Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa
File: e5744d03-14d6-49dd-bcc7-bbf41846c647.roa (raw, json)
Hash identifier: pMGzLpJ5qRGDBxpf94w9CHXQniKRB57pAn7H1HIBbHs=
Subject key identifier: 90:BE:EF:FC:AD:6B:DC:B4:F0:6D:0A:9F:46:7C:8E:0E:A7:9A:D9:47
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 47681BC3760237D0BB7342315D9BB9E73791814B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa
Signing time: Sat 09 Sep 2023 00:00:00 +0000
ROA not before: Sat 09 Sep 2023 00:00:00 +0000
ROA not after: Sat 14 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 176.32.126.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:68:1b:c3:76:02:37:d0:bb:73:42:31:5d:9b:b9:e7:37:91:81:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 9 00:00:00 2023 GMT
Not After : Oct 14 23:59:59 2023 GMT
Subject: serialNumber=08e373376f05975f888dca25f23c11c58d892a8ed6a9925b6b62857996f22f6c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a8:59:4e:26:02:a1:09:c2:77:68:13:c0:f2:
03:a5:17:96:88:af:94:ea:f3:ef:14:92:64:56:fe:
0c:c9:eb:83:52:e3:2e:62:2c:d8:0a:c5:a6:7a:7b:
3e:c0:46:f1:69:8e:99:f0:63:dd:e2:13:02:ec:a2:
26:09:b3:6a:e8:f9:9f:7b:1c:91:c7:c3:cd:31:98:
08:61:62:ba:5d:35:2c:e2:9c:04:29:05:a7:3e:d7:
ef:fa:62:f6:47:9b:d4:05:51:d2:55:94:e6:c7:63:
ec:60:5c:d7:3e:30:41:de:ae:59:06:11:29:ca:31:
f9:4f:0c:72:03:34:a1:21:d9:cb:8d:d5:cf:14:4a:
a1:42:90:b1:ef:ec:33:c1:73:e9:73:40:1f:88:d7:
54:dd:00:f6:43:56:46:01:b1:ce:67:dc:a1:3e:2d:
62:dd:46:7d:3c:ee:a9:81:f8:19:d3:39:5c:8c:08:
37:88:b9:06:14:bc:3d:22:10:aa:4c:c4:9f:74:5b:
2c:8c:06:5e:69:c3:16:37:92:fe:e0:ac:f0:a1:9d:
ef:c4:08:92:43:cd:e4:f9:fe:cb:97:05:b0:dc:e2:
51:b7:7c:4e:f1:b9:a5:d4:93:26:6c:cf:3b:26:0d:
7e:fb:44:22:5a:82:f7:3c:fe:5e:60:d8:56:f7:bd:
cd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:BE:EF:FC:AD:6B:DC:B4:F0:6D:0A:9F:46:7C:8E:0E:A7:9A:D9:47
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e5744d03-14d6-49dd-bcc7-bbf41846c647.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.126.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:ea:5e:1a:22:40:df:c9:ec:64:a4:a5:20:bb:36:c7:ef:6a:
0f:12:c8:5e:47:6e:3a:94:51:2d:ef:1d:d1:bf:5f:b8:ce:91:
8d:9e:22:73:7e:a3:2f:08:b8:ad:37:3a:30:fc:be:c9:ff:06:
f7:10:b2:0b:3b:e9:23:76:78:c8:b8:86:50:da:af:cd:88:26:
e2:bd:57:9e:80:3f:4b:c8:8e:02:ca:66:e1:8b:ea:db:70:9c:
d7:3e:ed:f5:be:11:32:49:84:df:5d:c8:46:a2:8f:d4:82:ac:
85:01:71:38:d6:8a:9b:c5:59:8a:0b:78:fd:a1:0e:13:d7:3c:
6b:5d:28:b3:36:fe:53:4b:dc:06:3c:91:c3:2f:5b:35:b6:ba:
1a:bb:68:fc:51:9d:cf:74:7f:87:a8:43:8b:16:d0:ff:b0:78:
24:c1:4b:73:1f:b7:d3:13:f2:df:72:37:cd:b9:a7:f1:d2:16:
22:43:75:f8:33:b3:0d:74:5e:25:1c:39:87:71:ca:a6:92:d4:
3b:b4:fa:5b:95:d6:58:3d:03:19:15:86:96:17:cc:b6:18:89:
4c:30:14:a5:21:57:1a:30:0b:61:fc:d2:9d:9d:06:d2:89:db:
f1:cf:c0:2e:c1:56:e1:d7:39:fb:7b:c6:e5:98:86:d1:8e:40:
69:ae:5a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org