Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
File: e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa (raw, json)
Hash identifier: 6tCjPGT3gg0+ppOh4P4mAQsTSEF5+aLIQBFt5I8oDgw=
Subject key identifier: 57:31:F2:D2:64:73:44:35:8B:7B:6F:E3:C4:1D:23:A3:B3:A6:02:3D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6DD51F82C68E97558739A0EBD0C276E90489267C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07e:c000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:d5:1f:82:c6:8e:97:55:87:39:a0:eb:d0:c2:76:e9:04:89:26:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=1f36010995239c5f02edf3d6b6c24b935709647e70aad192c935e910ab12541a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cf:49:ba:76:c6:2d:38:df:a0:80:c2:07:ea:
c9:42:f7:d3:35:f4:4d:6d:2b:9d:50:b4:91:7e:49:
e1:91:a6:42:18:46:4d:ce:fb:ec:dd:e4:4e:15:c2:
1d:78:c0:fa:87:44:87:ab:58:74:0c:28:c0:c3:a8:
6f:3e:77:44:de:43:9a:2c:79:af:a6:ab:83:58:a9:
27:fe:42:20:a6:c5:78:9b:a8:da:56:86:55:9c:34:
99:ae:b8:af:51:76:d9:49:c6:e8:b8:e4:88:98:11:
75:07:00:93:1e:16:37:a8:ee:7a:e2:bd:9b:e0:39:
ab:7f:05:5e:e1:bf:3a:57:6e:54:8f:0e:d9:b6:b9:
22:a9:3d:e2:c6:48:fc:a6:41:b7:2a:6d:18:c9:1f:
3a:b1:87:af:a7:a1:e9:5e:59:e1:81:66:58:21:97:
e7:db:44:bf:50:94:f7:8d:38:4b:42:70:35:02:0a:
3f:04:7a:0b:61:31:85:72:83:96:be:a3:e7:11:c8:
35:9d:e0:1e:2e:42:65:09:a1:23:69:c3:bc:3a:7d:
9c:05:9e:b4:72:a4:98:56:52:d2:f6:d0:dc:e6:51:
10:16:4d:df:7c:54:17:0a:00:3d:a4:e9:1c:15:0d:
6e:7f:51:e6:1a:06:4c:f6:81:20:ef:08:5f:f8:34:
47:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:31:F2:D2:64:73:44:35:8B:7B:6F:E3:C4:1D:23:A3:B3:A6:02:3D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07e:c000::/40
Signature Algorithm: sha256WithRSAEncryption
0c:4b:07:19:ac:e3:92:f7:83:cc:63:e1:28:52:7e:f4:31:23:
a5:e7:9e:d1:2a:89:14:57:67:e0:e2:0c:73:6f:c4:ff:11:29:
1b:c1:8b:93:cf:78:8b:17:e3:aa:03:71:dc:5e:c2:8a:86:3a:
4c:78:07:a5:0b:61:01:20:84:c8:75:52:c6:85:66:af:e9:bf:
18:2e:4c:2c:b0:28:2f:b7:7a:52:13:9f:07:93:7f:3c:64:6b:
2d:be:c5:aa:af:1a:fc:39:68:66:fb:6b:f7:0d:c9:dd:90:f0:
b6:b3:95:33:e6:0f:9e:94:f8:e8:33:c1:48:08:dd:ab:c0:93:
d7:55:65:81:52:4b:f5:af:7f:cc:e7:09:9b:f5:f1:26:01:de:
c1:80:f2:ed:9f:4d:97:43:80:a0:f7:d4:f3:38:69:3d:f7:3c:
68:e8:fb:c5:dc:17:7d:ca:2e:bc:41:21:1a:02:35:7f:9e:6e:
c1:59:6c:e9:4a:1f:f4:99:87:5c:bc:0b:cd:50:62:f6:7c:71:
d9:0b:be:d6:cd:a5:23:1d:3d:b1:f9:23:10:4c:48:12:65:eb:
3d:d7:e3:43:be:32:6b:21:0f:b6:ea:e3:5d:4a:dc:72:32:77:
81:61:18:8e:d2:36:0d:00:66:17:90:85:ee:fc:7c:3f:19:4c:
d6:81:eb:d6
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUbdUfgsaOl1WHOaDr0MJ26QSJJnwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yMzA5MTEwMDAwMDBaFw0yMzEwMTYyMzU5NTlaMHoxSTBHBgNV
BAUTQDFmMzYwMTA5OTUyMzljNWYwMmVkZjNkNmI2YzI0YjkzNTcwOTY0N2U3MGFh
ZDE5MmM5MzVlOTEwYWIxMjU0MWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALzPSbp2xi0436CAwgfqyUL30zX0TW0rnVC0kX5J4ZGmQhhGTc777N3kThXC
HXjA+odEh6tYdAwowMOobz53RN5Dmix5r6arg1ipJ/5CIKbFeJuo2laGVZw0ma64
r1F22UnG6LjkiJgRdQcAkx4WN6jueuK9m+A5q38FXuG/OlduVI8O2ba5Iqk94sZI
/KZBtyptGMkfOrGHr6eh6V5Z4YFmWCGX59tEv1CU9404S0JwNQIKPwR6C2ExhXKD
lr6j5xHINZ3gHi5CZQmhI2nDvDp9nAWetHKkmFZS0vbQ3OZREBZN33xUFwoAPaTp
HBUNbn9R5hoGTPaBIO8IX/g0Rw0CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRXMfLS
ZHNENYt7b+PEHSOjs6YCPTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZTZhYzBkZWYtODMzZi00ZTFiLWE3NWQtMmQxZmIzYjhjM2Q2LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H7A
MA0GCSqGSIb3DQEBCwUAA4IBAQAMSwcZrOOS94PMY+EoUn70MSOl557RKokUV2fg
4gxzb8T/ESkbwYuTz3iLF+OqA3HcXsKKhjpMeAelC2EBIITIdVLGhWav6b8YLkws
sCgvt3pSE58Hk388ZGstvsWqrxr8OWhm+2v3DcndkPC2s5Uz5g+elPjoM8FICN2r
wJPXVWWBUkv1r3/M5wmb9fEmAd7BgPLtn02XQ4Cg99TzOGk99zxo6PvF3Bd9yi68
QSEaAjV/nm7BWWzpSh/0mYdcvAvNUGL2fHHZC77WzaUjHT2x+SMQTEgSZes91+ND
vjJrIQ+26uNdStxyMneBYRiO0jYNAGYXkIXu/Hw/GUzWgevW
-----END CERTIFICATE-----
Generated at Mon Sep 11 16:40:27 2023 by rpki-client on console-ams.rpki-client.org