Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
File: 07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa (raw, json)
Hash identifier: bduw+DkcJmh72QFq40+NbBOo5p/tH9FN0lwnmFYa384=
Subject key identifier: 99:2D:8A:72:36:E4:5D:B4:B8:6C:38:98:46:94:14:EF:EA:AC:5A:D0
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 710111B3D4F67F4CB3C7CBE33C1B048A306CB415
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
Signing time: Tue 18 Mar 2025 17:00:13 +0000
ROA not before: Tue 18 Mar 2025 17:00:13 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.176.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:01:11:b3:d4:f6:7f:4c:b3:c7:cb:e3:3c:1b:04:8a:30:6c:b4:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 18 17:00:13 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ad:28:a9:36:c9:e5:da:56:a3:ca:7b:75:f0:
2c:be:80:9e:1f:37:af:b3:ac:1c:46:f1:f7:a2:96:
06:84:ef:ce:ce:5a:66:f3:a6:7e:74:e8:92:e0:cc:
37:c2:48:24:07:89:56:73:dc:64:fd:9c:ea:2a:0c:
1d:06:db:d8:50:85:3b:d2:7a:4c:60:f4:e7:f9:a7:
5b:9b:ee:54:92:82:72:bb:80:03:61:ff:c3:87:cc:
70:35:f0:58:dc:57:54:f5:02:cb:ad:bc:07:53:84:
8e:ec:1a:7b:75:aa:10:b2:e9:73:d5:a3:07:6f:a2:
ae:e5:77:54:f2:d2:69:fa:b0:6f:08:84:06:67:87:
bc:b1:db:c0:6b:fd:a8:b6:a9:9f:fd:fd:ff:0a:72:
2e:74:e7:aa:f9:22:5a:d1:8a:b8:80:58:a8:b6:be:
d2:72:23:d7:d6:13:92:6d:61:d5:d0:9e:3e:77:68:
45:dd:21:c4:17:2a:78:e9:11:09:fb:ad:34:dc:b8:
c6:98:ec:f5:ed:5c:c7:7d:94:4d:c2:c3:4f:57:51:
3e:f4:03:fe:05:4f:e4:83:d4:84:de:11:5d:c0:84:
11:ff:ad:1e:d9:bf:13:b6:e5:a2:1d:80:73:de:8b:
d7:87:4b:74:9b:d2:9d:73:01:11:6d:e5:6a:0a:27:
d1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2D:8A:72:36:E4:5D:B4:B8:6C:38:98:46:94:14:EF:EA:AC:5A:D0
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/07144f38-ed46-40bc-a3ed-30785c0cc3e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.176.0/20
Signature Algorithm: sha256WithRSAEncryption
12:37:30:87:1c:4d:13:45:02:52:6e:92:58:d5:f6:d1:55:b7:
58:85:2a:70:82:3a:3e:b4:eb:6b:eb:f6:dc:72:19:76:37:e9:
4a:50:65:cb:5f:33:08:9d:18:50:1f:ee:80:d7:07:56:40:56:
56:6b:3d:be:10:2e:6e:a8:d4:87:9b:d3:7b:73:39:74:3b:1f:
56:54:84:b3:45:c9:d9:40:74:b8:84:9a:73:b0:ff:52:1a:c9:
60:50:89:e9:c5:a0:7e:b8:ed:af:a4:c6:fa:a8:4d:52:5d:7e:
ef:bb:b1:91:00:47:f6:10:82:41:b5:f2:41:d0:df:70:7f:a4:
10:8f:03:2a:89:8d:b6:1e:ff:bb:d2:e4:a4:bc:a0:25:1a:ee:
3e:e4:25:74:0e:33:09:b1:29:3f:69:36:b0:4d:c4:50:d7:15:
be:19:62:d3:8e:c6:45:47:6d:34:4a:00:13:70:30:bb:c5:b6:
bf:31:bc:fa:04:3a:e1:19:4c:9c:bf:18:ef:02:f5:00:71:63:
02:bf:f4:7b:e6:91:33:4e:b3:13:f3:09:ba:36:a1:38:96:68:
35:1d:bd:d8:29:85:94:54:80:f8:1b:ea:1c:cb:00:9e:86:3a:
a2:f3:4d:ee:7d:86:77:bf:5a:77:46:e4:b8:1a:22:74:bc:e3:
9a:38:c9:dc
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUcQERs9T2f0yzx8vjPBsEijBstBUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMTgxNzAwMTNaFw0yNTA0MjIyMzU5NTlaMHoxSTBHBgNV
BAUTQDE5YzI0YmIyMDQxYjQ0YTc0MjhmMWM0YzhkMTk0ZTM5NTczZDQwYWRlYWM2
MGYxZTBjOTM0MjBjNGNkMWQxMzgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAO6tKKk2yeXaVqPKe3XwLL6Anh83r7OsHEbx96KWBoTvzs5aZvOmfnTokuDM
N8JIJAeJVnPcZP2c6ioMHQbb2FCFO9J6TGD05/mnW5vuVJKCcruAA2H/w4fMcDXw
WNxXVPUCy628B1OEjuwae3WqELLpc9WjB2+iruV3VPLSafqwbwiEBmeHvLHbwGv9
qLapn/39/wpyLnTnqvkiWtGKuIBYqLa+0nIj19YTkm1h1dCePndoRd0hxBcqeOkR
CfutNNy4xpjs9e1cx32UTcLDT1dRPvQD/gVP5IPUhN4RXcCEEf+tHtm/E7bloh2A
c96L14dLdJvSnXMBEW3lagon0b8CAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSZLYpy
NuRdtLhsOJhGlBTv6qxa0DAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MDcxNDRmMzgtZWQ0Ni00MGJjLWEzZWQtMzA3ODVjMGNjM2UyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBC6JsDAN
BgkqhkiG9w0BAQsFAAOCAQEAEjcwhxxNE0UCUm6SWNX20VW3WIUqcII6PrTra+v2
3HIZdjfpSlBly18zCJ0YUB/ugNcHVkBWVms9vhAubqjUh5vTe3M5dDsfVlSEs0XJ
2UB0uISac7D/UhrJYFCJ6cWgfrjtr6TG+qhNUl1+77uxkQBH9hCCQbXyQdDfcH+k
EI8DKomNth7/u9LkpLygJRruPuQldA4zCbEpP2k2sE3EUNcVvhli047GRUdtNEoA
E3Awu8W2vzG8+gQ64RlMnL8Y7wL1AHFjAr/0e+aRM06zE/MJujahOJZoNR292CmF
lFSA+BvqHMsAnoY6ovNN7n2Gd79ad0bkuBoidLzjmjjJ3A==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:12 2025 by rpki-client