Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa
File: 062e9317-b5ab-4d01-a462-4dc8d164e17c.roa (raw, json)
Hash identifier: uHUO8M9YN7n1hOprcl79SqqEWAhmtPoh1y4UkVPeVAE=
Subject key identifier: 3E:E9:C5:06:75:68:20:E9:19:39:E1:87:34:D5:56:B6:FA:BD:CF:94
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 53BE0F752B7EFD0836CF4D36F336D37B9848E1EF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa
Signing time: Tue 18 Mar 2025 17:01:10 +0000
ROA not before: Tue 18 Mar 2025 17:01:10 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:be:0f:75:2b:7e:fd:08:36:cf:4d:36:f3:36:d3:7b:98:48:e1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 18 17:01:10 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c2:a2:52:93:98:22:3b:87:30:4c:71:0f:d5:
a1:ec:67:7e:a1:67:1b:70:05:75:16:93:95:92:21:
9f:07:61:73:d7:6d:6b:7f:69:3f:b5:dc:07:29:9e:
28:09:a8:b9:35:7b:4b:e2:c7:db:2c:18:e4:93:53:
60:d1:6c:7a:fb:36:f7:dd:03:28:4c:38:01:02:eb:
34:e4:b6:b1:9e:05:d7:af:31:cd:63:28:1c:da:ab:
7f:62:c4:6e:73:2a:bd:75:30:e1:5b:ea:40:38:e2:
2e:18:1b:2b:f6:cc:91:2a:b8:75:c7:99:50:c5:e6:
f0:91:55:80:c7:3c:85:f8:6a:da:3a:93:04:db:ac:
f9:c9:69:8e:39:54:cb:12:6d:26:e2:22:f0:d3:0f:
d2:1e:e8:34:8d:b4:b7:d1:fe:75:ac:52:9b:8e:ff:
38:ef:68:c0:dc:8e:78:70:39:a6:2a:f0:ed:f3:f7:
aa:13:18:bd:57:96:54:f1:c1:92:6c:ef:1d:7a:c7:
72:9a:93:70:ec:bd:45:b1:bb:85:40:9e:ab:4b:19:
08:7e:81:ef:88:8c:69:cb:ae:f1:f5:cb:0d:5b:f3:
b8:e1:9d:f9:8a:f2:5c:5f:88:f6:2a:b6:06:0e:68:
a2:37:f2:17:32:58:f9:3e:1a:a0:3e:9b:a8:69:c3:
90:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E9:C5:06:75:68:20:E9:19:39:E1:87:34:D5:56:B6:FA:BD:CF:94
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/062e9317-b5ab-4d01-a462-4dc8d164e17c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.172.0/22
Signature Algorithm: sha256WithRSAEncryption
86:98:d4:16:5c:7e:e0:20:f7:a2:c1:0b:af:d2:53:44:d1:31:
db:07:d4:a7:9f:9c:3f:12:35:7a:39:b5:2d:78:41:a5:d7:a1:
ab:80:c3:0e:7d:74:14:d6:66:c9:ac:83:7b:bc:6c:e2:af:15:
52:35:0f:f4:22:b7:b9:6b:f1:7f:57:23:3c:35:d7:3e:52:bf:
9f:69:23:20:25:92:f6:90:39:47:a6:08:b6:59:9d:c9:04:56:
4c:0e:aa:e5:89:29:49:fa:16:4d:9a:fe:91:56:dc:93:d0:34:
f0:eb:5b:1a:24:51:bc:cd:0e:4a:18:46:96:8d:2c:81:96:ee:
57:10:6e:a4:02:0d:0b:fa:29:e8:bc:a8:93:1d:93:16:d0:f2:
9d:46:10:7b:76:39:39:ac:5a:28:58:1e:e2:21:62:74:5e:a4:
f1:a4:00:6a:99:df:f5:97:95:b9:fe:28:9f:a5:5d:fe:72:4f:
6d:3e:e7:75:00:85:eb:c0:a0:e6:45:ee:17:7a:8c:66:0e:3d:
b5:85:a8:55:40:aa:4b:26:b0:99:5d:26:e0:8b:68:dc:23:44:
42:06:70:db:48:b7:93:1a:0f:ec:4e:dd:83:4b:2f:53:b6:eb:
31:8f:9a:2b:89:8c:5e:73:f1:d1:0e:e7:59:22:62:3b:15:4e:
9b:34:57:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:45 2025 by rpki-client