Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
File: eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa (raw, json)
Hash identifier: 9rCvMnKJAZde5wAZwVu35d/4ys71sEskm7/zCw2cM9c=
Subject key identifier: B6:50:C9:F1:56:FC:02:3B:72:55:32:CB:E5:1C:FF:0B:93:26:6B:4F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 62370C7A316DBC057814E1B637DDAFC7BFDCC027
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
Signing time: Fri 06 Jun 2025 15:00:57 +0000
ROA not before: Fri 06 Jun 2025 15:00:57 +0000
ROA not after: Fri 11 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.0.0/19 maxlen: 19
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.mft
rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:37:0c:7a:31:6d:bc:05:78:14:e1:b6:37:dd:af:c7:bf:dc:c0:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jun 6 15:00:57 2025 GMT
Not After : Jul 11 23:59:59 2025 GMT
Subject: serialNumber=6f9c8ea489e8b4f2f5ac0d9ee13447130409851b06102b2b03508ce930025ccf, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2c:be:15:fa:83:a0:51:bf:ac:5e:a1:fa:69:
3a:a7:15:28:3d:2d:01:bc:f5:99:f9:7a:e7:3a:d5:
f1:c9:42:0c:e1:6b:39:20:f5:fc:32:be:ba:17:dd:
88:e2:07:4d:f0:39:6f:a1:3b:bd:0e:65:af:b5:b3:
b2:1a:80:91:5f:cd:8f:6f:4a:84:18:df:fc:7c:6f:
e1:51:c7:e4:1c:6e:7b:99:a5:54:8c:d8:77:0d:74:
e0:3d:97:aa:7b:ee:ad:41:ef:3e:75:e8:79:40:8c:
5c:6a:d0:71:60:dc:a6:b9:54:5b:76:94:fe:19:5c:
b2:e2:f3:e5:50:c5:b9:ec:ec:ee:62:a9:f4:b3:23:
4c:d2:3d:dc:d8:1f:39:20:2f:3c:06:b6:0a:f6:c4:
41:ad:8b:e1:e2:f2:eb:f5:1b:d1:88:dd:d4:a1:fc:
ac:75:20:88:d1:ee:75:ac:18:2a:85:db:e3:2b:c1:
81:c1:55:de:f0:3c:70:8c:68:f4:a1:49:39:42:ab:
8c:42:35:cc:c4:60:b1:51:b4:be:eb:05:ee:4a:35:
0d:5c:e7:dd:30:83:8e:44:74:d3:83:43:c2:5d:60:
62:32:46:1b:1b:8c:5f:60:cb:d8:e7:ca:fa:35:58:
99:b0:3f:2c:77:57:54:77:d7:20:87:43:99:fd:78:
c0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:50:C9:F1:56:FC:02:3B:72:55:32:CB:E5:1C:FF:0B:93:26:6B:4F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.0.0/19
Signature Algorithm: sha256WithRSAEncryption
ac:01:f7:2a:d0:67:fd:ee:f4:54:ab:c4:0c:5f:d1:08:1f:22:
0d:bf:61:bf:6c:36:65:e2:fd:a7:85:88:9e:40:dd:cd:a6:c8:
c3:6f:c0:a8:01:4b:e1:cc:23:c6:ce:84:ec:ab:c5:d2:45:fe:
0f:b4:3e:e5:88:80:11:3c:d0:17:a9:ce:9f:f3:00:2f:b7:af:
08:a8:b0:8c:8a:ba:7d:53:36:25:42:24:94:e6:14:4b:99:d1:
c3:e2:6a:13:77:d8:98:11:bd:1b:50:29:40:ab:79:ab:9c:5e:
1c:d0:0c:86:98:9b:38:77:e8:1d:57:57:6b:a7:08:dc:79:e1:
28:e7:83:c8:79:5b:9d:7f:4c:55:5a:06:54:85:64:4f:f4:30:
74:b2:8a:1d:3c:9e:a8:b8:d0:d1:d5:dc:53:5b:9e:e5:28:5e:
b3:a6:33:4f:79:6c:98:aa:b0:22:33:c5:97:2a:f9:77:48:f1:
ed:25:c0:04:c9:7a:58:67:c7:45:df:6d:97:a8:4c:da:72:92:
92:79:39:dd:d2:52:33:b2:f8:dd:9a:c9:85:53:99:1a:7c:b5:
01:90:ff:42:f5:e1:d4:65:40:a3:94:62:7f:8d:c1:13:06:d2:
d4:f9:13:4e:05:b0:fb:c5:1a:a8:a4:03:45:e4:96:04:d5:86:
3e:19:3c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 05:43:16 2025 by rpki-client