Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
File: fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa (raw, json)
Hash identifier: SWDyNz5q3IeLoM4iUk/pljwa1pn/8GbnyWaUeIol/Cw=
Subject key identifier: EE:7F:28:63:C6:72:41:CB:D7:C8:77:7D:BF:19:83:30:9B:73:17:CE
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1C04902121DA7F0B6189DC3198584F7F1A292C1A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
Signing time: Tue 19 Nov 2024 00:00:00 +0000
ROA not before: Tue 19 Nov 2024 00:00:00 +0000
ROA not after: Tue 24 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 176.32.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Dec 2024 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:04:90:21:21:da:7f:0b:61:89:dc:31:98:58:4f:7f:1a:29:2c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 19 00:00:00 2024 GMT
Not After : Dec 24 23:59:59 2024 GMT
Subject: serialNumber=56dd3c7dfe4ad7da44c60ab6564ca4779db7256945974b801c6508f032264e50, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:72:e3:a7:f0:81:48:66:21:00:34:5f:11:
4d:7e:00:44:18:bd:5d:86:2e:ff:df:28:77:f4:4e:
ca:47:06:13:37:35:cc:23:47:f6:2d:2c:4e:a7:5b:
57:37:3a:85:54:60:11:2f:78:06:93:02:46:ec:20:
e0:7a:f3:f3:a8:b6:e0:be:03:b3:f8:2a:1c:0a:14:
22:c9:ab:5a:eb:9d:6c:72:1a:97:10:e7:a0:8a:a6:
45:ae:01:8e:c7:b6:ac:f7:e8:ad:17:3f:9d:02:dd:
9c:a9:b1:99:90:fd:13:01:6a:e6:30:9b:6b:19:c0:
ec:13:7c:3e:f0:fd:a8:66:bc:01:04:9a:70:7c:15:
cd:42:bd:7a:68:45:da:fa:c8:2d:75:d7:a3:01:65:
30:9c:ba:d0:34:92:69:96:99:06:98:48:f2:a4:b2:
55:28:25:ef:e1:56:21:7a:05:68:91:63:ca:0c:14:
63:70:30:06:4b:de:b9:0c:37:4d:31:5b:5b:00:c0:
ec:f7:d1:33:27:64:7f:44:11:96:2c:42:6b:4d:aa:
8b:e1:4b:6a:16:db:f5:01:7a:a5:af:ef:8d:cf:7a:
c6:91:2b:3b:83:f4:69:7a:7b:c2:9c:b1:ad:48:62:
2c:14:ac:0b:4d:7e:a9:5f:c2:0f:7c:62:be:ab:0a:
11:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7F:28:63:C6:72:41:CB:D7:C8:77:7D:BF:19:83:30:9B:73:17:CE
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.64.0/19
Signature Algorithm: sha256WithRSAEncryption
9f:a6:2b:93:58:f6:d3:64:68:2c:6e:c3:2a:72:92:d4:60:d2:
c1:bd:10:fd:fc:e1:aa:01:8b:53:1a:42:59:82:4d:da:a6:c2:
1f:53:48:0f:de:33:77:b6:8b:b4:e2:2a:c3:82:fa:b7:6b:ed:
1b:4d:71:0a:95:22:26:50:d4:a9:cd:c8:26:a9:4f:db:10:3d:
d6:cb:63:74:e5:bb:c1:6e:ab:e1:52:90:48:c5:cd:3f:61:69:
b1:65:fd:61:9e:10:7d:f9:46:df:2f:a8:21:1f:a6:e4:a8:59:
46:3f:66:d3:5f:d7:a1:e0:23:37:d9:33:7b:ea:d5:b8:03:32:
d3:97:7b:b7:46:07:15:db:12:ab:97:a8:d0:d1:4e:b3:9e:f1:
bf:e2:c9:7d:b6:f5:ba:3d:ea:46:7d:31:19:00:e3:48:86:3d:
d1:bc:b9:dd:8d:ce:7a:37:a9:41:10:24:da:ec:ee:83:09:a9:
09:d3:93:e7:63:a5:b8:6c:90:fe:9e:d1:37:62:5b:d7:59:47:
01:b9:b5:ac:92:b6:87:8f:5d:bb:31:2c:04:e8:0e:43:bf:64:
0b:99:5f:81:68:f8:4b:d5:9c:a9:07:8f:9f:50:43:77:25:a4:
ea:a5:54:71:66:a6:43:2e:a7:97:9b:08:9a:66:f6:36:7f:c4:
4a:ce:00:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 1 19:21:19 2024 by rpki-client on console-ams.rpki-client.org