Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa
File: 05d2e6e0-648a-472a-b287-1b954eae646d.roa (raw, json)
Hash identifier: LDMoegTHF+wk8HS606/nddpV5R2CUv8iLgPM13nweS8=
Subject key identifier: 1F:68:2B:96:A5:08:90:66:05:B4:EA:64:C6:C3:04:13:B2:10:BC:DA
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 287346A45C4E6F15A6ECF54FA0609FE52A9D6300
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa
Signing time: Mon 17 Mar 2025 15:40:30 +0000
ROA not before: Mon 17 Mar 2025 15:40:30 +0000
ROA not after: Mon 21 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 83.118.234.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:73:46:a4:5c:4e:6f:15:a6:ec:f5:4f:a0:60:9f:e5:2a:9d:63:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 17 15:40:30 2025 GMT
Not After : Apr 21 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:84:34:c6:ab:0b:95:97:1b:2b:2e:ce:03:
e6:9b:72:1b:78:19:4e:ea:11:7d:2f:f0:8e:b3:36:
31:53:81:e7:9f:95:fd:0a:c5:ab:d3:29:2d:2f:ae:
b0:aa:f4:73:b5:dc:e7:e9:e7:bb:15:9a:34:e7:ab:
19:9f:24:1b:0f:03:ab:6d:87:f0:50:12:45:2b:91:
eb:4c:d0:f5:31:61:4d:d9:91:05:7f:7e:e7:f6:fe:
0a:2d:c9:ca:8f:37:dc:4f:19:33:92:77:25:94:96:
4f:82:41:e2:65:49:19:a0:93:fa:50:58:6b:94:e0:
e2:40:72:b2:2c:f4:59:12:37:d7:37:3c:7d:2f:dd:
3c:42:f9:0e:e8:e8:4b:4a:62:b6:3f:15:4a:d5:25:
68:df:ce:e0:84:00:d9:9a:17:32:f3:e5:cc:67:6e:
48:d5:4b:06:aa:05:5d:26:3f:fd:89:f7:e5:b5:46:
da:26:ed:fb:d7:2f:17:51:6d:e4:a9:a1:27:b8:7e:
6f:b4:8a:45:dc:5f:ea:ed:0a:48:65:5e:9f:78:db:
f5:68:14:cc:e7:d2:06:ba:55:73:50:d5:75:b7:b3:
cd:8f:67:63:7d:33:cb:62:b2:94:43:97:f0:e6:ce:
eb:08:bf:22:aa:99:3c:b7:fb:fe:7d:d4:c3:b8:55:
f6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:68:2B:96:A5:08:90:66:05:B4:EA:64:C6:C3:04:13:B2:10:BC:DA
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/05d2e6e0-648a-472a-b287-1b954eae646d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.234.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:cb:ad:17:eb:28:23:65:18:3f:13:34:42:66:59:6d:1f:2f:
f0:39:45:ca:71:44:ea:fa:eb:76:3e:6c:11:68:a6:10:98:b2:
7c:19:38:f3:97:5e:20:9f:8a:e4:a8:21:09:b0:ff:54:02:b3:
30:3c:c4:96:8d:19:f0:80:95:0c:33:b0:e5:f1:f4:98:c8:a0:
13:30:6c:4c:35:2d:be:32:c6:31:ec:bf:44:82:ef:d9:70:4c:
dd:ff:28:45:5b:15:28:78:4f:c5:68:18:47:27:fc:22:2f:1a:
ed:ee:09:72:fb:95:86:5a:33:7e:ce:d5:60:a6:65:48:72:18:
71:91:d4:d5:07:64:d3:25:00:9f:5b:43:57:1b:95:1b:f3:42:
df:18:79:a2:31:1d:ec:38:b9:9a:86:f6:04:5e:e7:b9:ac:85:
6e:74:92:8b:37:76:0c:14:c7:ac:1b:1a:04:0d:d8:90:8c:07:
14:c2:0e:32:74:24:92:c9:80:7c:0b:f5:3c:c5:f1:61:dd:9e:
83:b9:e1:c0:e0:63:06:66:bd:d5:ee:5f:8a:5e:dd:71:2e:01:
48:92:d1:37:4c:f1:7a:ce:0c:b5:bd:3c:04:2c:ec:ea:40:34:
c4:97:c7:2b:77:40:f2:fd:78:59:2d:4f:ff:ef:41:3c:cf:7d:
d8:67:1c:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:18:33 2025 by rpki-client