Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
File: c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa (raw, json)
Hash identifier: Eeda6F/E95VrGfySzyOzaZXqKMVgmgVF7N9ZEirbmzs=
Subject key identifier: 12:FD:47:C9:37:DE:9E:3B:3B:B6:71:AA:8B:7E:EF:E2:E7:51:36:D7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3246B6D777B4937CDE5193F1FD8AADD023BC9B2D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:6000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Apr 2024 14:24:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:46:b6:d7:77:b4:93:7c:de:51:93:f1:fd:8a:ad:d0:23:bc:9b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=c03963ad4fb148da4494f8c06c9dc2b2c07b2d7a79a53996ed34dd4eac0339d9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9e:18:83:05:b7:e0:f9:5f:48:f1:c1:b8:35:
f3:f1:72:7d:d4:5e:22:af:97:93:e7:78:f5:86:34:
ae:9e:a7:04:26:70:7a:15:a1:1b:b5:7f:9a:61:fc:
fc:9f:7b:22:83:85:77:71:80:92:6a:a5:13:27:9a:
50:45:dc:b1:c1:3b:c4:14:02:bc:2c:4f:98:10:12:
da:eb:de:fb:82:fc:2c:18:7c:50:27:45:52:c4:70:
8d:23:a1:07:25:b4:e9:c3:26:f4:75:92:5c:69:46:
c4:72:93:a6:a1:5b:f0:8e:15:d3:0d:48:c3:5d:d1:
c7:03:9b:dc:30:0f:6c:78:e4:7d:26:40:28:89:27:
7e:ae:7c:43:a3:0c:f0:09:9f:7e:48:f0:79:88:dc:
a5:7b:b6:6c:22:07:94:36:76:ce:2f:86:bb:24:18:
5e:40:31:6e:85:24:87:97:64:0e:e9:e1:c9:e8:73:
fb:41:d8:fc:64:12:49:7f:5f:49:be:12:9e:11:c5:
72:64:36:86:8f:7e:f7:32:52:e5:40:f3:ac:27:58:
fb:34:84:75:ab:0d:4a:73:9a:aa:fd:a6:fd:bd:b5:
b3:9d:96:2b:8a:64:82:89:7c:81:6b:70:8d:45:3e:
5f:ab:37:cf:47:83:09:72:fb:10:1c:f4:15:24:d0:
99:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FD:47:C9:37:DE:9E:3B:3B:B6:71:AA:8B:7E:EF:E2:E7:51:36:D7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:6000::/40
Signature Algorithm: sha256WithRSAEncryption
23:f2:5d:82:74:5d:21:c4:5d:8d:e4:24:4a:5c:0c:ff:8c:52:
82:dd:30:c5:c1:97:fd:da:46:8c:8e:aa:77:e3:79:c4:41:5b:
23:dd:c3:37:d8:c3:6a:7c:07:f8:5b:77:40:82:7d:fb:fd:81:
8f:bd:ef:3e:83:5c:74:80:f2:47:d0:22:ed:fd:90:9e:f1:5f:
ad:99:01:cd:7e:bb:48:1b:8c:1a:52:a5:73:e1:eb:58:ff:d8:
00:be:3d:47:8a:f3:a0:d7:6a:9e:4e:68:b4:d5:b1:69:fb:53:
e0:64:5f:93:12:20:b9:a8:a5:9d:a6:c5:f2:c5:d6:51:6d:64:
63:d1:61:6e:db:a1:ad:f6:32:a5:88:1c:b8:0a:61:9b:a4:e2:
e0:a3:c6:b8:3b:57:86:52:f5:20:6a:dc:81:99:78:15:03:ef:
66:66:4e:08:17:17:e0:6e:fd:6a:36:6d:c6:53:e6:76:a7:76:
81:cb:80:34:e4:a4:e6:62:c3:39:15:11:99:45:75:5c:60:ed:
d3:da:bb:47:e5:a1:3b:c2:96:0e:4c:5d:38:43:c2:db:05:d8:
d0:60:bb:b0:b0:e8:e6:1c:9d:3c:7d:0a:97:32:2a:58:b4:81:
42:72:9f:bd:94:a4:b7:b2:14:ba:01:d7:75:47:86:c7:68:44:
66:c0:79:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 18:31:27 2024 by rpki-client on console-fra.rpki-client.org