Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8184de91-4284-44f8-acc1-0d319b511ea5.roa
File: 8184de91-4284-44f8-acc1-0d319b511ea5.roa (raw, json)
Hash identifier: qNLmuQzF/gE6h+S7/lewir9Aa3mKFwfh4IUmwVWPlmA=
Subject key identifier: 0F:C8:2B:DC:C0:CE:4F:EE:8F:A5:38:F9:12:01:2E:82:CE:E6:CE:76
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 0349B32E623740FB2F32183C98293EE7DDB6F002
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8184de91-4284-44f8-acc1-0d319b511ea5.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 193.186.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:49:b3:2e:62:37:40:fb:2f:32:18:3c:98:29:3e:e7:dd:b6:f0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1c:ca:9f:2e:ed:13:7c:d5:5e:be:3f:d0:0b:
b1:c3:08:3b:67:4b:7f:c7:df:2c:e3:24:8b:64:ef:
a5:85:fa:d1:20:e9:80:3f:fd:55:f6:02:5c:12:ee:
f3:84:c3:8e:26:b0:47:27:aa:66:26:22:2e:ec:8f:
e3:2a:3e:6b:3c:99:07:f5:28:1a:96:4b:b1:73:c5:
13:b5:e0:0d:b6:8b:a4:4f:d8:56:0b:9b:8d:e2:02:
47:5b:33:8d:4d:96:8b:1b:92:ed:64:4a:d9:ff:83:
eb:7f:77:68:c4:ba:a0:f5:a2:ce:6f:90:2b:47:3e:
04:e0:de:99:7c:24:7d:c4:dd:55:d4:07:9d:c3:99:
62:ec:75:3f:dc:4e:20:e4:ab:ce:b2:9c:bf:70:1a:
8c:fa:6a:8e:b5:5c:c7:61:03:2a:00:47:ee:b2:5e:
a0:4f:43:d8:b7:24:98:d7:3e:b0:3b:98:a1:65:0d:
f1:92:25:fa:b8:de:59:bb:8c:5f:85:a1:c7:1e:e1:
98:cb:c9:91:13:43:f2:85:8a:16:1c:d9:2f:20:b7:
72:51:2e:9e:d6:b2:70:57:c0:44:2a:ed:56:ff:5f:
65:c3:8e:66:cc:38:46:31:90:0f:51:3d:bd:d8:1a:
a0:98:64:2f:8c:7f:91:76:6a:84:5b:7f:f2:ae:77:
5b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C8:2B:DC:C0:CE:4F:EE:8F:A5:38:F9:12:01:2E:82:CE:E6:CE:76
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/8184de91-4284-44f8-acc1-0d319b511ea5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.186.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:97:79:46:45:4a:97:67:87:ce:f9:39:87:6a:f7:25:8f:db:
ef:0c:06:28:39:e1:1c:cf:ec:bf:ca:27:bd:c1:f4:dd:b5:24:
aa:ad:9e:90:64:0d:93:2a:a2:52:b3:f6:52:c9:aa:0b:e2:f6:
48:e6:d0:64:eb:4d:6d:38:ab:49:1a:58:1f:9d:93:99:9e:bd:
3e:56:d1:b8:3f:57:9f:f9:50:80:6a:ab:db:ad:17:b4:4b:d2:
14:b0:c4:df:16:38:48:c4:a7:3f:c9:72:6a:67:7e:2f:d0:1d:
a8:09:72:19:9a:fe:b4:9d:30:07:ab:e1:c7:fe:e0:69:43:6d:
45:7a:e5:0e:d7:59:f1:73:93:a2:56:d9:97:59:ef:a1:3e:cf:
9e:e2:fa:73:0d:b2:e1:91:fe:7a:80:f9:41:a7:60:5f:fe:3f:
a9:78:0a:da:bf:24:31:98:f9:87:eb:9e:6f:40:6a:0a:31:ec:
16:d4:07:1e:42:a3:6c:26:96:56:b2:b1:c4:2b:ec:3b:df:a9:
f6:3a:a8:dd:e2:b3:e6:b2:c3:cd:52:5c:5b:5d:9f:26:8c:ed:
15:89:a6:34:8f:13:d2:9f:fa:36:0e:c9:e8:87:49:e5:89:d5:
15:8f:56:c3:4d:2f:0a:ae:d9:3b:bf:1f:d5:54:29:fc:64:c3:
dc:bc:b0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:37:28 2025 by rpki-client