Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1034a10f-29ad-43d5-9d62-abfa393cb0a3.roa
File: 1034a10f-29ad-43d5-9d62-abfa393cb0a3.roa (raw, json)
Hash identifier: 4YX9ycuCSUOEN6YiCGtB+Mf6pBNLJ/Zz/ZuNdXAucnk=
Subject key identifier: 92:E0:19:65:F5:21:DE:8C:9E:5E:6A:1F:07:79:4B:A0:3A:97:6D:D9
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 560BE380B2E517D5F30EA443E0950F20B7128F6F
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1034a10f-29ad-43d5-9d62-abfa393cb0a3.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.88.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:0b:e3:80:b2:e5:17:d5:f3:0e:a4:43:e0:95:0f:20:b7:12:8f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:00:d6:32:2f:33:ff:90:b2:19:22:4a:9c:d3:
4e:d7:ec:96:ad:13:b1:be:66:b2:a3:fc:94:29:50:
5c:8b:d7:d8:38:b7:9d:cb:40:cf:ff:5c:b9:21:ad:
9c:a8:69:fa:89:82:0d:31:1e:05:6b:f8:c8:8c:27:
88:4a:1d:6e:14:ee:d7:ab:f3:6a:02:06:60:b7:54:
ad:c3:f3:b9:60:e8:f0:37:b7:45:b0:65:4a:46:db:
1a:69:21:e1:da:4f:24:1f:86:7c:b7:e7:3b:62:24:
46:3b:c6:c9:36:17:6a:70:e9:4c:26:18:62:5d:50:
22:47:16:fa:bc:43:eb:de:49:e7:88:b6:c9:a0:7f:
80:46:13:6d:5a:aa:13:f2:da:0b:87:d5:6c:d8:de:
6c:1c:45:94:22:49:38:8d:b3:a4:4d:ed:7b:a3:90:
49:65:9b:c5:35:7d:c2:be:46:bc:34:aa:ae:5c:a7:
88:d6:dd:81:94:e4:26:da:19:f0:3a:61:e7:82:66:
5e:4d:a1:7a:f1:0a:9e:79:ce:4c:3c:97:e1:df:ce:
06:2b:a6:4b:4d:52:e7:f6:1e:f1:f8:f0:18:34:8c:
f3:ac:be:f3:2c:01:10:fe:4a:67:f5:7f:9f:95:b5:
fc:1a:6d:29:b3:95:3e:05:50:ab:7c:75:3b:2f:84:
77:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:E0:19:65:F5:21:DE:8C:9E:5E:6A:1F:07:79:4B:A0:3A:97:6D:D9
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/1034a10f-29ad-43d5-9d62-abfa393cb0a3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.88.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:4b:65:21:d9:5c:b7:1f:f8:c8:a8:31:11:6c:d5:c6:99:6f:
6d:dc:eb:4a:7c:19:51:46:73:20:08:fa:67:5f:92:d9:fa:e1:
a5:a1:fd:6b:f8:0b:96:90:9f:85:77:d5:8e:b5:ba:52:de:ab:
98:18:3d:7f:79:bb:c8:e3:1b:26:d0:02:34:08:37:14:b5:e5:
b1:b8:52:b8:37:b5:75:55:54:c7:de:89:31:8a:b7:e1:a9:0a:
38:4d:a4:90:6e:69:cc:2c:d4:73:5e:c9:f2:26:00:c4:39:0c:
02:3b:3b:d7:64:8a:17:f7:20:6a:c0:e1:19:d1:22:bb:8c:39:
17:67:c3:83:91:f6:8e:0d:b7:ac:f9:df:0b:08:1c:37:76:52:
89:56:a9:8e:a3:ca:e0:01:dd:3f:48:8a:e1:1e:4c:6a:7a:c4:
0d:40:cf:84:34:88:7e:7c:09:82:96:2d:77:3d:dc:07:e9:fc:
4a:15:02:0e:a1:e5:c7:ef:be:b9:22:f4:d5:94:e3:21:af:08:
a9:d7:91:32:4b:ea:95:c9:01:04:d3:a9:a7:21:ba:b8:d4:c0:
c0:f6:33:09:a5:a6:a2:6a:74:cc:7b:dc:98:33:21:12:e6:f6:
44:6b:4b:dd:49:ca:4d:89:05:31:32:4b:fd:13:05:ff:c7:e7:
56:e0:42:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:00:36 2025 by rpki-client