Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/bf3c19cc-7e74-4d47-9e2d-5bcee63041aa.roa
File: bf3c19cc-7e74-4d47-9e2d-5bcee63041aa.roa (raw, json)
Hash identifier: RApbzJkQOJEAc+35ClHU10hXRjpbCp8Y/UyqIAUtWAY=
Subject key identifier: 1F:1E:1E:65:33:CC:5A:F7:19:63:8A:7E:4A:FF:CB:EB:CC:91:F6:C6
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: E5D28D5CFE7BE82BF9A5EE3825AE60612102FC
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/bf3c19cc-7e74-4d47-9e2d-5bcee63041aa.roa
Signing time: Mon 17 Mar 2025 15:40:28 +0000
ROA not before: Mon 17 Mar 2025 15:40:28 +0000
ROA not after: Mon 21 Apr 2025 23:59:59 +0000
asID: 14618
IP address blocks: 83.118.234.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
e5:d2:8d:5c:fe:7b:e8:2b:f9:a5:ee:38:25:ae:60:61:21:02:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 17 15:40:28 2025 GMT
Not After : Apr 21 23:59:59 2025 GMT
Subject: CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9a:db:75:1b:96:ea:f4:ec:d5:3a:00:3f:e3:
5c:d7:27:ea:e0:63:29:a2:54:37:a4:28:b9:3e:0b:
4a:fd:6f:3c:de:87:6e:76:bb:f1:0d:d7:b1:cd:0a:
e1:6f:4b:59:88:f7:8b:f7:71:c3:83:50:ac:a3:85:
4d:1a:b3:55:58:87:0e:2b:3d:46:89:8c:10:ad:24:
a2:47:25:51:17:6d:66:0a:a8:8c:0c:a1:53:47:3e:
b1:fc:13:60:2f:75:22:2b:78:9b:0f:e2:c7:41:18:
b0:c9:84:c5:9a:b3:56:4b:de:5f:57:b5:bf:95:96:
4a:47:0f:ac:de:35:92:2d:45:bb:9f:20:87:31:b3:
10:42:78:c9:2b:a8:42:33:24:74:ff:65:0f:e4:7f:
b2:17:08:99:ad:df:53:38:19:e5:07:92:eb:13:f9:
81:37:76:bb:03:da:f3:41:42:52:9f:89:36:b1:30:
ae:44:be:94:bc:38:0e:3f:25:26:72:80:9a:6c:01:
22:aa:2e:df:5b:7a:60:93:94:7a:0d:4f:83:e5:e6:
0e:3d:40:5d:89:7d:d1:e5:cc:ef:8b:d0:99:fd:0a:
70:31:2f:89:6d:b0:f5:93:87:a2:57:f5:64:9e:a3:
f7:23:16:a5:be:5c:5e:b4:29:c6:e6:6b:a8:1d:6d:
fa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:1E:65:33:CC:5A:F7:19:63:8A:7E:4A:FF:CB:EB:CC:91:F6:C6
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/bf3c19cc-7e74-4d47-9e2d-5bcee63041aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.118.234.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:94:99:a2:41:57:b3:6a:19:6c:7a:82:88:cc:33:e7:70:52:
3b:37:b1:82:6f:f2:bf:98:95:78:1f:06:25:60:08:44:5a:76:
61:09:01:f5:0f:a7:fb:da:95:e0:9b:25:93:26:10:21:49:8e:
d7:4b:35:d8:8b:19:56:3f:37:71:a4:3e:7d:37:7e:dd:16:11:
65:b2:74:5e:e7:e9:94:28:b4:47:89:83:9e:ac:0d:24:40:9b:
b1:11:5d:4d:3f:ea:89:72:8f:00:9c:96:23:74:fb:53:3c:c5:
a7:1a:30:73:6b:4b:52:b8:7f:69:9f:bd:d2:6b:71:db:a9:de:
77:9f:fc:a3:b1:ea:f8:44:c0:e9:bb:1b:e8:3f:03:33:57:3e:
29:a3:35:e1:30:28:ce:79:d7:50:1a:e9:71:83:79:bc:0c:02:
9d:48:5c:f9:52:de:b6:02:de:3b:0a:ab:8b:b5:89:b6:d6:2a:
4d:45:b1:d8:e4:81:ef:7a:43:20:fa:37:10:cd:c7:05:00:b8:
15:b7:be:ec:20:c3:e2:51:5a:4f:0e:c6:96:b9:b0:6e:ba:61:
cc:01:24:9e:fa:4d:00:04:c2:07:74:2a:31:6b:0d:bd:76:d1:
0a:ac:4a:bd:a5:4b:f9:d7:a4:2e:47:5a:61:ad:78:8a:91:c0:
56:49:e7:2a
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUAOXSjVz+e+gr+aXuOCWuYGEhAvwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNTAzMTcxNTQwMjhaFw0yNTA0MjEyMzU5NTlaMHoxSTBHBgNV
BAUTQGNjMTFlNTExZTE0ZWUyNDA5OTY3ODkyYTNiYTNkNDgzNTczYzM2NTk4MDY3
OWZhODA3OWFjNTBiNWNlNDNkOWExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALaa23Ublur07NU6AD/jXNcn6uBjKaJUN6QouT4LSv1vPN6Hbna78Q3Xsc0K
4W9LWYj3i/dxw4NQrKOFTRqzVViHDis9RomMEK0kokclURdtZgqojAyhU0c+sfwT
YC91Iit4mw/ix0EYsMmExZqzVkveX1e1v5WWSkcPrN41ki1Fu58ghzGzEEJ4ySuo
QjMkdP9lD+R/shcIma3fUzgZ5QeS6xP5gTd2uwPa80FCUp+JNrEwrkS+lLw4Dj8l
JnKAmmwBIqou31t6YJOUeg1Pg+XmDj1AXYl90eXM74vQmf0KcDEviW2w9ZOHolf1
ZJ6j9yMWpb5cXrQpxuZrqB1t+mUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBQfHh5l
M8xa9xljin5K/8vrzJH2xjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
YmYzYzE5Y2MtN2U3NC00ZDQ3LTllMmQtNWJjZWU2MzA0MWFhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVN26jAN
BgkqhkiG9w0BAQsFAAOCAQEAXJSZokFXs2oZbHqCiMwz53BSOzexgm/yv5iVeB8G
JWAIRFp2YQkB9Q+n+9qV4JslkyYQIUmO10s12IsZVj83caQ+fTd+3RYRZbJ0Xufp
lCi0R4mDnqwNJECbsRFdTT/qiXKPAJyWI3T7UzzFpxowc2tLUrh/aZ+90mtx26ne
d5/8o7Hq+ETA6bsb6D8DM1c+KaM14TAoznnXUBrpcYN5vAwCnUhc+VLetgLeOwqr
i7WJttYqTUWx2OSB73pDIPo3EM3HBQC4Fbe+7CDD4lFaTw7GlrmwbrphzAEknvpN
AATCB3QqMWsNvXbRCqxKvaVL+dekLkdaYa14ipHAVknnKg==
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:38:21 2025 by rpki-client