Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f63754b7-fb63-483b-81cc-1e0530064391.roa
File: f63754b7-fb63-483b-81cc-1e0530064391.roa (raw, json)
Hash identifier: yDi/z+3wh35vr6pwP8Hqshodv1nP6vsACpIcc2sQYFk=
Subject key identifier: A8:85:DC:57:09:65:80:AD:9A:5F:48:E4:C2:71:A6:82:DD:83:2C:A7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 374A2EE92FCAB8306E8A3B0E8731A1574FE34445
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f63754b7-fb63-483b-81cc-1e0530064391.roa
Signing time: Sat 09 Sep 2023 00:00:00 +0000
ROA not before: Sat 09 Sep 2023 00:00:00 +0000
ROA not after: Sat 14 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 46.51.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Sep 2023 17:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:4a:2e:e9:2f:ca:b8:30:6e:8a:3b:0e:87:31:a1:57:4f:e3:44:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 9 00:00:00 2023 GMT
Not After : Oct 14 23:59:59 2023 GMT
Subject: serialNumber=39b271ea0ed6ace692db4dcb3e226450bd12de0c850caa662f5686cec5e8a8b8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6e:28:f3:00:4a:17:db:d4:83:b3:ad:6d:bb:
63:b5:77:4a:99:89:ef:9a:ba:79:52:40:3a:e6:d9:
c0:f7:97:12:73:99:39:9f:e5:19:da:43:b6:44:50:
c6:22:14:73:e9:d9:d2:0d:ba:c0:45:c8:c5:d8:09:
4d:dd:3d:37:f8:90:50:22:f2:96:ef:01:de:9b:69:
40:39:3d:65:26:16:47:a2:b9:e1:3d:9d:c0:dd:d8:
de:dd:fd:b2:56:dd:90:62:e3:62:2c:e7:9f:1a:8e:
d6:58:68:4b:e1:81:28:cd:4a:dc:1f:5c:fd:e1:f0:
db:3f:ac:8d:b5:5c:cd:77:ec:14:a7:f8:fb:7b:76:
fb:a8:86:fd:7c:03:65:7c:18:e0:a3:75:2b:c1:ac:
43:09:2d:38:f1:fb:9d:a9:42:04:11:6d:88:ba:06:
be:8c:17:cd:79:f8:a1:85:7e:08:da:fe:8f:cc:19:
8c:80:3d:be:3a:ca:49:ac:8a:ba:c3:a9:13:1e:a0:
d6:1b:7a:6c:d2:d8:b6:e4:66:1c:29:5b:a1:8f:a8:
e8:51:84:a9:f6:c5:7c:27:ca:5c:0a:34:ee:89:e2:
df:a9:36:bb:8c:37:6a:aa:ea:07:12:3f:5c:41:28:
d9:b3:f7:b1:6a:a0:1c:bd:cf:38:ce:95:53:da:17:
6e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:85:DC:57:09:65:80:AD:9A:5F:48:E4:C2:71:A6:82:DD:83:2C:A7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f63754b7-fb63-483b-81cc-1e0530064391.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.128.0/18
Signature Algorithm: sha256WithRSAEncryption
17:e0:bf:1a:46:06:68:62:f0:03:cb:3e:43:f6:7a:1b:91:2a:
60:01:b2:4d:51:5a:0e:c9:2c:ae:7b:17:55:5c:80:73:f9:d6:
29:3d:c6:d0:9a:be:98:61:89:12:2c:ed:6b:39:24:54:95:c5:
95:bd:cd:f3:c4:f0:7d:f9:ce:bd:2d:70:f5:b8:9c:81:2e:b5:
16:8c:a2:c6:6b:15:ee:48:00:73:aa:b4:f9:d6:87:02:cd:38:
8a:00:03:75:ed:92:f3:59:73:26:ba:44:72:71:d1:4a:2a:d2:
67:f3:5d:fd:75:fd:ba:73:0e:bc:3b:72:8f:cc:16:aa:f4:0f:
ee:f2:78:ec:76:11:6c:5a:25:df:f7:c3:a3:0b:62:e7:18:30:
3f:7e:9f:89:77:78:b3:11:59:8f:fa:71:b7:39:b8:71:9f:d5:
55:3c:4a:6c:d7:f3:4b:e4:14:c9:8c:a0:5d:79:5b:ac:92:c1:
0a:e1:73:dd:59:17:76:9c:07:80:17:0e:44:a9:b2:97:06:f8:
4f:ec:97:37:1a:9a:e6:fa:38:a2:3a:cf:c3:b6:bf:b0:a9:4a:
b8:30:29:e3:56:71:97:5a:fb:a1:1e:59:e3:3d:ee:3c:92:e1:
cc:ee:0f:fe:94:09:91:62:d9:74:d8:ae:3e:c6:a9:91:c6:11:
35:49:ea:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 9 00:50:17 2023 by rpki-client on console-ams.rpki-client.org