Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d39ed330-73e8-4df6-a6f4-8766e2e6190e.roa
File: d39ed330-73e8-4df6-a6f4-8766e2e6190e.roa (raw, json)
Hash identifier: TTi8FSZw+HJhOQah8oc9MXF3BNFTg0OPgzVMzuGFN8c=
Subject key identifier: 5F:EB:1B:1D:90:B1:16:65:AF:E2:6A:C2:35:9F:5B:77:C3:0A:5C:76
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 1C96ABE79780CE2D0E035123D2FE639E0F02084C
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d39ed330-73e8-4df6-a6f4-8766e2e6190e.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.0.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:96:ab:e7:97:80:ce:2d:0e:03:51:23:d2:fe:63:9e:0f:02:08:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:50:a6:f2:98:d0:17:f1:cf:b7:ca:e7:4a:
f4:93:1e:54:f7:3c:95:a7:4a:bd:60:5d:d6:5e:5a:
be:e3:2a:f9:53:a5:b6:34:b8:c9:de:5d:83:e0:64:
22:88:a2:5b:44:00:77:29:21:d5:33:69:17:89:ed:
e2:56:93:0b:c1:27:33:d8:b5:b0:14:33:e7:63:88:
13:8c:bc:e4:4f:6b:1f:28:03:32:05:61:a6:57:1d:
74:f1:d4:75:dd:94:3a:f4:7e:d6:2f:f2:d3:1a:62:
35:21:d5:48:1e:63:05:a9:48:35:d9:57:85:f9:e2:
00:90:1a:34:23:53:19:35:62:3f:bb:29:df:c7:57:
ed:92:4d:b2:60:15:77:70:9e:b8:64:66:31:34:5d:
78:5f:78:b6:a6:f8:2a:55:ac:a1:6b:1b:8b:df:aa:
74:dd:64:a8:3d:8a:9d:fc:27:7d:4d:a7:da:2d:a9:
e1:77:7b:a3:2b:fc:88:d2:84:a6:de:3f:bb:f1:e9:
1d:a0:ce:e6:a3:00:fc:60:a9:c2:74:da:ab:7d:9c:
dd:8c:7a:dc:72:c8:42:2a:4e:4c:31:27:f1:d6:4a:
ec:46:3e:8e:ba:a2:35:07:92:d8:db:ee:04:7f:e6:
21:be:12:92:75:8d:c3:25:eb:0b:ed:89:5a:c8:b5:
8a:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:EB:1B:1D:90:B1:16:65:AF:E2:6A:C2:35:9F:5B:77:C3:0A:5C:76
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/d39ed330-73e8-4df6-a6f4-8766e2e6190e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.32.0/19
Signature Algorithm: sha256WithRSAEncryption
28:41:29:cd:1f:d0:4f:09:5c:ab:76:50:a4:ca:96:94:92:7e:
9b:51:1c:ed:c5:60:0f:3d:de:a6:d1:51:b8:07:c0:08:1b:a7:
3e:8f:88:3f:eb:b6:a9:36:77:f0:e5:f2:5a:4d:14:bb:10:61:
d4:c0:23:0b:b7:01:8d:78:13:3f:c1:64:36:98:e8:c4:b6:f4:
35:cb:42:e2:55:dc:3d:e5:d0:ae:9a:8f:17:86:e5:a4:ed:4b:
04:f3:7c:7a:cf:d9:a2:1a:cd:55:61:ac:b0:6b:2d:dd:c8:d5:
75:42:03:92:1e:5d:b0:a9:f6:7d:2d:af:69:41:45:6a:80:55:
61:a2:ad:d0:89:c2:cc:68:e0:c8:30:26:9e:2a:29:01:62:16:
94:66:38:26:29:13:84:9d:3b:f3:86:c5:79:c7:e7:6e:31:51:
d3:f3:e5:f4:a6:fb:bc:e7:47:7a:4f:2c:5b:69:86:93:9b:00:
66:bb:ab:1c:bf:de:b5:a0:88:e5:95:e2:8c:51:8d:8b:3c:b2:
05:b8:1f:60:ea:76:35:f7:ff:e7:b6:9f:6c:99:b6:8f:e2:c5:
d5:12:97:4c:be:b2:49:ca:e5:66:ad:ae:bf:29:43:56:ab:84:
68:39:0f:56:c6:d5:02:f8:de:2c:7f:e5:4e:44:19:9c:de:2c:
d8:68:fc:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 15:31:39 2025 by rpki-client