Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
File: e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa (raw, json)
Hash identifier: WFBmFAU30V7b4ikLOtKgXFSCmsFt24i246ZDdeN7Fao=
Subject key identifier: 78:94:BF:26:5C:15:03:83:0E:50:31:EB:65:BB:97:53:F5:24:0D:B7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0AA2EAB6B848713549C9611EF600BFD2A81B80E4
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
Signing time: Tue 02 Apr 2024 00:00:00 +0000
ROA not before: Tue 02 Apr 2024 00:00:00 +0000
ROA not after: Tue 07 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07c:c000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:a2:ea:b6:b8:48:71:35:49:c9:61:1e:f6:00:bf:d2:a8:1b:80:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 2 00:00:00 2024 GMT
Not After : May 7 23:59:59 2024 GMT
Subject: serialNumber=b1a3a6551b8262175e23162c322fb5a5789cb2060ff27d7ca469f3a81047b901, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b6:1a:ce:07:7e:51:13:7c:ac:70:23:21:02:
19:cf:bd:06:77:06:73:50:40:10:6b:2c:49:58:6b:
3d:58:61:88:8e:c3:e3:1e:2b:69:fc:15:f0:05:f0:
d3:04:eb:8e:2f:da:fc:6b:44:38:41:aa:d4:9d:ec:
a7:8c:70:fb:0a:a2:db:f6:56:ae:11:b8:36:74:5d:
5b:5d:3b:88:a6:16:e2:ec:bf:cd:90:8c:83:1b:0c:
f1:f0:cc:b5:2e:ae:25:9f:14:00:39:af:ef:1e:2b:
5c:bb:43:bb:01:c1:90:ea:e7:e4:86:68:cf:c1:b1:
8d:43:4f:6e:f1:c7:6e:3f:95:8f:5b:55:56:c1:57:
ef:48:31:e2:f7:05:01:63:9e:41:7d:79:f3:39:53:
03:ac:c5:eb:b2:66:4c:f0:68:39:25:5b:fc:1b:d4:
c7:58:84:63:7b:7c:5e:ef:fe:f0:98:5b:e0:fc:6b:
c4:dc:3c:98:61:d1:fc:72:53:44:e3:da:e3:36:3c:
a5:0c:63:af:ba:d9:f9:06:95:c9:1b:64:b1:90:cb:
6a:80:71:05:ce:e9:b2:be:37:0a:16:57:78:ec:af:
52:a7:71:68:68:85:01:95:ea:62:83:42:69:1b:89:
6e:7f:b6:9d:45:dd:06:b8:72:d6:51:3b:38:e8:60:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:94:BF:26:5C:15:03:83:0E:50:31:EB:65:BB:97:53:F5:24:0D:B7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07c:c000::/40
Signature Algorithm: sha256WithRSAEncryption
ba:98:03:d2:50:89:fd:b2:c9:16:12:38:d4:19:77:7e:df:53:
4d:53:6f:30:37:4d:4f:89:d5:15:41:9f:49:27:57:30:80:77:
e3:54:78:0b:d7:5d:38:56:ec:35:ff:3d:70:67:84:46:5a:cc:
6f:93:b7:4d:a0:f3:e1:9f:c3:19:2b:9c:a0:7c:de:fa:2d:3d:
38:e9:b7:15:af:58:8e:7b:9c:8f:ec:14:0a:71:c4:6f:96:9e:
90:2f:d3:f6:19:b5:8d:e9:c4:28:04:de:d2:ce:55:01:58:ce:
b3:c8:41:0e:a9:27:49:f6:28:94:f0:5a:61:ae:92:18:ac:ff:
e5:5d:a8:25:f8:cf:58:64:fc:0b:88:05:df:50:fb:aa:05:32:
8b:1b:fc:28:86:40:b3:e0:b1:d2:e7:ad:37:22:63:e1:3e:d5:
8a:5d:3b:9f:91:26:c9:91:25:ba:2c:cd:f8:56:47:bf:48:fb:
02:d5:cb:a8:e5:2f:f2:a4:b9:2a:9b:c8:f6:56:2d:db:72:77:
ad:85:46:d6:c9:e3:10:91:82:1c:46:ce:ea:20:2d:54:3c:f4:
35:6f:30:9a:73:d9:d9:1a:14:b1:66:a8:2b:38:7a:6c:86:50:
c4:a7:1d:51:9a:3f:5f:3a:01:13:fb:dc:07:21:82:2b:f8:d8:
0b:15:d9:a6
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUCqLqtrhIcTVJyWEe9gC/0qgbgOQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDA0MDIwMDAwMDBaFw0yNDA1MDcyMzU5NTlaMHoxSTBHBgNV
BAUTQGIxYTNhNjU1MWI4MjYyMTc1ZTIzMTYyYzMyMmZiNWE1Nzg5Y2IyMDYwZmYy
N2Q3Y2E0NjlmM2E4MTA0N2I5MDExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALm2Gs4HflETfKxwIyECGc+9BncGc1BAEGssSVhrPVhhiI7D4x4rafwV8AXw
0wTrji/a/GtEOEGq1J3sp4xw+wqi2/ZWrhG4NnRdW107iKYW4uy/zZCMgxsM8fDM
tS6uJZ8UADmv7x4rXLtDuwHBkOrn5IZoz8GxjUNPbvHHbj+Vj1tVVsFX70gx4vcF
AWOeQX158zlTA6zF67JmTPBoOSVb/BvUx1iEY3t8Xu/+8Jhb4PxrxNw8mGHR/HJT
ROPa4zY8pQxjr7rZ+QaVyRtksZDLaoBxBc7psr43ChZXeOyvUqdxaGiFAZXqYoNC
aRuJbn+2nUXdBrhy1lE7OOhgBXkCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR4lL8m
XBUDgw5QMetlu5dT9SQNtzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZTAyYjU3NGEtNGFjZC00NjI5LTk0ZjQtN2ZlOGFjMTJhMWFhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HzA
MA0GCSqGSIb3DQEBCwUAA4IBAQC6mAPSUIn9sskWEjjUGXd+31NNU28wN01PidUV
QZ9JJ1cwgHfjVHgL1104Vuw1/z1wZ4RGWsxvk7dNoPPhn8MZK5ygfN76LT046bcV
r1iOe5yP7BQKccRvlp6QL9P2GbWN6cQoBN7SzlUBWM6zyEEOqSdJ9iiU8FphrpIY
rP/lXagl+M9YZPwLiAXfUPuqBTKLG/wohkCz4LHS5603ImPhPtWKXTufkSbJkSW6
LM34Vke/SPsC1cuo5S/ypLkqm8j2Vi3bcnethUbWyeMQkYIcRs7qIC1UPPQ1bzCa
c9nZGhSxZqgrOHpshlDEpx1Rmj9fOgET+9wHIYIr+NgLFdmm
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:09:34 2024 by rpki-client on console-ams.rpki-client.org