Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bb73d62f-513c-4673-8547-902e7fa2148b.roa
File: bb73d62f-513c-4673-8547-902e7fa2148b.roa (raw, json)
Hash identifier: SFvMETTzA1MiSfcmB99bXPEk4KU6OxwQpdiAXHBR2OM=
Subject key identifier: B7:1F:B8:6D:DC:79:8B:4C:19:9C:8B:A9:98:8A:07:77:90:21:62:A6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: B247850B10D79FEF5CD134CD709B3E1EB188EC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bb73d62f-513c-4673-8547-902e7fa2148b.roa
Signing time: Tue 18 Mar 2025 17:01:14 +0000
ROA not before: Tue 18 Mar 2025 17:01:14 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
b2:47:85:0b:10:d7:9f:ef:5c:d1:34:cd:70:9b:3e:1e:b1:88:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 18 17:01:14 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:ad:1d:0b:32:db:54:20:0a:f6:26:5c:56:
9f:2c:05:ed:21:79:c1:c0:d8:92:e5:75:de:7e:41:
d3:ed:f6:54:37:88:18:77:94:2b:4e:58:08:ae:81:
b8:67:41:4a:6e:0c:65:6d:61:ee:61:52:44:82:e7:
13:76:49:4d:1d:c7:d5:c5:8f:37:63:40:06:8e:3d:
cb:bc:64:6d:8c:bc:60:b8:c9:95:52:41:56:2a:02:
97:3e:00:36:26:4b:80:d2:e6:ef:b2:ce:ac:f1:70:
57:fa:d9:d4:4b:8c:b8:df:8c:cf:ee:81:a5:b4:97:
91:a6:02:b7:4c:59:63:95:d8:d0:d4:67:df:2d:7c:
c0:a4:e8:15:5d:53:93:74:d1:9c:ff:b0:5d:e2:9d:
2c:46:d9:1a:ee:eb:94:c8:86:7a:66:c9:73:dd:c4:
c2:84:4e:91:9f:20:3f:60:16:0d:83:1c:54:a8:5a:
53:91:b0:98:5e:64:5f:d9:00:5c:e1:dd:0d:0b:94:
46:4b:48:38:28:5e:25:43:f5:3b:18:2b:33:f9:b9:
38:7f:d5:d2:96:1b:2f:e7:4e:c5:42:4b:b7:e0:eb:
98:a4:d3:50:78:04:1d:41:b5:e2:18:9e:4d:8e:bd:
24:fa:d6:23:ac:f2:fa:a1:81:6a:1f:7e:cc:9b:a9:
ab:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1F:B8:6D:DC:79:8B:4C:19:9C:8B:A9:98:8A:07:77:90:21:62:A6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bb73d62f-513c-4673-8547-902e7fa2148b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.0.0/17
Signature Algorithm: sha256WithRSAEncryption
90:c9:65:55:33:fc:bc:e9:c8:5e:4b:a0:ad:9d:a0:2f:96:a9:
4c:3a:84:36:24:f1:08:66:59:14:ca:eb:e9:9e:61:63:53:09:
c3:78:70:49:82:19:1d:23:6b:a1:b4:a6:e4:a2:ab:79:d1:4c:
08:e2:b4:47:a6:94:33:26:1a:98:6f:cd:7e:5c:b6:2a:24:5f:
df:a7:f6:40:c2:33:12:a5:17:61:d4:09:35:33:31:8d:7e:b2:
c6:17:84:25:77:2f:8d:13:d7:b0:81:b9:bd:a8:62:e0:65:d4:
b4:be:f8:64:a6:bc:21:47:f4:62:7b:01:23:ce:54:33:c5:59:
f0:fc:cf:96:78:f9:fb:72:28:57:85:3a:b8:00:c6:86:d6:db:
7d:5a:f4:29:d2:66:c6:f0:3c:cd:66:61:dd:02:1c:33:a5:75:
cd:93:e2:54:92:7b:02:30:1e:f3:4f:91:33:85:37:aa:6e:04:
e4:87:05:cf:8b:ad:cd:79:83:18:88:0f:31:d7:e8:0d:29:21:
60:72:13:f5:ee:9b:fd:25:3d:bc:c4:de:34:18:11:42:d5:85:
18:4f:7b:13:14:10:2e:98:b0:1e:9a:51:9c:3e:32:f7:c2:a0:
66:e2:13:fd:ec:f6:52:97:79:c3:0e:1d:50:f5:65:43:49:87:
35:33:ce:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:19 2025 by rpki-client