Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
File: c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa (raw, json)
Hash identifier: eVDliXpObUMj8/Klemvbu5m1OsKkDrQ/1y/OlZbvlc0=
Subject key identifier: EF:74:60:DC:62:E3:83:F5:96:8D:36:0C:13:7A:93:84:39:0C:9F:85
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 358666FCC44191405A87A53FF31D569B548DD56D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:6000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:86:66:fc:c4:41:91:40:5a:87:a5:3f:f3:1d:56:9b:54:8d:d5:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=bc465098f1ffcef5a080557e3de63e5dffb459b6756dec117b4ff1df131790e2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:37:79:77:14:4a:2e:64:e2:6c:85:79:92:5d:
08:6c:e4:a2:d2:da:c3:68:ca:ad:34:14:59:44:fc:
c5:20:ef:28:1a:8a:3a:ac:c1:52:cb:44:a2:9d:ef:
3f:7a:4e:b0:16:7b:59:08:93:47:17:98:b5:62:3d:
c7:98:e1:4a:1f:d9:55:57:16:54:a9:0a:1d:5c:90:
23:01:3d:4c:b2:7d:b6:2f:76:b8:a8:5c:de:1a:05:
3d:f8:59:01:41:9c:02:34:e9:47:7c:dc:a5:72:f2:
4f:cc:c3:33:61:5d:34:3f:e6:37:b5:3d:34:84:78:
29:98:18:3d:fa:45:ed:02:07:66:cf:37:f7:6f:a4:
80:ae:59:ad:2e:a2:40:b3:19:87:58:e4:cb:93:85:
51:08:8c:2c:4b:41:d9:96:fe:74:bb:38:f3:cf:7b:
e8:a6:f5:37:54:e8:68:c7:69:bb:02:8e:cd:25:47:
ed:f9:65:41:a3:9a:f1:93:c1:2c:7f:19:ee:f5:32:
0b:d5:c3:48:70:60:e3:23:f1:ca:55:72:95:08:39:
2a:ec:b0:35:2c:b5:67:d0:a1:60:a3:20:8b:d9:34:
c5:37:2b:df:7e:c7:7b:6d:a6:96:46:0e:61:26:d0:
2f:72:c8:fe:78:e2:69:d1:46:c3:b5:c7:0e:ea:eb:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:74:60:DC:62:E3:83:F5:96:8D:36:0C:13:7A:93:84:39:0C:9F:85
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:6000::/40
Signature Algorithm: sha256WithRSAEncryption
00:d8:3c:88:c5:47:9c:e8:d2:ae:34:48:1c:ca:95:a5:77:e8:
fe:9f:f9:b9:cd:40:54:0a:db:a6:72:0b:d6:4f:7f:52:f4:06:
1d:e1:8c:1e:c9:81:f1:8f:d3:31:3d:cc:6b:d2:61:33:2d:58:
62:07:05:01:a0:ed:d9:b0:0b:5d:70:10:d5:a2:6f:35:49:41:
95:81:1c:d9:f0:1f:ce:a8:2f:05:93:ac:91:46:d0:20:9b:a0:
12:ea:8d:1a:97:7e:ab:c9:c9:3b:eb:3e:8b:eb:27:05:e9:97:
7c:4f:f9:4e:49:e2:6d:cb:d5:1d:4b:73:cf:3c:96:dc:34:22:
20:7e:bf:23:5f:2a:a6:3f:77:93:33:67:ee:1f:1e:03:a8:39:
61:ca:1f:52:55:9a:36:4f:6b:98:47:d0:7d:a7:82:15:cf:a8:
a3:53:a1:82:ce:84:cb:8c:ef:e2:92:c1:7c:d8:7d:88:a6:76:
ce:78:1f:cc:97:fb:26:52:5f:a4:f0:b5:78:bb:bf:cb:31:a5:
77:4e:05:06:cc:89:3c:7d:a2:25:81:86:48:3d:5d:64:65:e8:
0e:02:24:b1:fb:7a:dd:b8:a7:bd:9a:c1:c6:45:94:b9:98:01:
65:1d:33:2d:0f:f1:bf:97:1c:8d:32:e1:da:ab:cb:6d:0f:9a:
06:3b:ab:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 16:40:27 2023 by rpki-client on console-ams.rpki-client.org