Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
File: 00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa (raw, json)
Hash identifier: 9EkWrxRtkHW3hQy3CQNGsrOtffk+iAe0kTGNRUDIr7k=
Subject key identifier: 23:94:E6:67:EE:B1:37:BB:4E:44:E6:CE:50:5C:A9:5E:A7:F6:48:6C
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 63D09FABF5D1882E816A3D7983B982729DF354EB
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
Signing time: Fri 20 Jun 2025 00:21:02 +0000
ROA not before: Fri 20 Jun 2025 00:21:02 +0000
ROA not after: Fri 25 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3:6000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:d0:9f:ab:f5:d1:88:2e:81:6a:3d:79:83:b9:82:72:9d:f3:54:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Jun 20 00:21:02 2025 GMT
Not After : Jul 25 23:59:59 2025 GMT
Subject: serialNumber=56369ba16d8b2008089af403dbfe75669ac2bc2c0854f8fd6c2fbdcb9aa2be74, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:d8:bb:46:58:2f:1a:57:80:23:6f:a4:ae:
38:7e:6b:77:a5:08:0f:6f:ea:45:02:92:df:16:c2:
52:03:be:98:88:77:45:12:74:92:d6:da:00:b3:7d:
0a:87:59:26:37:02:f4:30:4a:01:23:48:fa:4f:b7:
f9:76:f0:b9:f7:c8:9f:6c:b5:06:22:b3:78:f6:45:
fa:b0:96:90:e3:9b:f6:19:bd:56:d9:8c:26:36:8a:
83:58:d8:eb:02:4f:f3:fc:a7:1c:c9:c0:04:ea:b5:
ed:f9:77:2f:5e:10:98:fa:e3:5a:92:f7:2a:63:54:
27:3c:3b:53:3a:b1:ae:f7:0d:ed:db:1d:b8:be:b2:
37:13:7d:30:61:a0:68:e6:dc:80:e2:5c:cb:59:f2:
c6:6b:1e:88:ba:6b:8f:dc:97:75:b8:7f:ab:d0:af:
b6:41:c3:ee:57:f6:b8:bf:83:d3:74:64:17:f2:ec:
ae:98:b2:77:69:50:9c:4d:4b:1d:1e:b9:a9:24:b8:
24:00:c2:2a:b7:7a:de:6f:2a:32:ba:9f:a0:30:a1:
4f:f7:6c:b0:c0:07:92:ec:1d:57:cf:a9:33:94:db:
7e:3d:73:f8:30:66:5a:1d:bc:e3:19:7a:af:74:70:
36:8b:8b:4f:b6:46:34:17:8e:a3:94:af:c3:1b:e5:
4c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:94:E6:67:EE:B1:37:BB:4E:44:E6:CE:50:5C:A9:5E:A7:F6:48:6C
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3:6000::/36
Signature Algorithm: sha256WithRSAEncryption
86:1f:9c:1c:5a:d1:e6:60:99:f8:68:b4:e6:77:87:cf:f6:ca:
d7:e1:78:6a:74:d1:8e:63:ea:12:24:56:84:19:1b:a2:ef:36:
17:ac:9b:20:cc:cf:47:fa:c3:a0:0a:f3:f7:50:ba:e0:39:6e:
52:6c:43:4a:89:f9:70:34:4c:0e:80:a1:9d:d2:56:e3:5b:61:
38:49:da:7d:ee:42:24:75:86:26:db:fb:6f:7f:e9:bf:d1:f8:
14:04:79:9b:43:9f:50:ea:02:a8:27:0a:17:c0:55:80:f3:3f:
93:45:26:b4:90:4f:00:88:c9:fe:43:e5:5c:a4:45:b9:8a:e1:
45:6f:7c:3e:05:1d:e5:06:dd:d1:15:a7:8f:f7:95:58:0c:04:
67:d4:00:c9:da:87:ca:44:7d:db:6b:7a:9a:3e:ef:46:85:e4:
0f:e9:d0:a5:e6:ad:e8:69:86:96:bc:cb:9a:80:52:13:b7:ed:
8c:a3:69:4a:a6:5b:02:f6:bc:67:22:3f:c8:e3:f8:34:0c:99:
42:6d:ef:1c:74:30:17:1d:b1:f5:91:18:95:a5:45:a2:57:27:
ae:1c:00:58:d3:b0:60:4a:b4:65:4c:b2:ba:13:1e:58:f8:dd:
7d:94:59:a6:6c:db:7d:3f:9d:91:6a:78:2b:ae:32:80:69:27:
d6:0f:cb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 02:57:43 2025 by rpki-client