Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
File: e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa (raw, json)
Hash identifier: 0iEnAfV193kyUw1SQK0Ik6dSMNwrqkfox/xOCfofTdU=
Subject key identifier: F5:31:CD:36:5E:0E:B4:6B:32:49:54:99:90:DA:32:63:1E:FB:9D:7E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7543F7E07AA4E8D58E4AED1E6793C62A01B41989
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
Signing time: Mon 18 Nov 2024 00:00:00 +0000
ROA not before: Mon 18 Nov 2024 00:00:00 +0000
ROA not after: Mon 23 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07e:c000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:43:f7:e0:7a:a4:e8:d5:8e:4a:ed:1e:67:93:c6:2a:01:b4:19:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 18 00:00:00 2024 GMT
Not After : Dec 23 23:59:59 2024 GMT
Subject: serialNumber=b085e96612b7ced7beb786f3ba6bc2187604d126c41cde60a327c463a45b6adb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:93:75:ed:56:3d:b0:21:1b:b2:9e:08:09:64:
f7:de:ca:91:63:ae:a7:27:64:30:a2:d2:77:80:f1:
c2:7f:f4:a3:cc:71:f7:da:30:9c:57:b2:39:a8:58:
d8:e0:96:55:c3:29:76:2f:28:4f:3a:80:54:a3:a2:
0d:a8:53:20:4b:03:18:f8:c0:2a:c6:55:11:c0:d8:
68:72:7a:93:39:3b:79:03:4f:f3:01:12:57:4c:49:
b7:83:1d:1e:a4:e8:8f:b2:9c:2f:2b:3d:8d:df:6e:
c0:10:54:16:6c:59:70:1e:08:0d:32:4f:fc:c8:c4:
e6:7e:55:11:ea:6d:39:d7:8c:5f:bc:9f:5d:d4:d4:
4f:4e:7b:78:b7:e9:f8:df:6e:fe:42:ce:65:1a:c4:
06:69:fb:05:be:f4:0f:a9:29:de:c3:b0:f0:7a:cd:
48:e3:68:cd:0b:23:04:41:bb:c2:ee:70:18:3b:d1:
05:a1:dc:10:aa:11:7b:6d:e0:e8:43:45:a6:98:fd:
d8:97:f2:6d:77:bf:ee:bc:8b:ae:92:96:7b:65:7d:
fe:b4:c6:b6:83:0e:76:49:d1:1c:9a:6b:26:95:f1:
99:4e:ab:e1:2d:5f:ff:69:4e:e7:d1:4a:42:3a:00:
73:b8:4d:bf:04:b5:1d:8c:50:e1:d8:4b:2f:58:4b:
bc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:31:CD:36:5E:0E:B4:6B:32:49:54:99:90:DA:32:63:1E:FB:9D:7E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e6ac0def-833f-4e1b-a75d-2d1fb3b8c3d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07e:c000::/40
Signature Algorithm: sha256WithRSAEncryption
82:52:13:4b:79:08:2a:37:5b:64:82:d7:3e:15:c5:3e:5e:20:
60:f3:9a:da:db:ef:54:ff:c4:56:a5:b0:17:09:e2:ef:a7:21:
b8:65:76:6a:b3:d1:86:b1:f7:d6:2a:b4:a0:9a:bf:6f:a4:88:
fb:ae:2a:1c:73:7d:99:c6:98:8b:09:1e:9b:22:b0:fb:3d:33:
5c:a6:50:6b:e7:4f:8a:01:89:83:94:15:d3:87:0e:43:37:d5:
1f:f5:e5:a1:bb:de:18:35:f2:8c:68:c6:88:e5:80:96:19:d8:
4e:1d:c0:4b:12:29:79:0a:f4:29:2c:dd:2d:91:e3:f3:c6:c2:
23:a8:8c:fd:94:8e:16:4b:35:be:90:63:ab:74:00:7c:47:9b:
7d:a6:35:82:56:cc:62:cd:5d:e0:69:bf:76:83:a5:ca:19:2d:
76:69:8a:b4:33:1a:f5:b7:9f:44:90:dd:5f:6b:1e:4a:ef:0c:
94:99:23:0a:ab:95:ef:fe:ff:5f:49:aa:2e:96:e0:4f:a1:5d:
19:b4:ef:03:55:ac:7c:f3:9f:e9:87:66:86:01:fa:72:cb:5b:
89:f2:0e:d2:8b:8b:7e:bb:3b:96:35:29:e7:8a:47:f4:c0:c9:
cc:96:d6:2c:47:d6:25:43:3f:af:3c:fc:3d:46:49:26:57:5f:
4f:f8:4d:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:07:46 2024 by rpki-client on console-ams.rpki-client.org