Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9f138a04-74b4-40a4-b21b-04714bb0f86e.roa
File: 9f138a04-74b4-40a4-b21b-04714bb0f86e.roa (raw, json)
Hash identifier: g+axtAi/1zq4BCTj7FJdVP4J62ahjnahw1XvvxAJBlI=
Subject key identifier: DD:E6:6A:C3:42:D1:CB:E5:4A:19:8A:51:61:79:5E:A2:75:1F:95:51
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 15185F642AA7A04AC33595C4A87CE487986DD1B5
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9f138a04-74b4-40a4-b21b-04714bb0f86e.roa
Signing time: Fri 29 Nov 2024 00:00:00 +0000
ROA not before: Fri 29 Nov 2024 00:00:00 +0000
ROA not after: Fri 03 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.0.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:18:5f:64:2a:a7:a0:4a:c3:35:95:c4:a8:7c:e4:87:98:6d:d1:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Nov 29 00:00:00 2024 GMT
Not After : Jan 3 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:50:fd:9e:ae:53:75:ab:a8:90:f8:6d:54:63:
f1:64:cf:85:b3:5c:1e:68:2c:98:01:3c:34:60:f8:
ee:8e:86:46:ca:e3:ba:c8:63:ac:36:b7:37:13:b1:
ca:f4:92:de:02:97:a6:58:8b:c8:10:55:e4:3d:bb:
72:be:54:48:a7:c1:a4:4b:68:b1:d8:89:47:14:2a:
40:76:75:d0:6e:3f:a1:97:df:00:88:80:c1:6f:16:
cd:29:af:b9:64:ea:44:28:01:bc:48:f7:d3:06:b0:
0d:0f:bc:3f:6f:d4:b4:97:a0:c5:17:f1:b3:07:b7:
40:0d:27:ca:a7:87:ba:fc:3f:da:fc:e8:28:c8:5c:
ff:1c:e7:e8:84:10:21:68:6a:c0:de:3d:66:c4:56:
76:b4:04:c8:d2:b0:7e:0f:f6:f9:65:77:2f:55:98:
f5:85:69:7b:89:07:49:9d:83:18:df:ee:7f:1e:2e:
5d:cf:68:c9:59:c9:9a:aa:4c:1e:90:84:7f:48:30:
82:6e:57:4b:09:ee:1e:ec:40:0e:94:f3:ce:25:77:
7d:c3:86:ca:b7:13:da:df:d8:db:09:82:86:2b:5c:
fb:f5:f5:41:bc:fa:9d:82:50:99:9a:2c:1f:65:a3:
68:ed:7e:9b:ca:d2:06:37:40:e6:58:99:67:70:e2:
d8:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E6:6A:C3:42:D1:CB:E5:4A:19:8A:51:61:79:5E:A2:75:1F:95:51
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9f138a04-74b4-40a4-b21b-04714bb0f86e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.64.0/18
Signature Algorithm: sha256WithRSAEncryption
6c:a3:64:3f:88:c8:80:d8:ed:78:03:d6:3b:32:86:45:0c:3a:
4f:f3:d4:ff:96:7c:29:9f:a5:2a:58:f4:b5:17:c8:36:6b:17:
22:c5:d0:9f:7c:da:23:2b:a4:28:0d:69:ae:3b:71:e3:42:51:
1c:4c:0f:0a:80:37:f1:8a:04:e8:18:6f:59:67:e8:ee:be:98:
31:8d:6b:91:23:b8:f3:bc:3f:31:e9:32:17:87:cb:62:84:3a:
ff:a2:b8:1a:62:5b:85:a8:61:d1:d6:d6:66:11:bd:23:9f:9a:
9b:01:f4:c9:23:15:5d:12:c2:43:53:c2:25:84:56:90:84:42:
fb:23:b2:44:88:c6:be:53:82:27:f1:e7:11:07:0d:72:95:a8:
0b:d0:67:d7:3e:dd:54:89:1c:83:5c:ca:54:93:9b:bc:d2:29:
38:3c:9c:86:92:d0:1c:fc:be:26:4e:ef:ad:a4:84:9a:9d:f6:
92:5c:58:b3:c3:19:99:b2:11:b9:37:6d:dc:63:a5:a7:5a:c9:
1c:84:1e:92:c0:43:78:5e:23:6e:fe:b2:0f:84:71:fa:06:17:
0c:80:d4:69:b4:ab:ca:79:fe:86:12:fe:48:c9:0d:f1:f0:4f:
90:51:f5:cd:af:10:af:42:40:ee:c9:57:15:f5:06:ff:03:14:
ca:97:3b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:03:02 2025 by rpki-client