Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
File: f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa (raw, json)
Hash identifier: aYQSXMs9C80F7sV9WZTEXBMTeei5+6mbAMh5x0DE664=
Subject key identifier: F4:5A:6F:F8:FD:22:4A:87:45:7D:5C:AE:59:CF:20:62:DF:6E:21:8D
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 5BDA5C3FD8B6B232509BB4946FDDB4B2D51BE345
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
Signing time: Fri 29 Nov 2024 00:00:00 +0000
ROA not before: Fri 29 Nov 2024 00:00:00 +0000
ROA not after: Fri 03 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.80.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:da:5c:3f:d8:b6:b2:32:50:9b:b4:94:6f:dd:b4:b2:d5:1b:e3:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Nov 29 00:00:00 2024 GMT
Not After : Jan 3 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c8:a7:af:66:29:4a:13:0c:b5:81:56:78:25:
80:d5:13:c5:9e:62:9a:ab:d7:55:cf:ed:ae:bc:a9:
fe:4f:8d:23:27:2d:b8:ff:ca:53:7c:dc:d1:ec:da:
21:30:48:40:b3:dc:05:e8:34:d8:90:74:18:76:de:
3b:56:eb:c7:53:83:c3:80:a0:94:3e:06:c2:b0:8a:
9f:c0:2e:d9:3c:dc:63:ce:3f:bd:d5:c4:03:ce:0d:
cd:10:0a:2e:92:7e:41:0f:df:eb:7b:73:ce:b2:58:
de:ce:ce:d4:26:d0:30:27:f9:c2:d6:0c:7a:32:4e:
fc:46:4c:2b:cf:8f:07:ba:0c:15:12:25:9c:71:71:
fe:c3:2a:0c:ee:79:e1:9d:26:d9:9e:87:70:1a:2e:
12:b7:32:30:89:42:32:56:3a:c0:91:59:91:47:f9:
2b:b2:09:a2:ed:f5:a3:36:ba:85:6a:82:79:fa:10:
f5:9a:cf:c1:b4:1e:9e:87:57:0e:00:62:cc:9c:0f:
25:99:9c:bf:64:25:6f:d7:17:8b:74:2b:1a:b0:e7:
41:48:d0:59:a2:bf:c1:32:ce:01:7f:d6:da:98:55:
4c:28:4d:1a:dc:65:e7:c7:9a:9f:e7:07:8a:a4:05:
73:78:6a:8c:44:6a:9f:2d:4e:25:4c:a4:46:61:45:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5A:6F:F8:FD:22:4A:87:45:7D:5C:AE:59:CF:20:62:DF:6E:21:8D
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/f6f5353f-d8fa-4aca-b9c2-06a9b7716df8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.80.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:33:24:7d:ca:e4:47:7d:b6:b8:ab:1e:36:46:c9:89:80:23:
ca:b4:c0:13:e3:ed:24:a1:32:4e:73:36:37:d1:4e:7e:18:13:
f0:9c:7c:df:b0:29:bf:26:55:cc:ca:f2:1f:1e:ce:ec:ea:b9:
28:0b:76:4a:a9:fb:20:09:9e:d9:58:ce:a8:85:00:44:86:62:
e1:5f:0c:2f:45:d3:35:31:03:fc:c8:1b:6f:9c:f5:e1:62:86:
67:1a:6b:7b:25:43:87:b9:bf:ca:a0:f6:69:1f:af:d1:ac:ad:
29:f9:e4:f4:72:99:1c:91:9c:fb:8e:25:47:25:38:c1:e6:7c:
2f:33:11:98:eb:28:33:ee:51:f5:3c:5d:43:d7:79:eb:dd:1f:
d3:fd:1a:af:f0:52:b2:be:cf:74:79:9e:27:5c:93:16:09:41:
ff:b8:a3:bd:7c:ae:41:45:66:18:a8:c8:b6:38:6f:ae:1a:a5:
a4:46:ee:f8:0e:df:fe:d6:4f:7d:fe:13:69:20:b3:2c:33:d3:
2d:54:cf:b9:6d:2e:9b:23:de:19:e6:04:f5:e7:d3:f2:62:79:
a2:19:01:65:7d:cc:55:1a:c8:36:8c:44:39:83:f8:d2:db:81:
7e:03:cd:0e:82:50:24:7c:74:53:83:9e:48:dd:05:a2:38:9c:
f1:e2:22:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:51:13 2025 by rpki-client