Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa
File: e6379fd6-eaa8-4348-8280-afb9b8552668.roa (raw, json)
Hash identifier: sKLcSwU52LNTtvFwy8Nhr1uwxJRvjTZfUWiYFZdcP+c=
Subject key identifier: AD:17:CD:3B:59:62:98:A3:9A:E2:99:D9:D2:02:E1:AE:5E:62:22:19
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 36BA56AD88ECD9E849D871430DCBC84A6F4EF77D
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa
Signing time: Fri 07 Mar 2025 15:10:07 +0000
ROA not before: Fri 07 Mar 2025 15:10:07 +0000
ROA not after: Fri 11 Apr 2025 23:59:59 +0000
asID: 7224
IP address blocks: 83.118.228.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:ba:56:ad:88:ec:d9:e8:49:d8:71:43:0d:cb:c8:4a:6f:4e:f7:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 7 15:10:07 2025 GMT
Not After : Apr 11 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:97:cc:16:a5:5b:45:0a:08:5b:23:aa:a5:aa:
40:b0:57:d3:14:c5:ab:34:dd:38:20:d4:e0:8e:4d:
6e:c1:c2:06:19:f9:4c:a7:4e:21:b0:46:f4:3e:09:
59:e1:c6:ad:ab:ae:57:53:f1:1c:2e:ad:81:e8:78:
45:24:00:0e:a7:96:1e:3f:f1:68:9b:6e:4c:33:3b:
b1:93:86:48:d3:5b:60:71:c6:50:a3:f3:ec:5f:c9:
9e:7d:8e:99:c9:45:9f:88:74:78:40:39:6c:f0:48:
1a:c4:fe:48:1b:31:40:1a:83:23:0e:6a:db:e3:0e:
fa:4a:0a:fe:90:c4:9f:ad:57:38:82:75:53:b1:fc:
17:03:f6:9d:b0:40:bf:75:aa:8a:a8:c3:2c:71:c6:
1b:b9:ef:8f:74:ee:8f:63:db:99:2b:58:12:4a:20:
cf:d7:b9:f5:2c:40:81:ad:bf:a1:fb:44:6e:a6:c0:
35:ac:bd:6d:3e:4e:e5:3f:18:99:4f:df:9d:05:b8:
7e:d9:07:69:95:cb:f1:f5:a3:73:ce:f4:34:40:3f:
64:d7:3d:f7:ff:c7:b6:5b:19:27:c5:ba:dc:ad:1a:
bb:60:40:d8:6c:fe:ce:b0:74:74:61:13:7e:85:12:
97:88:36:d6:83:cb:a8:9c:b4:d6:0f:1b:6e:38:e6:
d0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:17:CD:3B:59:62:98:A3:9A:E2:99:D9:D2:02:E1:AE:5E:62:22:19
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e6379fd6-eaa8-4348-8280-afb9b8552668.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.228.0/22
Signature Algorithm: sha256WithRSAEncryption
d8:28:2c:0b:fe:0e:88:2c:ad:cb:4b:b1:4e:42:f7:10:a4:96:
f6:02:67:86:50:20:08:81:d9:2f:aa:61:12:98:3d:4b:d3:5c:
11:11:41:1e:ef:a4:86:96:2f:15:f8:68:ab:1c:72:d9:10:9b:
b8:25:98:e3:c8:c4:8b:70:20:b7:4a:58:9d:a9:30:a6:55:a8:
8f:6e:86:4e:ce:d8:04:d3:86:3c:2c:5a:65:d3:14:e0:7e:b9:
ab:70:b6:9f:20:5f:db:b7:05:fd:57:8c:1b:b4:bf:55:f6:92:
d5:80:71:6c:30:2c:77:81:2f:b7:7d:68:99:32:f3:d2:28:56:
3c:de:4d:16:2d:89:eb:e7:42:80:20:cd:a5:f5:e6:3d:9e:19:
b4:e1:41:07:94:5c:0c:4a:53:3b:54:ed:e5:94:57:71:37:57:
8f:10:51:64:62:fe:90:8c:c1:2b:3b:cb:58:c2:00:26:5d:13:
b6:e1:e6:08:5e:f4:b5:ab:74:0e:ec:05:06:4e:a3:dc:0f:17:
d9:86:18:a9:c7:ae:18:8d:32:4c:87:00:f1:3a:2e:fd:21:17:
8b:e3:a7:d9:a8:c1:71:5a:48:e4:88:08:66:de:2c:79:ab:da:
bb:76:9f:7a:e4:e2:14:36:63:47:a2:f3:c3:f6:e3:bc:2f:df:
0a:a6:e5:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:00:46 2025 by rpki-client