Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e7ebe29c-b29a-41b9-8205-cf9e03925e93.roa
File: e7ebe29c-b29a-41b9-8205-cf9e03925e93.roa (raw, json)
Hash identifier: YJc2hYTmkESRRpJbiV4hWktbB/A6Rr9Tx36xO5DcxmA=
Subject key identifier: C5:83:F0:E2:C6:9C:B3:69:D4:E6:47:E2:96:2E:58:69:91:97:9B:C6
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 464BE979D4829B9595CA4B3132AC1D8E709B6AF5
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e7ebe29c-b29a-41b9-8205-cf9e03925e93.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 57.101.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:4b:e9:79:d4:82:9b:95:95:ca:4b:31:32:ac:1d:8e:70:9b:6a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=e16c824e91103960fe04fb94b8f1cfa129a715e28cbdecba5a12398d93b725c1, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a2:97:8d:c7:f9:0b:47:1c:f7:fc:2b:c7:f3:
a9:eb:51:1a:fe:d8:ef:17:f7:9e:cd:03:9c:87:71:
37:c5:28:8b:48:24:ca:5a:86:b5:fa:db:a8:8a:87:
cc:af:75:96:56:ab:29:37:b3:51:4b:1a:9f:7d:54:
aa:cb:04:96:c5:a1:34:9a:d7:b8:29:af:b2:e0:f0:
e6:14:48:ec:f8:83:b1:10:c3:aa:9f:3a:63:9f:2f:
d6:63:25:a7:7b:8a:61:7d:59:f7:ab:a3:7f:f2:37:
fe:d0:27:19:f5:b5:24:d2:cb:7f:9a:74:45:03:5a:
8b:9b:04:ae:38:b5:77:c3:fc:33:c1:31:39:3f:7f:
84:f7:f9:8e:f6:c2:73:6b:cb:c7:8b:a9:36:b6:5b:
c2:fa:cd:cf:79:dd:1f:b3:99:a4:ee:c3:df:77:57:
6c:fb:fe:da:b1:e0:53:aa:00:3b:22:61:17:37:46:
bd:c1:2c:3e:3e:0b:26:10:22:91:1c:b4:9a:87:f0:
d7:00:3e:69:12:be:38:a4:a4:56:41:a0:93:50:e1:
4f:eb:6a:46:9c:5d:9e:a1:4a:cd:4c:4e:d1:37:65:
af:a5:45:a0:a9:78:93:54:c0:d4:33:ce:0b:8a:ea:
af:3e:ea:a9:0e:0c:cc:d5:ad:22:2a:4d:57:ae:50:
8a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:83:F0:E2:C6:9C:B3:69:D4:E6:47:E2:96:2E:58:69:91:97:9B:C6
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e7ebe29c-b29a-41b9-8205-cf9e03925e93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.101.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ca:b6:0a:0b:46:f6:fe:a3:90:cd:54:39:53:b5:96:c7:5a:c0:
ee:a4:7f:9b:de:f8:8f:98:70:b9:c5:87:28:a4:7c:2e:e3:89:
d9:62:c9:85:ec:4d:98:be:bd:2f:f8:71:0d:93:9f:51:2d:01:
54:1a:8f:91:6c:1a:5a:b9:f1:95:9e:ce:8f:c7:b7:2c:cc:c8:
36:ae:b4:3c:2a:14:71:c6:c4:f6:6d:45:df:79:fd:5d:1f:7a:
eb:88:ae:83:d0:79:34:7a:2d:6a:b6:24:51:a6:c9:a1:2a:f9:
8d:7d:9e:12:30:25:0b:24:03:74:2e:5e:f1:74:47:00:b6:94:
77:0e:c8:ed:b1:37:2d:b7:a5:a6:bc:08:a2:50:36:49:99:be:
5d:36:c8:ee:a6:db:8b:57:f6:17:da:22:ad:1a:3d:35:f2:24:
98:d1:c7:c5:d4:37:90:3c:40:b9:3c:14:2b:f5:ae:d1:90:29:
1a:43:4a:6b:e5:53:bc:6e:4e:47:aa:cd:0d:a2:6c:04:06:5f:
c4:cb:99:57:25:b1:9b:8c:35:94:63:8d:33:77:a5:c0:6c:e4:
28:41:e5:53:14:dd:31:3c:62:ec:5d:3c:1e:fd:fc:70:98:2e:
0e:c0:21:5c:f6:55:79:62:4a:98:20:a5:c4:10:87:38:ff:37:
e8:c0:fd:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:01:40 2025 by rpki-client