Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d8ff7013-08b6-4e36-ab88-c4f8bd3e7a04.roa
File: d8ff7013-08b6-4e36-ab88-c4f8bd3e7a04.roa (raw, json)
Hash identifier: 44qJNLU8pvcsBtxeeGRsnH+T74WeYsIDLR1TNwYylgk=
Subject key identifier: 2D:55:CB:53:01:CC:60:15:91:68:D3:54:03:6B:61:42:B1:02:E8:18
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 04ECE9CA7C432575C5C49ACB56D26E92C8F3EA3A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d8ff7013-08b6-4e36-ab88-c4f8bd3e7a04.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d024::/36 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 18:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:ec:e9:ca:7c:43:25:75:c5:c4:9a:cb:56:d2:6e:92:c8:f3:ea:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=5abb0f829bd8ab5204e6dfcbbdd8f802bec05dd66037a43471cd269008dce2df, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bc:6f:a8:99:db:06:12:b9:3f:bd:7b:3e:cb:
02:c9:0e:0a:a5:52:a2:4f:ce:a6:cd:f6:4d:7b:65:
88:f8:6b:d6:40:5f:3b:42:c2:21:0f:2c:33:85:f4:
f5:08:45:7f:6e:09:f7:5a:bc:ba:99:f9:08:e3:55:
cc:9f:b3:8d:fd:8e:74:bb:ce:e1:9f:46:67:54:8b:
fa:3a:ef:47:d7:e3:17:34:b5:b7:de:2a:b5:a7:0d:
77:3e:fa:43:5e:bf:84:b4:88:c1:b9:e8:09:ed:a3:
17:7d:fe:09:f3:a8:ea:54:31:20:81:08:51:44:9c:
76:79:6b:8c:69:1e:80:0f:cb:3b:42:bf:f2:8c:e9:
16:5f:72:d0:f2:b3:ed:a0:5f:9e:ab:c4:9c:e4:77:
a0:a8:c6:75:ac:a1:dc:fa:36:a0:23:9f:79:e0:64:
48:af:09:c9:e5:d4:e1:ec:b1:59:d8:ec:1d:46:b7:
0f:d7:96:1b:0d:91:4d:ee:10:74:87:6e:5f:8e:b2:
44:c1:6e:c2:76:69:27:f2:dc:57:25:c8:0a:8c:3d:
8b:dd:88:71:1a:42:09:d7:4b:f6:de:36:f9:99:a2:
71:99:c9:36:d6:3c:af:4f:a2:91:26:68:0c:9e:ef:
b5:7c:10:cb:15:b7:c3:9c:88:3a:44:2d:99:e8:2c:
1d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:55:CB:53:01:CC:60:15:91:68:D3:54:03:6B:61:42:B1:02:E8:18
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d8ff7013-08b6-4e36-ab88-c4f8bd3e7a04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d024::/36
Signature Algorithm: sha256WithRSAEncryption
8a:c8:a9:b9:82:f5:d4:33:f3:4e:a2:33:b5:0a:d2:eb:e2:78:
81:32:4c:37:77:56:d8:21:66:8e:ed:13:d5:92:50:aa:1e:f9:
5d:6e:a5:07:e4:4f:2e:a9:bc:15:4c:19:f4:4e:cc:19:69:ab:
f6:50:f4:17:29:6a:38:04:21:d8:de:c8:4f:eb:de:39:42:0e:
9c:fa:e1:33:d4:7c:f6:60:1f:5c:a8:0a:1a:7a:6d:51:cc:ac:
44:d6:32:b0:e5:4b:27:f2:d2:c6:b6:a0:88:88:81:df:a3:62:
cb:54:4f:4d:f8:03:a3:ea:75:cd:de:b1:ac:67:26:23:62:dc:
f2:de:a6:9b:1e:96:0f:5c:85:b7:ab:07:0c:01:31:72:33:54:
3b:9a:80:99:bc:b3:04:f0:68:86:9e:53:98:0f:ca:27:26:b4:
7d:89:78:80:a5:92:94:78:11:0b:d5:78:56:f1:6e:e3:da:fc:
4a:72:ef:f4:3a:75:61:6d:b7:32:0c:b3:87:d1:6f:5a:7d:fd:
cb:31:f0:5f:19:5a:22:b9:8a:fb:65:a8:92:66:bb:6e:a5:2c:
aa:2c:b1:a0:2a:fa:7d:85:84:ed:be:5c:91:2c:87:19:94:2b:
6a:3a:2e:73:66:4c:68:6e:8a:78:47:76:3e:28:72:d8:b7:d9:
b0:d7:af:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 01:16:39 2024 by rpki-client on console-fra.rpki-client.org