Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46a21ff8-4dea-4da4-a276-6b424d4e3bed.roa
File: 46a21ff8-4dea-4da4-a276-6b424d4e3bed.roa (raw, json)
Hash identifier: 0JwXaeSCtiUnYgfVuuPntmwCjDxfiatnQCMVNCaqEsQ=
Subject key identifier: B9:59:E0:77:D7:6C:59:FC:BB:ED:24:0E:20:7F:BB:11:B2:A2:A4:9E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0250AB599B2466EF7C40C81F1E4EE7A74A22AE9B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46a21ff8-4dea-4da4-a276-6b424d4e3bed.roa
Signing time: Tue 18 Mar 2025 17:00:13 +0000
ROA not before: Tue 18 Mar 2025 17:00:13 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:50:ab:59:9b:24:66:ef:7c:40:c8:1f:1e:4e:e7:a7:4a:22:ae:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 18 17:00:13 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ad:10:0d:97:ce:b8:27:09:45:ef:39:e5:c0:
dd:0d:e4:3d:f2:54:2c:87:6c:da:6c:4a:3b:ee:0b:
3b:57:6f:e9:fa:1d:70:9e:74:fc:38:0b:34:4e:4e:
d5:b6:5d:e0:fb:52:04:49:11:5e:86:67:05:8a:d4:
51:72:38:d6:1e:a6:d3:81:d6:19:60:e3:97:dc:ec:
4d:60:6e:25:68:9e:49:e4:ae:31:b2:d3:a5:84:1a:
00:80:fa:e9:cd:5b:c3:56:2b:02:fd:da:8b:db:f9:
27:91:55:9c:c7:d2:9a:9e:ce:58:da:92:a9:14:66:
29:15:ba:76:53:bb:fc:46:6a:c6:13:f9:d9:a7:cb:
cc:2d:d4:de:c4:67:eb:26:cc:51:40:4e:c2:64:a1:
85:d6:a2:39:2d:2d:69:9d:18:9e:cc:18:e1:e9:ba:
8e:07:8c:47:4d:bc:cd:2a:fa:91:e4:68:f2:a2:5d:
4e:1c:5c:3a:e2:ec:64:8f:ac:83:74:ef:ff:66:51:
62:cb:5a:d9:28:ec:9e:59:8e:6b:22:98:1d:6d:3f:
4d:85:cf:9f:c3:ad:1d:13:75:44:0e:cb:ba:8a:90:
9a:f8:2d:9a:a0:d8:3a:24:19:ba:d9:b4:74:c5:1a:
1a:e1:9e:d5:f4:50:ad:be:ce:23:48:9b:58:ad:7b:
81:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:59:E0:77:D7:6C:59:FC:BB:ED:24:0E:20:7F:BB:11:B2:A2:A4:9E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/46a21ff8-4dea-4da4-a276-6b424d4e3bed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.224.0/19
Signature Algorithm: sha256WithRSAEncryption
72:95:ec:39:d8:d1:c8:f3:80:28:82:f2:ed:04:4a:88:f6:ff:
e8:19:fb:73:38:1d:61:59:bb:8b:35:44:23:4f:1c:5f:de:a1:
3d:a7:89:ee:da:cb:7b:81:4c:ab:b2:85:bd:2a:bf:c1:2c:3c:
47:06:45:fe:1b:09:d9:11:76:27:1e:f4:13:ba:16:9e:95:39:
18:eb:d3:88:81:71:49:cc:93:26:27:32:26:90:c9:29:10:ec:
b7:97:c9:df:93:b5:5f:0a:2a:e6:73:f0:13:a8:76:1d:f4:6d:
f7:9d:05:7e:22:35:6a:dc:7e:c9:00:fb:3a:fd:c2:9a:f9:94:
fb:58:f3:d9:61:6d:af:88:88:e2:e2:20:fd:97:72:47:24:75:
40:39:bf:37:57:95:62:c6:9c:eb:7c:7b:e4:8b:49:e2:a6:2d:
9d:50:3f:04:1e:a2:c7:8f:cd:89:e8:e6:74:8e:9f:bf:33:2a:
8a:40:01:0d:fd:60:b1:1b:44:59:c3:cd:6d:2f:e9:ae:e0:f2:
f5:71:ae:00:7a:98:08:cc:f7:f2:68:90:45:fd:67:22:50:09:
48:83:42:eb:28:80:9b:fb:32:58:3e:b6:61:cb:44:40:fc:f4:
54:d1:91:3f:4d:48:4d:61:48:c9:81:82:ef:d4:d9:f9:d4:77:
cf:c5:4c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:25:04 2025 by rpki-client