Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
File: fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa (raw, json)
Hash identifier: 5iIp83TEN79txzNA3j3GaDFXv0l2yysQlox15GZLVa4=
Subject key identifier: F1:5D:20:40:61:B4:FB:4F:F7:1B:FD:1D:32:26:11:1A:09:57:A5:A4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 039D52EFB70F61585C2DE61376F18FBF643382F6
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 16509
IP address blocks: 176.32.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Sep 2023 14:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:9d:52:ef:b7:0f:61:58:5c:2d:e6:13:76:f1:8f:bf:64:33:82:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=9f3d069a1009161d17e34411ecd7950075583dca4be476a2ffc60aa8e4208748, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:58:0f:0b:90:6a:07:f6:42:d0:fb:f4:91:35:
0e:4d:ea:81:f1:d0:bc:7e:71:76:95:57:62:2d:36:
66:db:93:36:3c:06:5d:da:ae:af:73:09:5c:f6:d3:
65:0a:ce:44:a5:52:35:03:d9:88:dc:1a:72:d8:4a:
d8:56:a2:b1:c0:82:c1:58:2f:f8:21:10:5d:dc:7c:
c4:1f:85:df:9c:87:59:93:ce:32:c4:d7:7c:82:72:
cc:25:f7:1c:8b:48:8b:b2:cc:68:d0:97:97:18:4b:
b8:1a:c8:af:99:63:ce:1a:89:e8:8b:51:f8:11:ca:
af:d5:e6:a8:cd:d6:05:bb:d1:e6:10:95:52:72:7e:
26:44:1d:cf:0b:75:ab:f7:da:96:17:c2:00:5c:10:
39:59:34:7a:d7:4d:6a:6d:ff:82:9d:c5:c9:5e:f8:
31:8b:60:83:ed:6d:29:8b:d4:c6:c7:95:b6:c7:a5:
76:b1:58:72:91:bb:fc:6f:ef:85:72:1f:26:0f:49:
54:11:55:9d:51:fa:ab:85:aa:6f:17:33:66:9d:24:
3e:25:e8:a2:33:f7:93:b7:29:cb:9b:e1:aa:b0:25:
8a:4d:db:3f:61:2d:f6:74:ef:f6:e0:7c:ae:4a:72:
71:a1:a2:6f:ac:54:05:bc:3a:b7:6c:5d:9b:4c:22:
53:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:5D:20:40:61:B4:FB:4F:F7:1B:FD:1D:32:26:11:1A:09:57:A5:A4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fcb67d7c-7aab-4a02-ad70-18aaf3211bb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.64.0/19
Signature Algorithm: sha256WithRSAEncryption
17:65:60:d7:25:44:3d:b2:61:5b:95:eb:a1:28:67:4a:e6:c6:
38:2d:0c:b2:a8:ef:14:ab:a4:37:7b:e7:e6:85:86:0d:94:6a:
d3:93:3d:59:1a:37:0f:e3:81:21:d2:07:b6:97:67:1b:46:ed:
f9:4a:e1:65:64:29:12:e6:c0:74:fb:47:99:a2:c1:06:f8:da:
5d:a3:ed:de:d9:c9:20:4c:2a:b7:ad:0f:6a:6d:e8:29:09:36:
f1:54:74:7f:25:e5:bd:e2:f8:53:4a:bb:0d:d6:5a:7b:dd:eb:
8f:1c:df:57:86:ca:4b:02:5d:69:bb:1d:31:13:fc:29:82:ed:
11:73:56:76:06:1a:4d:03:73:da:10:88:3e:bb:0f:58:d4:1b:
2b:93:7f:98:de:1f:2f:a2:d6:38:0e:f5:c0:22:c2:c5:c9:48:
56:b1:02:72:8d:27:1f:5e:e9:ca:5e:e5:62:8f:da:da:67:db:
ea:26:21:ec:30:8d:91:64:3d:4b:7c:c0:65:c4:f3:e6:15:63:
2b:84:55:7f:69:33:b7:30:50:d9:e4:a9:b2:30:76:b2:f6:23:
d1:06:9b:70:4a:c5:2a:32:6a:7f:cc:4a:0c:ad:d1:f9:39:5a:
b5:af:fb:e0:72:a1:34:97:cc:62:bc:f2:53:64:b3:1d:54:12:
31:86:d9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 16:40:27 2023 by rpki-client on console-ams.rpki-client.org