:6c:5f:f2:
e1:9a:a5:76:58:38:89:e8:12:5e:ee:ae:78:2e:61:1e:b8:ee:
5c:99:b1:d7:fa:f9:16:aa:c6:dc:1b:a2:e4:e8:3f:d2:54:c6:
c6:31:b4:f6:40:8f:34:66:2b:71:e6:3e:12:95:79:03:5c:05:
79:62:7f:51:7c:7b:81:1e:88:00:a4:83:ce:08:fb:81:57:96:
08:ac:af:a8:33:fd:b8:fe:13:cb:32:7b:40:2a:d6:b4:c0:3f:
e3:07:c0:de:32:27:a9:ee:65:14:7d:88:3c:bc:22:fe:a6:f3:
c4:93:e3:24:f2:04:6f:b0:75:d9:77:6f:ab:75:de:18:49:2b:
b8:be:97:87:7c:f5:4d:1d:03:df:22:57:15:67:e8:cc:20:88:
91:46:f0:e5:d5:79:cb:9b:ab:75:f0:f7:7f:3c:0f:b3:b3:4f:
63:b0:c2:9d
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUSP0EHxHE1ZWXDyIO+3rDIF+t6kUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDExMDgwMDAwMDBaFw0yNDEyMTMyMzU5NTlaMHoxSTBHBgNV
BAUTQDkxMmUyNmJhMzM5MzcxMWZlMDgyMDMzY2NkNDdlMjRiN2M2MGEwOTNiYmIz
NGQ1OGRjYjY3OWY5ZWRmYWVkYTcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKwmxJeFA3sCn3oT7bShBLCDxNYW3smZD+rPzbcIayfK8PDth3hq1Mrk5krt
s/eFRNBBvgcvASVlLs5bKXFNayTBOdJdjHXimFa3eaFIW3Of9yYnaP+i8ZpGG5dd
MPOByMlJkY5lP12FguXEAPj8v9eAwln1Seay9rWoxXKu/u/2OTMIuXq0zfsckmnN
FVBveAshwl3xr1vg5PqIKl5Ni3evnl+KpAcsJ460MITavfmRz4W0P2yn+w5CM/vt
fcHheoP5wZkqzAjbKG/2tXnCrgqtyByloE7KrBDhGO9rVD7Gfnpo2tob5l/VDBch
S3Go3auUBfbeXN6Z4LRb+k6zlGcCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRyzpYV
22O8NjOz1aD5waQ2sVbQSTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YzhhZjkxMjEtMmZhMC00MjJkLTljMTEtMmUxNWJjZGNkZDE3LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLLsADAN
BgkqhkiG9w0BAQsFAAOCAQEAI63S2M/sFSkMctVsu1uCQenNpYuQH3jUsMrlWK5Z
1cebBzm2hplq90oaoVqzX7O+l0Rp46r81DvpzSwM/RQ03fG+O7fvTrqs4i+mhBHI
hFHMUxBBrtPRbF/y4Zqldlg4iegSXu6ueC5hHrjuXJmx1/r5FqrG3Bui5Og/0lTG
xjG09kCPNGYrceY+EpV5A1wFeWJ/UXx7gR6IAKSDzgj7gVeWCKyvqDP9uP4TyzJ7
QCrWtMA/4wfA3jInqe5lFH2IPLwi/qbzxJPjJPIEb7B12Xdvq3XeGEkruL6Xh3z1
TR0D3yJXFWfozCCIkUbw5dV5y5urdfD3fzwPs7NPY7DCnQ==
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:03:33 2024 by rpki-client on console-fra.rpki-client.org