Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f348777b-416b-4956-a955-39de7f330be9.roa
File: f348777b-416b-4956-a955-39de7f330be9.roa (raw, json)
Hash identifier: UV2oOhnPxRamDm0P9+5nPB1LibI5VDVfk8xNLncr4yg=
Subject key identifier: 62:AE:70:59:AD:85:6F:F6:04:82:AA:1A:01:76:25:50:BC:A1:1E:CF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 75F7C07F38830F90FDD30D78139A62BF98DC56EB
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f348777b-416b-4956-a955-39de7f330be9.roa
Signing time: Fri 22 Nov 2024 00:00:00 +0000
ROA not before: Fri 22 Nov 2024 00:00:00 +0000
ROA not after: Fri 27 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d040:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:f7:c0:7f:38:83:0f:90:fd:d3:0d:78:13:9a:62:bf:98:dc:56:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 22 00:00:00 2024 GMT
Not After : Dec 27 23:59:59 2024 GMT
Subject: serialNumber=f63a9f0f674919754f231d91bc8692414d76509ca75d5b4edd8d3dff93bfe9cb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1a:f0:02:89:b1:4a:31:3d:b1:e2:4f:86:0b:
62:a1:85:6e:42:e7:69:73:d2:2f:a5:a7:3f:d3:0f:
4e:9b:1b:d4:0b:13:f2:17:63:f3:f5:f7:cb:47:56:
1b:ad:59:4e:48:e3:ed:2e:f9:9b:bb:d6:49:dc:6c:
89:59:50:a0:ba:6c:85:3c:99:66:89:ab:7f:14:5a:
ff:a9:02:16:8a:7d:49:26:cb:2d:c8:4d:a5:20:06:
6d:34:8d:ef:bf:22:cc:4e:98:ce:9d:07:28:d3:ae:
e1:be:85:93:b4:6e:25:77:9b:73:a6:7b:c5:75:2a:
d5:77:e8:9f:0b:3d:06:73:6f:fc:44:c0:a7:a2:ca:
ab:b3:24:d1:1c:0a:14:ab:ab:58:03:f9:6a:2d:fa:
d7:0a:7b:2d:c2:ac:84:b9:90:69:23:d1:c5:3e:84:
bb:a2:a0:f5:31:6c:08:6b:9c:6a:6a:f3:ac:f0:67:
88:73:fa:1d:12:03:66:8d:f1:72:43:79:fe:8c:10:
70:86:d6:12:2b:f8:70:60:73:bc:d7:ec:69:f2:14:
8a:1c:ba:15:71:c6:8c:06:69:46:a3:36:19:3f:c2:
e3:38:7e:0d:a9:05:6b:ff:95:60:41:e9:54:6f:70:
e6:f3:19:d4:05:40:cc:ce:71:06:e3:2c:c7:cc:fa:
fa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:AE:70:59:AD:85:6F:F6:04:82:AA:1A:01:76:25:50:BC:A1:1E:CF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f348777b-416b-4956-a955-39de7f330be9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d040:5000::/40
Signature Algorithm: sha256WithRSAEncryption
3d:8e:7c:a7:8b:69:c3:88:ea:3b:67:cf:ea:5d:be:39:0f:86:
01:1a:bb:1d:9e:a7:66:d3:d0:66:bc:40:f7:06:2a:9f:bd:a2:
f3:70:27:12:e4:21:39:0d:6d:c1:76:a2:f3:4d:02:f5:e8:e3:
8d:d5:b3:4a:65:9a:86:8e:87:bd:3a:3e:3c:d1:dd:d8:35:aa:
17:aa:1b:a2:78:a8:cd:f5:09:11:57:d9:10:b9:9c:76:54:37:
2a:9d:88:27:37:9f:fb:bc:7e:22:4a:d6:4a:da:7d:fb:6a:0a:
18:85:a8:33:be:23:23:6e:49:e9:11:37:93:73:b7:a4:b5:de:
f6:e3:2f:a3:02:bc:9a:32:63:bf:20:57:78:a5:f9:8d:45:a9:
03:f3:6a:5a:0f:0c:a1:f2:86:07:8c:22:e1:5d:0c:bc:e5:d8:
a6:55:35:f8:ab:73:3b:80:3c:e0:4c:b2:58:8b:df:a8:76:dd:
7b:9f:b8:82:40:e0:89:fd:9b:dd:83:cf:97:5e:d8:cc:11:62:
7a:5a:6f:17:a0:ee:47:20:02:d9:bb:b5:60:ed:ec:1e:73:bb:
f6:0e:ab:bc:78:c6:1d:ca:39:32:3c:e8:d7:85:33:d7:96:9f:
9f:01:66:87:83:22:03:f8:34:00:2e:a9:83:fe:af:3a:4e:fb:
59:31:84:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 23:07:46 2024 by rpki-client on console-ams.rpki-client.org