Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
File: 82037871-73f4-40ba-be5d-495a41d85184.roa (raw, json)
Hash identifier: wtWQD068FwJDvFYBtM3VoqOa96rTM4MvJGbHvQCKNE0=
Subject key identifier: 71:08:20:CC:B5:8F:ED:C1:8A:19:89:31:2E:27:2B:48:3F:96:94:39
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4B30896400DD63393A1B57AEE065D1096E353F14
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
Signing time: Sat 31 May 2025 00:50:09 +0000
ROA not before: Sat 31 May 2025 00:50:09 +0000
ROA not after: Sat 05 Jul 2025 23:59:59 +0000
asID: 7224
IP address blocks: 46.51.212.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:30:89:64:00:dd:63:39:3a:1b:57:ae:e0:65:d1:09:6e:35:3f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 31 00:50:09 2025 GMT
Not After : Jul 5 23:59:59 2025 GMT
Subject: serialNumber=d6b9d9446598c6542352c8da4d9e1ef450028e3b4cbe65688aff8d8649e7988f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f6:51:a6:da:96:68:46:21:6d:bf:47:eb:29:
00:c2:5f:1c:4c:41:89:0d:36:96:4f:69:08:de:8d:
46:ae:e1:51:c8:50:60:ad:7c:e4:ad:24:91:97:2c:
f1:05:4c:cc:9e:ca:67:5e:da:33:92:d9:4c:bd:06:
dc:65:b9:12:8d:7f:9c:71:3f:b5:69:3c:d2:b8:94:
6b:0d:e0:93:b0:9f:64:7e:82:48:86:aa:0e:17:11:
21:e4:2a:b3:32:c3:22:eb:a4:d7:fe:e5:94:61:26:
7c:a4:ad:4f:b8:c6:63:20:d8:47:af:b3:43:3f:cd:
71:1c:f1:d0:1b:cf:c0:4c:cf:51:87:99:ab:3f:08:
9e:9d:1c:b7:e8:41:64:32:2b:93:4d:89:d0:4a:53:
77:da:c2:e8:7f:2e:45:35:39:f1:ea:16:21:90:47:
9d:ee:16:84:29:4f:80:8a:c3:8d:f4:82:aa:6f:66:
a5:c7:76:b0:b1:06:20:93:98:f5:cc:68:9f:dd:5c:
88:18:17:dd:22:24:e5:0b:ab:35:5a:0b:86:7f:e0:
33:fe:f0:be:d1:8b:60:4a:79:d1:06:fe:63:35:c0:
05:82:6b:c3:1c:1f:e7:b1:db:b1:f8:6e:01:7b:4b:
ac:85:db:ee:d1:25:cb:4f:76:d9:02:55:4e:54:f7:
c4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:08:20:CC:B5:8F:ED:C1:8A:19:89:31:2E:27:2B:48:3F:96:94:39
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.212.0/22
Signature Algorithm: sha256WithRSAEncryption
12:85:53:24:41:d6:80:41:f3:41:67:9f:d7:be:9f:54:de:a4:
8e:cd:d3:d1:27:fa:b9:a5:24:6e:2d:c2:23:41:fa:d9:ed:49:
15:44:24:15:79:ec:16:5a:38:77:83:d8:0b:84:5c:ff:5b:78:
8c:35:0a:bb:2b:3a:8d:03:1a:fc:68:c9:d4:b4:3c:0e:18:1a:
cd:51:44:02:8b:f2:cb:a7:03:78:f7:32:54:d2:c6:6b:e5:10:
fa:b3:5a:b7:86:9c:2f:b6:f5:d4:25:63:5d:5a:0f:73:b9:1a:
92:d5:f7:6e:0b:bd:85:86:42:f1:ac:94:2d:ba:8f:56:7e:cf:
ed:01:08:ae:6b:6f:da:c6:6e:eb:41:5c:d7:eb:c6:e7:c8:57:
b7:3f:c8:81:15:e5:af:ba:58:cb:a2:5e:d7:9d:96:e9:a9:fa:
4f:ff:94:3d:88:72:1f:0f:75:1c:27:0a:41:fc:28:0e:be:0f:
89:6d:b2:b7:63:90:ed:60:b3:1a:02:ba:be:d1:b6:97:57:b3:
5c:97:2b:74:01:63:81:24:db:e9:6d:29:cc:dd:b8:1b:f8:44:
38:bb:d9:15:61:8e:c0:43:c5:9e:38:d0:08:52:8f:d6:0a:6a:
b1:fa:77:12:db:b0:43:6a:db:79:35:d9:a7:77:d6:30:db:a5:
f1:1c:cb:21
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUSzCJZADdYzk6G1eu4GXRCW41PxQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTA1MzEwMDUwMDlaFw0yNTA3MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQGQ2YjlkOTQ0NjU5OGM2NTQyMzUyYzhkYTRkOWUxZWY0NTAwMjhlM2I0Y2Jl
NjU2ODhhZmY4ZDg2NDllNzk4OGYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANf2UabalmhGIW2/R+spAMJfHExBiQ02lk9pCN6NRq7hUchQYK185K0kkZcs
8QVMzJ7KZ17aM5LZTL0G3GW5Eo1/nHE/tWk80riUaw3gk7CfZH6CSIaqDhcRIeQq
szLDIuuk1/7llGEmfKStT7jGYyDYR6+zQz/NcRzx0BvPwEzPUYeZqz8Inp0ct+hB
ZDIrk02J0EpTd9rC6H8uRTU58eoWIZBHne4WhClPgIrDjfSCqm9mpcd2sLEGIJOY
9cxon91ciBgX3SIk5QurNVoLhn/gM/7wvtGLYEp50Qb+YzXABYJrwxwf57Hbsfhu
AXtLrIXb7tEly0922QJVTlT3xNsCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRxCCDM
tY/twYoZiTEuJytIP5aUOTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ODIwMzc4NzEtNzNmNC00MGJhLWJlNWQtNDk1YTQxZDg1MTg0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi4z1DAN
BgkqhkiG9w0BAQsFAAOCAQEAEoVTJEHWgEHzQWef176fVN6kjs3T0Sf6uaUkbi3C
I0H62e1JFUQkFXnsFlo4d4PYC4Rc/1t4jDUKuys6jQMa/GjJ1LQ8DhgazVFEAovy
y6cDePcyVNLGa+UQ+rNat4acL7b11CVjXVoPc7kaktX3bgu9hYZC8ayULbqPVn7P
7QEIrmtv2sZu60Fc1+vG58hXtz/IgRXlr7pYy6Je152W6an6T/+UPYhyHw91HCcK
QfwoDr4PiW2yt2OQ7WCzGgK6vtG2l1ezXJcrdAFjgSTb6W0pzN24G/hEOLvZFWGO
wEPFnjjQCFKP1gpqsfp3EtuwQ2rbeTXZp3fWMNul8RzLIQ==
-----END CERTIFICATE-----
Generated at Sat Jun 14 11:01:29 2025 by rpki-client