Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d37dfec6-4d5a-4fea-a026-1350fc8af8c3.roa
File: d37dfec6-4d5a-4fea-a026-1350fc8af8c3.roa (raw, json)
Hash identifier: RvUUtZq/TdIggK39vawWpV0Ig4/axgST1n9uvJBofuE=
Subject key identifier: 1A:AB:CC:0F:1F:15:99:1D:EF:27:FB:C2:23:A3:83:DE:12:00:13:5F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3812225ADFE3B157B69BC34D1B0BB2F8ECF96D26
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d37dfec6-4d5a-4fea-a026-1350fc8af8c3.roa
Signing time: Mon 01 Apr 2024 00:00:00 +0000
ROA not before: Mon 01 Apr 2024 00:00:00 +0000
ROA not after: Mon 06 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d03a:1000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 18:36:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:12:22:5a:df:e3:b1:57:b6:9b:c3:4d:1b:0b:b2:f8:ec:f9:6d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 1 00:00:00 2024 GMT
Not After : May 6 23:59:59 2024 GMT
Subject: serialNumber=c8eb49300470e746cf8e3d46e0cb15a37a253228d5affb05a7b219de6f612bbf, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5a:fd:e4:57:d4:39:aa:a1:7d:2e:aa:dc:42:
9e:99:04:d7:5d:73:cd:32:a3:c0:c7:70:cf:2a:43:
97:c4:00:4c:20:58:d0:78:3d:5d:f2:6c:2c:33:b3:
9f:10:2a:d4:4a:da:58:d0:eb:cb:b1:db:84:15:8c:
d4:8a:34:8b:4c:fd:b6:be:d7:70:97:ba:01:b6:90:
d3:2a:5f:39:8f:81:59:d7:08:56:57:29:a1:90:55:
c7:58:6c:e8:c6:0c:55:15:23:1e:ec:fb:13:4a:98:
80:ee:c9:24:4c:2d:e1:69:40:55:44:3f:79:a9:48:
8f:ce:b8:47:5e:1b:23:fb:99:2b:bf:af:0c:a2:07:
4e:08:8e:04:42:9c:3a:c4:65:b5:12:01:c6:20:cb:
f7:ee:ac:36:c6:d1:a5:84:00:31:40:1f:47:a1:25:
88:15:97:3b:7b:f5:12:37:7b:09:4e:d9:2f:32:e8:
86:43:d8:ba:9b:b0:35:ef:5f:6d:f3:8b:23:e2:75:
7a:6e:f0:1c:e5:41:98:fe:8a:b0:af:35:59:4c:58:
25:57:90:e8:66:65:8a:ef:e4:a6:68:2d:06:f2:be:
4c:28:3d:59:c7:b8:5d:cf:55:fe:ab:69:9a:a5:81:
ed:8c:c4:9a:15:32:e3:40:f4:8c:50:51:55:64:35:
cb:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AB:CC:0F:1F:15:99:1D:EF:27:FB:C2:23:A3:83:DE:12:00:13:5F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d37dfec6-4d5a-4fea-a026-1350fc8af8c3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d03a:1000::/40
Signature Algorithm: sha256WithRSAEncryption
6a:3a:82:a0:2c:0d:07:d3:5d:0b:36:3b:f7:b7:5d:e6:d6:ab:
91:1c:6d:88:06:96:3a:85:6d:dd:69:85:90:a5:41:a9:ed:d1:
3e:3f:ea:9a:a9:be:20:6c:4f:df:b2:12:8f:70:63:30:ba:a2:
c4:2a:49:11:27:5a:80:1f:46:77:1b:fc:44:dc:17:a6:2a:46:
96:bb:6d:d1:c5:03:ea:e1:d1:28:ce:be:07:67:1d:c7:ed:a8:
53:e1:fd:0c:13:43:f6:84:24:d7:6b:e0:7c:eb:a0:f4:ea:c2:
ca:8b:fc:b0:63:cc:7e:b1:b4:31:6e:4e:6c:68:70:ab:7a:8e:
c0:b9:da:69:70:ca:d3:6d:e5:d1:6e:14:64:c2:66:69:1d:0a:
6b:e0:39:6d:5c:b2:be:c2:53:af:c6:69:c1:83:f4:73:30:99:
18:e8:8b:e1:ca:89:9c:10:dc:05:a4:8c:e4:3c:1f:fd:83:6d:
61:d3:f5:4c:d9:ad:93:27:e4:67:40:0f:30:30:db:1b:ac:0f:
0d:7a:8a:79:0a:5c:6f:57:f3:83:43:0c:65:71:fc:67:ed:fa:
ca:f8:c1:b2:fc:f5:e8:b4:6b:41:5d:ec:9b:88:3d:d5:46:16:
c6:a3:0f:ae:28:5c:cf:df:de:3c:b7:df:5d:d1:fd:23:41:18:
69:d3:16:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 02:47:31 2024 by rpki-client on console-ams.rpki-client.org