Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
File: 61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa (raw, json)
Hash identifier: 6Ge3vYPD3x74VpuKLYcv0cIZtC8wAQslZ8HdzhLAr1I=
Subject key identifier: BE:6F:22:91:6B:20:7D:F4:0B:86:5C:EC:E3:76:6D:16:08:B9:25:0D
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 01D25D4A0CAF2CB2C5EB156240CA24532D664043
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 193.26.64.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:d2:5d:4a:0c:af:2c:b2:c5:eb:15:62:40:ca:24:53:2d:66:40:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5c:b4:51:21:7f:6f:db:22:5c:4f:57:73:5f:
5a:c5:d0:67:4b:1d:9e:d1:41:ed:77:15:1d:7f:d6:
53:1e:b5:6b:df:29:c5:31:13:15:ad:55:49:77:96:
c9:5a:0f:6e:96:24:4f:5d:b0:41:ec:fd:84:ce:47:
8f:ca:e7:ac:37:63:46:5a:a3:79:36:15:1d:e4:bb:
cf:e5:e1:a9:50:68:39:37:f7:59:d4:c1:c7:0a:42:
17:9f:18:07:10:7c:5d:1d:42:08:27:ab:3a:d1:cd:
d1:8e:fe:17:4c:06:ba:59:30:c4:ac:07:cf:17:0c:
22:58:3e:c8:5c:30:97:da:05:b3:d7:12:cb:72:ff:
e9:f6:e7:52:4b:d4:2e:2d:f8:85:bf:3b:3a:dd:e2:
02:3a:53:09:83:a5:29:1c:bd:21:1c:b0:ae:47:a4:
e2:d8:86:ea:7a:92:68:1d:80:74:71:f0:99:cb:e9:
1d:af:3b:dd:5e:17:87:a5:b1:b6:ab:19:e1:db:ad:
2b:04:2c:fc:19:7c:f2:23:fd:bb:b4:30:69:94:6a:
8b:a1:78:18:58:28:2a:31:5b:ca:b8:12:e6:25:59:
4f:12:5e:43:ed:3d:79:73:5a:9b:77:35:15:f8:cd:
ea:e9:7f:e1:e8:bf:d0:d9:8a:67:df:e3:83:e7:06:
7f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:6F:22:91:6B:20:7D:F4:0B:86:5C:EC:E3:76:6D:16:08:B9:25:0D
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/61a46a0f-9dd7-44e2-afee-9bf568e2e018.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.64.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:bc:ec:cb:48:07:0e:fc:0e:c5:60:ca:ba:63:d8:e4:08:95:
93:ec:ea:6c:7a:6d:f4:c4:b0:02:31:3d:99:d8:cb:4c:12:5e:
e0:2e:74:6f:1e:74:f4:d5:cb:5e:12:d9:dc:18:13:7f:11:31:
52:f2:95:f0:83:9a:34:60:8b:7f:34:49:0e:2a:a2:95:b2:58:
22:0b:4c:be:91:ba:17:4b:b6:b4:d6:9b:01:03:86:4b:fe:30:
d3:d7:99:64:f5:e3:bd:63:fd:3c:b8:42:f5:fe:35:7f:02:e3:
48:8a:ca:43:f0:67:5b:67:b7:8b:1d:f9:6b:1a:67:c8:5b:90:
93:c2:e7:6c:f6:22:e1:d8:2d:1b:59:7f:37:f9:74:3f:6d:be:
9a:7e:d5:e4:df:b8:2a:0b:e3:4e:6b:6c:19:8e:1d:f9:09:e4:
15:ea:3f:d8:68:a6:9e:23:c7:14:f3:93:64:75:0e:2f:82:e2:
be:7c:e3:15:cb:db:2b:f0:77:ff:80:09:02:1c:2e:75:f3:ba:
0e:eb:85:94:14:2a:70:4d:3f:a1:97:56:09:68:5e:99:6d:08:
48:df:de:e5:3a:08:2a:67:48:74:76:5a:9b:49:81:bb:a7:4c:
92:8d:f6:08:07:ff:41:73:9f:4d:90:1e:8c:f4:a5:95:bb:62:
32:6f:61:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:03:00 2025 by rpki-client