Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d87254b0-b4eb-4fa7-903a-4d7122b9c6b4.roa
File: d87254b0-b4eb-4fa7-903a-4d7122b9c6b4.roa (raw, json)
Hash identifier: q+6yMT8bTiFf0rRbJqMxqpOgkU6kgp7GO9QfcdwiNfw=
Subject key identifier: 56:6D:08:FA:AA:4A:8A:39:D2:6F:12:42:45:C1:9E:88:F8:99:72:ED
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 485A6F5434690CCEDD39FC8AD6EB8FBCF2DC5E15
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d87254b0-b4eb-4fa7-903a-4d7122b9c6b4.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d070:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Apr 2024 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:5a:6f:54:34:69:0c:ce:dd:39:fc:8a:d6:eb:8f:bc:f2:dc:5e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=7dbae4129aef61a36a8ee6ca3e6a9f3eed985d4261d6c6fae718a2c791913a6e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:94:70:32:03:1e:63:4a:80:9c:ae:8b:be:14:
37:74:94:9a:dc:c7:00:62:21:0d:1d:c2:fe:fa:e4:
8d:fb:a3:0f:fc:71:70:ac:8d:60:87:67:4e:fb:11:
b3:0f:ee:7e:d0:17:c0:9a:30:24:52:0e:c8:a2:08:
4f:9c:d3:e7:35:29:e3:b1:22:32:87:05:6c:9a:7f:
ff:c4:d2:79:cf:37:f5:ca:8a:89:ca:83:03:24:6b:
94:5b:a3:ce:0f:a8:f6:08:92:36:17:fd:b9:59:03:
91:b6:6a:3e:01:c3:6c:7f:47:c9:93:9c:19:d7:0a:
58:c0:8c:e1:c8:71:95:e4:76:1e:ce:db:a5:86:3e:
a9:09:59:78:82:5c:cf:32:ee:89:46:f5:9d:7f:0e:
0e:f5:60:33:51:e5:c2:c4:85:38:c3:ab:6d:67:a0:
76:39:5a:88:4d:8a:54:c8:94:72:78:0b:d8:08:29:
86:84:45:72:6c:32:d0:f8:57:32:ef:61:df:38:b4:
b7:90:a3:52:34:6e:7c:4d:54:31:cd:57:ca:1c:79:
9f:d8:7d:68:5a:60:de:36:5c:62:c4:db:3e:67:ec:
ff:73:9f:80:99:d0:71:8f:76:7c:d0:68:5d:e1:73:
88:11:9a:97:f2:59:a0:06:c1:92:35:58:5a:de:06:
53:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:6D:08:FA:AA:4A:8A:39:D2:6F:12:42:45:C1:9E:88:F8:99:72:ED
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d87254b0-b4eb-4fa7-903a-4d7122b9c6b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d070:5000::/40
Signature Algorithm: sha256WithRSAEncryption
b0:5e:59:ea:32:d2:eb:56:f9:86:99:64:16:06:0f:3d:1c:96:
7d:42:04:3f:8c:9f:ff:2a:c1:75:cb:83:0f:ea:96:a2:77:ca:
9b:5f:01:0c:91:58:a5:7e:a6:d2:c2:d5:e1:85:77:9f:8f:45:
a4:b2:82:64:90:dc:26:4a:67:9a:be:88:3a:24:8d:31:7d:42:
2e:93:3d:2e:ab:ba:85:89:6d:04:3b:4e:14:97:a6:6a:7c:ea:
8c:4a:51:9e:84:08:38:d2:cf:75:a4:a8:91:bf:55:2c:96:15:
40:3a:e1:09:d7:b5:55:37:d2:3a:da:fa:f0:76:ce:22:21:dc:
bc:91:1f:9d:57:b2:b4:38:72:18:8a:1e:8b:71:a1:02:b9:9e:
6f:66:7a:1b:31:1d:05:62:17:1a:c8:e5:59:43:b1:9b:79:31:
1a:8c:94:fb:09:ad:26:c4:5f:2c:63:38:79:5e:55:c4:76:50:
2a:40:76:06:70:a2:9e:34:e7:59:d0:67:6b:8a:fb:43:97:a1:
bc:9b:45:6a:c5:aa:23:9c:82:bf:76:09:24:43:53:51:90:67:
63:24:4f:83:5a:29:82:1e:04:97:2e:15:18:3d:10:7b:e0:dc:
83:a1:5f:ac:7f:72:1e:f2:be:90:4a:29:5f:54:9b:72:51:ca:
cf:62:b6:48
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUSFpvVDRpDM7dOfyK1uuPvPLcXhUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA0MDIwMDAwMDBaFw0yNDA1MDcyMzU5NTlaMHoxSTBHBgNV
BAUTQDdkYmFlNDEyOWFlZjYxYTM2YThlZTZjYTNlNmE5ZjNlZWQ5ODVkNDI2MWQ2
YzZmYWU3MThhMmM3OTE5MTNhNmUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAIWUcDIDHmNKgJyui74UN3SUmtzHAGIhDR3C/vrkjfujD/xxcKyNYIdnTvsR
sw/uftAXwJowJFIOyKIIT5zT5zUp47EiMocFbJp//8TSec839cqKicqDAyRrlFuj
zg+o9giSNhf9uVkDkbZqPgHDbH9HyZOcGdcKWMCM4chxleR2Hs7bpYY+qQlZeIJc
zzLuiUb1nX8ODvVgM1HlwsSFOMOrbWegdjlaiE2KVMiUcngL2AgphoRFcmwy0PhX
Mu9h3zi0t5CjUjRufE1UMc1Xyhx5n9h9aFpg3jZcYsTbPmfs/3OfgJnQcY92fNBo
XeFziBGal/JZoAbBkjVYWt4GUw0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRWbQj6
qkqKOdJvEkJFwZ6I+Jly7TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZDg3MjU0YjAtYjRlYi00ZmE3LTkwM2EtNGQ3MTIyYjljNmI0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HBQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCwXlnqMtLrVvmGmWQWBg89HJZ9QgQ/jJ//KsF1
y4MP6paid8qbXwEMkVilfqbSwtXhhXefj0WksoJkkNwmSmeavog6JI0xfUIukz0u
q7qFiW0EO04Ul6ZqfOqMSlGehAg40s91pKiRv1UslhVAOuEJ17VVN9I62vrwds4i
Idy8kR+dV7K0OHIYih6LcaECuZ5vZnobMR0FYhcayOVZQ7GbeTEajJT7Ca0mxF8s
Yzh5XlXEdlAqQHYGcKKeNOdZ0GdrivtDl6G8m0VqxaojnIK/dgkkQ1NRkGdjJE+D
WimCHgSXLhUYPRB74NyDoV+sf3Ie8r6QSilfVJtyUcrPYrZI
-----END CERTIFICATE-----
Generated at Wed Apr 24 16:35:33 2024 by rpki-client on console-fra.rpki-client.org