Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e604171a-9903-4e3b-a4cb-a0ae0a21f49a.roa
File: e604171a-9903-4e3b-a4cb-a0ae0a21f49a.roa (raw, json)
Hash identifier: Xhbvcgjq2JbVBFvNjOHDjK1Z9gT3se7asKZmMZTPUPU=
Subject key identifier: A2:AF:54:8F:D7:51:45:64:03:29:0F:BF:3A:22:7B:FB:D5:7E:BE:98
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 17A4D4755ED100F4BE1B58CDDA127DADEE63223D
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e604171a-9903-4e3b-a4cb-a0ae0a21f49a.roa
Signing time: Tue 31 Dec 2024 00:00:00 +0000
ROA not before: Tue 31 Dec 2024 00:00:00 +0000
ROA not after: Tue 04 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.102.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:a4:d4:75:5e:d1:00:f4:be:1b:58:cd:da:12:7d:ad:ee:63:22:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 31 00:00:00 2024 GMT
Not After : Feb 4 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:37:e9:ad:94:65:74:a2:6d:82:63:79:8f:59:
9e:28:b0:3b:3f:e5:85:df:d7:51:28:0f:f7:8f:c3:
6f:b4:c6:71:5d:b9:89:fe:bb:57:f9:d5:7e:1e:7b:
2e:93:ec:88:14:74:3e:5e:c0:65:cc:ab:a2:7c:b3:
17:80:71:72:c9:e7:b0:8a:e4:d3:7a:8f:b5:7f:62:
7c:92:c4:46:9b:d4:4c:d1:76:c1:30:75:d1:cb:de:
d5:e1:ee:4c:36:1e:c4:92:d7:25:8f:a6:4d:34:a9:
5d:54:fb:05:08:90:a7:5c:1b:5f:37:24:36:0e:b4:
1b:5e:d0:3c:8f:50:f7:0b:51:7a:4e:f5:7c:21:38:
05:fd:a1:d2:61:92:a7:24:a7:a1:a4:ad:59:83:22:
fe:e1:08:e0:0a:10:dc:43:1a:a9:df:c7:aa:ce:ca:
38:6f:c8:94:7c:55:b5:be:c7:a0:9e:97:fc:99:16:
16:aa:c9:d6:6b:36:71:ea:08:cc:6a:04:d5:96:c7:
65:b7:44:b0:7f:ee:ba:95:60:33:56:55:a2:62:d8:
5c:3d:d4:86:3d:53:7e:11:8f:8b:d0:59:30:38:33:
0d:d9:7f:05:d9:82:0b:f3:d0:ad:e6:46:d3:19:a9:
de:c3:ee:47:f4:79:6a:eb:60:91:9e:67:28:01:3b:
6e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AF:54:8F:D7:51:45:64:03:29:0F:BF:3A:22:7B:FB:D5:7E:BE:98
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e604171a-9903-4e3b-a4cb-a0ae0a21f49a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.102.0.0/16
Signature Algorithm: sha256WithRSAEncryption
97:2f:9e:3e:ec:70:cf:7a:11:2f:dd:26:f8:6f:31:86:97:86:
e4:ac:3a:ca:45:6a:35:94:33:86:3a:f6:40:ab:44:98:df:9c:
bb:99:72:54:2b:99:47:0d:50:a0:0b:2d:83:92:7b:ff:8e:ac:
f6:ee:04:35:0f:88:68:0d:91:47:a6:92:fc:b9:fc:86:87:05:
f9:b6:14:67:c5:08:67:e5:2c:f2:22:99:71:d4:cb:d0:7d:5e:
af:17:3d:86:bb:d1:b7:7a:97:49:42:d0:d6:f0:5f:e0:13:9c:
20:1a:92:6a:ed:b8:fb:71:9a:73:fa:bd:6c:6a:bf:82:8a:ff:
5a:14:70:28:d6:da:21:fe:7a:6b:bd:f1:5b:35:b9:d8:eb:2b:
a5:0d:6e:51:2f:88:ed:84:c0:da:a8:af:aa:2f:c6:97:83:52:
55:47:06:98:7f:d1:b7:f9:6a:75:a5:59:fd:65:59:c7:60:a5:
4c:e0:87:47:b3:2c:85:3c:65:26:3d:74:86:af:d7:50:f3:7f:
50:76:b7:88:37:a9:0a:41:05:fd:9d:8e:2e:23:fd:ff:39:06:
c0:48:84:99:0b:3d:3a:0b:2e:cc:40:ad:69:ed:9c:18:fa:cc:
7a:1a:b2:37:4b:6a:cd:42:57:14:44:6c:c3:fa:ec:f1:5c:76:
0d:35:80:53
-----BEGIN CERTIFICATE-----
MIIFXTCCBEWgAwIBAgIUF6TUdV7RAPS+G1jN2hJ9re5jIj0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDEyMzEwMDAwMDBaFw0yNTAyMDQyMzU5NTlaMHoxSTBHBgNV
BAUTQDVjYzgyODg3YTViYzQzMjkwMWU1Zjk1MzhhZTlkYzViY2YxZmVjOGY2ZTMz
ODFkMDVmYTQxN2FiNGViMjVlZDAxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAM436a2UZXSibYJjeY9ZniiwOz/lhd/XUSgP94/Db7TGcV25if67V/nVfh57
LpPsiBR0Pl7AZcyronyzF4BxcsnnsIrk03qPtX9ifJLERpvUTNF2wTB10cve1eHu
TDYexJLXJY+mTTSpXVT7BQiQp1wbXzckNg60G17QPI9Q9wtRek71fCE4Bf2h0mGS
pySnoaStWYMi/uEI4AoQ3EMaqd/Hqs7KOG/IlHxVtb7HoJ6X/JkWFqrJ1ms2ceoI
zGoE1ZbHZbdEsH/uupVgM1ZVomLYXD3Uhj1TfhGPi9BZMDgzDdl/BdmCC/PQreZG
0xmp3sPuR/R5autgkZ5nKAE7bnkCAwEAAaOCAiAwggIcMB0GA1UdDgQWBBSir1SP
11FFZAMpD786Inv71X6+mDAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
ZTYwNDE3MWEtOTkwMy00ZTNiLWE0Y2ItYTBhZTBhMjFmNDlhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDADNmMA0G
CSqGSIb3DQEBCwUAA4IBAQCXL54+7HDPehEv3Sb4bzGGl4bkrDrKRWo1lDOGOvZA
q0SY35y7mXJUK5lHDVCgCy2Dknv/jqz27gQ1D4hoDZFHppL8ufyGhwX5thRnxQhn
5SzyIplx1MvQfV6vFz2Gu9G3epdJQtDW8F/gE5wgGpJq7bj7cZpz+r1sar+Civ9a
FHAo1toh/nprvfFbNbnY6yulDW5RL4jthMDaqK+qL8aXg1JVRwaYf9G3+Wp1pVn9
ZVnHYKVM4IdHsyyFPGUmPXSGr9dQ839QdreIN6kKQQX9nY4uI/3/OQbASISZCz06
Cy7MQK1p7ZwY+sx6GrI3S2rNQlcURGzD+uzxXHYNNYBT
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:13:00 2025 by rpki-client