Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b1697edb-eb6c-486d-a5cc-c22724b14f96.roa
File: b1697edb-eb6c-486d-a5cc-c22724b14f96.roa (raw, json)
Hash identifier: EqmzHKy0WgFBsR/3963vFVh9QINLDu/LCdrbSyb9uD8=
Subject key identifier: 85:18:0E:4F:0B:CD:32:E7:68:2B:F7:ED:D8:CA:BA:A0:2E:DF:18:D3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1EC0C2E338A31227A6CCD7FC5135D71944FC5981
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b1697edb-eb6c-486d-a5cc-c22724b14f96.roa
Signing time: Tue 18 Mar 2025 17:00:58 +0000
ROA not before: Tue 18 Mar 2025 17:00:58 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:c0:c2:e3:38:a3:12:27:a6:cc:d7:fc:51:35:d7:19:44:fc:59:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 18 17:00:58 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1c:b8:e1:43:69:1a:ce:b5:39:70:9c:14:4d:
c3:ee:4d:b0:de:64:c3:c2:bf:53:0d:8c:c0:93:e5:
16:7c:1e:2e:6e:a5:06:16:9a:85:f8:57:ba:a8:82:
e3:d4:cb:d1:34:e0:33:d1:bc:2f:26:57:61:d8:83:
9a:ac:bc:a4:16:51:83:be:88:ec:89:09:70:d5:1a:
09:f7:8a:06:4d:9a:45:33:b5:35:ab:93:aa:c9:2b:
6f:b8:3d:07:d3:e0:78:0d:1a:3e:7c:0f:cd:bd:c2:
35:79:66:0b:76:56:2e:37:8f:6f:b4:3a:07:c9:01:
9d:54:14:dd:17:c1:d1:81:da:17:e3:22:8c:9a:76:
ad:ed:34:d5:8a:96:5f:0f:97:a4:5a:7a:9b:53:e9:
be:32:16:8f:ca:38:ec:88:5e:ea:1f:9f:44:58:9f:
b4:c0:9e:a4:b5:16:06:fb:6e:e9:c7:75:bf:1e:a4:
56:70:05:af:06:a9:ed:15:dd:43:2e:97:9b:ce:b1:
c8:3a:97:bc:8f:2f:d6:94:dd:c5:c2:bd:25:49:08:
12:ec:2d:94:f0:35:8e:b2:d9:90:9b:1f:a8:5d:d9:
99:bd:b6:e8:0e:98:76:d4:2f:f9:e7:54:14:af:85:
84:07:6c:d4:bf:5b:23:75:d9:d0:7b:e9:b7:f4:c9:
c8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:18:0E:4F:0B:CD:32:E7:68:2B:F7:ED:D8:CA:BA:A0:2E:DF:18:D3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b1697edb-eb6c-486d-a5cc-c22724b14f96.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.170.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:12:53:89:6b:9b:24:d2:4d:89:19:bd:da:32:c9:8d:2c:01:
c2:df:19:79:1e:46:11:ed:c9:7f:3d:8e:8d:6e:3d:bf:06:36:
3a:a2:46:8f:f5:36:90:44:18:4d:fd:79:7a:b8:63:93:99:9a:
03:90:90:31:21:1a:d3:68:7d:2c:8b:9a:ad:c7:2c:bf:27:68:
93:b1:6d:0f:13:b6:6c:39:bc:ad:4c:b6:bb:95:e3:b1:1a:e0:
80:87:3c:57:e1:25:9b:b8:ef:1e:fd:cb:ad:43:2f:cf:bc:49:
ae:fb:cf:85:cb:de:c6:6b:a2:e1:05:a8:d0:25:78:44:ca:32:
77:0a:a5:0a:95:52:08:c9:28:a3:7b:5d:03:f3:10:1e:8c:05:
a8:5f:3c:76:d7:f1:fa:48:65:80:c6:0b:3d:ae:e8:d1:5b:11:
7b:db:46:b2:aa:f0:6b:05:21:f9:b2:31:bd:fa:4f:ea:ca:4a:
b8:4f:ab:73:59:55:d6:42:b2:72:a8:91:d8:34:35:2c:83:b9:
ed:05:58:67:e1:96:0f:f5:15:e3:e1:12:ee:a1:36:bf:94:d9:
a6:f9:ca:99:cc:c7:45:ea:17:2c:36:87:90:7a:59:ff:86:b9:
25:8a:a5:eb:f9:e6:19:28:8a:26:38:ea:90:23:65:d0:90:d9:
8b:b1:ba:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:54 2025 by rpki-client