Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
File: e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa (raw, json)
Hash identifier: NXml2L0P9HXTf7fbeRfhajybFHZRi4AsFwRRq3Yh9kc=
Subject key identifier: 52:6E:DA:5B:26:78:13:12:B7:C2:91:14:A9:08:3B:E9:B2:70:74:9F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6ED23AB105CC7E650CD0110B0C244BC5F52215D6
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
Signing time: Tue 03 Sep 2024 00:00:00 +0000
ROA not before: Tue 03 Sep 2024 00:00:00 +0000
ROA not after: Tue 08 Oct 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:a000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Sep 2024 20:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:d2:3a:b1:05:cc:7e:65:0c:d0:11:0b:0c:24:4b:c5:f5:22:15:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 3 00:00:00 2024 GMT
Not After : Oct 8 23:59:59 2024 GMT
Subject: serialNumber=f618e660b43c53bc843fd808988cefc3a0e5a4d4598322e49943c5ac4a8d1103, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fa:bc:9f:41:e7:8a:4c:8d:52:b5:48:b8:c0:
14:b6:08:97:51:81:d9:94:8a:3c:f1:4e:42:18:d8:
5c:e2:ae:e3:1d:24:a5:0d:60:ee:ce:3c:f1:bf:5d:
28:19:68:4b:78:ff:69:bc:0f:47:11:bc:4e:d2:3b:
ed:c7:ee:94:35:da:d6:e4:46:d7:ca:46:4a:f2:b0:
0f:eb:17:e6:27:e7:1d:e3:87:7a:6f:a1:07:a0:55:
3f:bc:cd:55:1f:d2:e3:e9:a1:0f:3a:a2:c8:bd:d3:
b4:d7:91:b7:cf:f4:c7:2b:32:96:91:00:46:38:74:
2d:62:cb:2e:6c:47:66:24:94:f0:86:39:65:4f:a0:
29:da:c6:b2:15:cd:e7:2c:12:28:af:20:f6:25:26:
8f:ed:7e:14:16:54:c8:96:c2:77:b5:bf:1e:dd:60:
f2:b9:49:a8:91:2e:9a:ab:d3:20:03:f0:c5:64:50:
44:dc:d2:96:65:67:e1:0e:6f:98:07:04:e7:0f:01:
5b:21:93:65:a0:ee:96:e4:89:65:d6:cf:6c:20:4f:
98:cc:7e:e1:c9:67:32:c8:5f:10:ac:00:94:5b:28:
47:7c:21:01:cc:8a:38:d2:74:cb:5b:9c:a1:19:23:
9a:ff:fc:31:16:3e:0e:f4:71:67:b4:4b:e7:90:54:
32:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:6E:DA:5B:26:78:13:12:B7:C2:91:14:A9:08:3B:E9:B2:70:74:9F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:a000::/40
Signature Algorithm: sha256WithRSAEncryption
95:81:21:15:fd:99:43:25:cb:3a:0d:7e:a7:d7:32:15:4d:67:
3d:56:12:84:c4:7b:32:8a:9f:21:e8:1e:55:5f:c2:ad:a1:2b:
db:f1:bf:8c:22:c6:24:ee:48:bb:38:ea:57:42:39:a1:3d:6f:
73:60:60:d9:b7:b6:83:3e:e7:59:5e:1f:a8:c8:d8:ac:a6:e8:
5f:7e:ff:40:ee:b4:c2:24:ca:b0:d5:b9:f3:ce:93:f8:52:25:
7c:83:09:00:39:f0:c9:78:a2:7f:24:08:df:65:11:01:48:b0:
37:11:41:d1:ad:d3:d0:e4:28:b5:cc:13:ab:25:8b:ac:5c:44:
36:43:a5:ad:ff:af:86:00:e3:5c:3f:fb:8d:38:f4:b4:09:a8:
db:2f:51:5e:85:0c:01:d3:59:0a:48:16:87:73:5e:32:04:43:
fe:38:73:a0:35:29:f9:db:bf:9a:96:97:64:43:43:26:aa:94:
d6:09:0f:22:58:35:57:20:0a:cb:c9:b7:bb:65:14:ea:f2:d7:
ad:f4:f9:9c:94:af:e0:a0:1d:7d:3d:07:ef:8a:44:5b:68:2f:
e5:21:bf:2c:d1:dc:41:8f:b0:f8:02:1c:d8:2a:0f:fe:e4:39:
9b:89:57:74:7b:c1:f7:9e:d8:8c:44:e0:b0:a2:bf:32:8c:3a:
4d:d6:5c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 02:13:46 2024 by rpki-client on console-fra.rpki-client.org