Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
File: 513c0075-edb1-461e-a07d-4eb5874bd9ce.roa (raw, json)
Hash identifier: 6QmXyv+ORzZmQWhTs8hVSBkMHOFHV9v8WgzxPe1FXrI=
Subject key identifier: 93:2B:05:F9:A9:09:06:80:7B:55:60:4B:34:41:84:BA:01:B6:87:24
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 707A7389D691EA05E5880CAD42F643149A8D0505
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
Signing time: Fri 21 Mar 2025 15:01:20 +0000
ROA not before: Fri 21 Mar 2025 15:01:20 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:7a:73:89:d6:91:ea:05:e5:88:0c:ad:42:f6:43:14:9a:8d:05:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 21 15:01:20 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:44:c5:ee:53:ec:41:7d:06:16:21:69:7a:
72:68:cb:1d:9a:24:33:5e:16:34:35:2a:5e:da:a4:
54:62:05:8f:1d:8f:81:68:da:b2:d0:fd:22:fb:ca:
96:4e:5f:f3:cd:ce:ef:33:fa:4e:9b:dc:f4:6a:dd:
b2:89:1a:53:5d:36:43:59:f2:b0:1a:de:d7:6b:6e:
7f:57:6b:4a:01:e4:5c:64:07:49:79:86:d7:bf:6c:
cd:d4:8a:49:94:df:56:a5:50:0d:3e:9a:b1:27:27:
b9:d0:34:87:31:e4:58:85:9f:37:0b:20:e1:32:04:
8f:75:2e:fa:66:37:3f:5b:01:00:fc:69:2f:a5:e6:
af:2f:c7:e5:65:78:95:31:d9:cd:7e:19:15:c7:53:
42:6e:a7:9d:71:45:5d:7e:b3:7f:4d:1d:b0:74:86:
0e:f3:04:df:f1:64:26:09:3b:2f:71:0d:df:1b:4d:
e3:24:87:bb:9f:5e:50:0e:64:ab:9e:ac:c3:fb:7e:
9b:2c:a5:79:e5:e4:8a:2e:55:c6:38:cc:38:6b:d2:
7e:1e:50:ee:18:80:cd:e3:40:85:48:a1:85:a0:b4:
d2:09:a9:4a:12:da:80:17:4b:14:57:43:d9:fc:16:
4b:2d:f0:ca:38:f5:b1:27:a7:56:e1:bd:6d:d4:39:
26:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2B:05:F9:A9:09:06:80:7B:55:60:4B:34:41:84:BA:01:B6:87:24
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/513c0075-edb1-461e-a07d-4eb5874bd9ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.160.0/20
Signature Algorithm: sha256WithRSAEncryption
83:e6:67:d6:e8:6a:d3:30:01:a7:4e:e9:db:79:78:21:10:00:
bf:a7:10:ec:a7:01:c7:f7:a8:0d:ec:d9:2e:c2:b3:4e:53:ec:
b0:d4:15:04:1c:8b:ea:f5:c1:10:08:62:b7:89:f5:8c:c1:23:
a5:1d:08:cc:ec:70:56:8d:39:27:c0:71:96:ce:ac:e6:6c:71:
e8:a3:6d:a0:46:09:e5:dd:8b:95:98:a9:87:b6:bc:aa:ab:21:
9e:bf:10:f3:a2:5a:d6:89:67:95:95:77:a7:1e:20:f7:04:8c:
83:9c:ac:be:cf:7d:e9:42:d7:f4:4a:d3:73:0b:ed:3b:aa:7e:
33:e4:45:0b:8e:21:cc:15:13:c6:ed:ee:20:3f:93:6e:18:87:
18:f9:15:16:2b:14:ff:05:14:4f:3d:73:9b:08:aa:8e:fb:27:
b6:27:8a:a2:f8:24:fb:1d:9c:07:93:87:f8:fa:8b:2b:8d:f9:
91:f9:6f:48:aa:68:9a:dc:52:1e:e2:3b:7d:81:d1:e6:dd:bf:
8f:e5:c7:30:2a:28:53:38:f0:95:b6:01:42:2e:39:e3:89:43:
2c:7b:35:6d:eb:83:e5:eb:7c:fd:fe:45:e5:81:e0:61:53:cc:
a9:f4:09:32:df:1a:49:00:29:fd:07:1e:b0:f8:74:0a:99:df:
5d:e0:5e:88
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUcHpzidaR6gXliAytQvZDFJqNBQUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMjExNTAxMjBaFw0yNTA0MjUyMzU5NTlaMHoxSTBHBgNV
BAUTQGE2YzI3ZjE4Yjk3MmNjY2RkMmU1YmQyM2MwZjkxM2NjN2QzMGI3ZDY4M2E4
ZWVkYmI4NDM1MWI3Y2E5NmNlNGMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALzhRMXuU+xBfQYWIWl6cmjLHZokM14WNDUqXtqkVGIFjx2PgWjastD9IvvK
lk5f883O7zP6Tpvc9GrdsokaU102Q1nysBre12tuf1drSgHkXGQHSXmG179szdSK
SZTfVqVQDT6asScnudA0hzHkWIWfNwsg4TIEj3Uu+mY3P1sBAPxpL6Xmry/H5WV4
lTHZzX4ZFcdTQm6nnXFFXX6zf00dsHSGDvME3/FkJgk7L3EN3xtN4ySHu59eUA5k
q56sw/t+myyleeXkii5VxjjMOGvSfh5Q7hiAzeNAhUihhaC00gmpShLagBdLFFdD
2fwWSy3wyjj1sSenVuG9bdQ5JvUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBSTKwX5
qQkGgHtVYEs0QYS6AbaHJDAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NTEzYzAwNzUtZWRiMS00NjFlLWEwN2QtNGViNTg3NGJkOWNlLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLAioDAN
BgkqhkiG9w0BAQsFAAOCAQEAg+Zn1uhq0zABp07p23l4IRAAv6cQ7KcBx/eoDezZ
LsKzTlPssNQVBByL6vXBEAhit4n1jMEjpR0IzOxwVo05J8Bxls6s5mxx6KNtoEYJ
5d2LlZiph7a8qqshnr8Q86Ja1olnlZV3px4g9wSMg5ysvs996ULX9ErTcwvtO6p+
M+RFC44hzBUTxu3uID+TbhiHGPkVFisU/wUUTz1zmwiqjvsntieKovgk+x2cB5OH
+PqLK435kflvSKpomtxSHuI7fYHR5t2/j+XHMCooUzjwlbYBQi4544lDLHs1beuD
5et8/f5F5YHgYVPMqfQJMt8aSQAp/QcesPh0CpnfXeBeiA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:40 2025 by rpki-client