Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
File: 01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa (raw, json)
Hash identifier: hMHJCyA1G18SC3pb2fe4DJvtSzGtCiZMTLt7wgGCCqE=
Subject key identifier: 71:DD:F5:4D:74:C8:BE:33:BB:C9:16:87:F2:7A:A8:AB:45:A3:03:9F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2C17D28F6FFACD4EB1245AEB6C3F4DAD504ECC16
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
Signing time: Mon 17 Mar 2025 15:40:30 +0000
ROA not before: Mon 17 Mar 2025 15:40:30 +0000
ROA not after: Mon 21 Apr 2025 23:59:59 +0000
asID: 8987
IP address blocks: 83.118.234.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:17:d2:8f:6f:fa:cd:4e:b1:24:5a:eb:6c:3f:4d:ad:50:4e:cc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 17 15:40:30 2025 GMT
Not After : Apr 21 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ae:8b:e1:1e:5a:46:77:1b:8e:70:3e:61:7d:
64:bf:48:04:25:c6:e2:26:4c:29:b7:a2:b4:0c:30:
0d:32:3c:57:08:5c:0f:28:80:b4:7d:f5:bd:91:99:
eb:87:0e:9d:e6:f4:d0:9b:83:9e:ce:c6:a5:5f:0c:
cf:ab:00:bf:7d:ac:52:1b:1d:38:30:86:7e:6b:be:
30:88:73:72:cf:d5:15:35:05:9f:13:5c:21:3e:40:
f0:8d:24:41:82:c1:18:ae:0b:80:bc:e5:8b:d4:89:
06:b4:34:aa:83:9a:24:aa:7e:e4:9b:cc:37:da:0d:
a8:da:24:8a:cc:3c:46:bf:dd:89:59:b8:92:29:67:
11:6a:47:7d:98:02:ac:57:0a:a5:2d:c3:8b:d2:a4:
a8:7a:82:eb:54:50:ab:08:d7:2c:f7:de:86:5b:3e:
b5:8b:52:3e:ad:5a:89:2f:b1:ea:5f:c4:ef:77:b1:
7b:fd:af:e3:2b:63:75:23:8d:71:01:26:e6:a5:73:
6b:c2:6e:e4:1f:ee:0e:c7:c0:9f:6f:04:ec:da:de:
0c:c0:db:34:cf:2e:f0:a2:01:6d:36:6b:f9:28:d1:
3e:c1:1c:ff:cc:cf:91:2b:db:d7:f3:fd:f8:d9:2c:
7a:bb:0f:df:70:33:ae:39:82:4b:0d:4d:82:c1:ae:
4b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DD:F5:4D:74:C8:BE:33:BB:C9:16:87:F2:7A:A8:AB:45:A3:03:9F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/01c4adee-b8dc-44e3-959a-e4ab13e63ba7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.234.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:82:32:1a:ad:c2:0a:aa:82:92:34:56:bd:62:32:cb:4d:00:
4c:fe:5a:2a:f3:f4:bc:72:db:e6:25:ef:c1:69:3c:7d:46:81:
47:68:8b:b0:3c:a8:95:f8:27:a4:c7:ec:89:94:f8:b0:f6:aa:
6c:71:25:8f:1c:e7:3d:24:c2:03:a2:c9:dd:26:fd:12:71:ec:
ab:ac:a3:b6:c7:d3:d6:cf:89:d0:aa:f7:44:ec:ea:2d:0e:3f:
d1:43:ce:2d:07:20:dd:0b:ca:7c:2e:1a:97:11:9d:7c:31:c0:
23:34:56:e3:fd:5b:56:53:2a:b3:94:81:6d:fa:35:5f:d7:a7:
b3:cc:84:3b:e8:4f:20:a3:42:9c:23:1e:f1:33:07:01:96:25:
e8:0f:57:05:05:02:91:e8:71:7a:41:e1:f1:3d:62:3d:78:10:
c4:96:2c:1c:c2:dc:07:b4:bc:8e:a9:61:c0:da:85:7c:cf:13:
06:d1:61:ce:c6:ff:69:a9:de:8b:fb:83:f3:6b:98:e0:ba:57:
31:08:fb:b8:0d:8e:42:1f:d6:8a:a3:3c:0f:8d:7c:d4:92:46:
d8:45:d8:bf:dc:df:5b:f4:13:8a:d6:df:f8:c3:d9:a0:73:9e:
d6:7b:f4:a6:ec:e5:cd:ff:61:12:5e:0a:5b:55:9c:b6:02:39:
2f:ee:81:5f
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIULBfSj2/6zU6xJFrrbD9NrVBOzBYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNTAzMTcxNTQwMzBaFw0yNTA0MjEyMzU5NTlaMHoxSTBHBgNV
BAUTQGNjMTQ4ODRiOTI3OTZhZDBlMDVhYzg0MWY0Y2FiODdmMDg3M2FjOThhMDk3
NTBkNjE2NTdmZjI1NTU1NDNkODYxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKKui+EeWkZ3G45wPmF9ZL9IBCXG4iZMKbeitAwwDTI8VwhcDyiAtH31vZGZ
64cOneb00JuDns7GpV8Mz6sAv32sUhsdODCGfmu+MIhzcs/VFTUFnxNcIT5A8I0k
QYLBGK4LgLzli9SJBrQ0qoOaJKp+5JvMN9oNqNokisw8Rr/diVm4kilnEWpHfZgC
rFcKpS3Di9KkqHqC61RQqwjXLPfehls+tYtSPq1aiS+x6l/E73exe/2v4ytjdSON
cQEm5qVza8Ju5B/uDsfAn28E7NreDMDbNM8u8KIBbTZr+SjRPsEc/8zPkSvb1/P9
+NksersP33AzrjmCSw1NgsGuS8ECAwEAAaOCAiEwggIdMB0GA1UdDgQWBBRx3fVN
dMi+M7vJFofyeqirRaMDnzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
MDFjNGFkZWUtYjhkYy00NGUzLTk1OWEtZTRhYjEzZTYzYmE3LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVN26jAN
BgkqhkiG9w0BAQsFAAOCAQEAnoIyGq3CCqqCkjRWvWIyy00ATP5aKvP0vHLb5iXv
wWk8fUaBR2iLsDyolfgnpMfsiZT4sPaqbHEljxznPSTCA6LJ3Sb9EnHsq6yjtsfT
1s+J0Kr3ROzqLQ4/0UPOLQcg3QvKfC4alxGdfDHAIzRW4/1bVlMqs5SBbfo1X9en
s8yEO+hPIKNCnCMe8TMHAZYl6A9XBQUCkehxekHh8T1iPXgQxJYsHMLcB7S8jqlh
wNqFfM8TBtFhzsb/aanei/uD82uY4LpXMQj7uA2OQh/WiqM8D4181JJG2EXYv9zf
W/QTitbf+MPZoHOe1nv0puzlzf9hEl4KW1WctgI5L+6BXw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:26:18 2025 by rpki-client