Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
File: 82037871-73f4-40ba-be5d-495a41d85184.roa (raw, json)
Hash identifier: ZJyljOs3imgCE/xBazlOD8528R+9I6pDqDIz7dGB1EQ=
Subject key identifier: 42:0A:00:BC:77:74:3F:A9:65:71:45:7A:CB:A3:BB:41:9A:F9:48:71
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5AA1717A5C7BA6EA968CA133E99D562D3CCF469D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
Signing time: Fri 24 Jan 2025 00:00:00 +0000
ROA not before: Fri 24 Jan 2025 00:00:00 +0000
ROA not after: Fri 28 Feb 2025 23:59:59 +0000
asID: 7224
IP address blocks: 46.51.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a1:71:7a:5c:7b:a6:ea:96:8c:a1:33:e9:9d:56:2d:3c:cf:46:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 24 00:00:00 2025 GMT
Not After : Feb 28 23:59:59 2025 GMT
Subject: serialNumber=50b7e3a79f9c31105f1ef46d8ea8d4fd024750f07c8190d57cec1007e0097757, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:88:ab:6b:f5:09:ee:f7:e5:1d:a1:eb:dc:04:
36:ca:ef:d0:e2:b8:4d:71:5c:5d:c8:f9:44:09:db:
ab:16:a2:81:b2:d6:e9:a5:dd:b0:93:04:ac:71:4a:
04:4d:44:b3:dd:3d:2a:bb:9e:1d:c7:bd:db:df:36:
c1:19:39:eb:38:7b:41:5d:c2:7d:c7:56:19:2c:f5:
55:a1:09:6c:8c:32:ba:ff:88:8b:68:7e:b5:99:65:
20:9e:c3:57:6a:2d:eb:1c:ee:bb:da:fc:85:cf:41:
9e:ad:ca:4c:96:a7:03:65:d0:21:91:4f:1b:4a:0c:
d4:d3:f1:67:58:65:8b:fe:35:50:bf:3d:17:b2:0d:
6e:15:e8:f7:0f:ac:f6:66:4a:da:f2:e4:db:3b:23:
c9:c2:79:a4:8e:d8:de:42:65:3e:47:88:d6:31:4b:
05:ac:3b:83:90:d2:30:d2:c6:f7:10:db:29:f8:e1:
6d:47:04:2d:a8:71:10:18:95:44:9c:c9:49:96:8a:
81:d0:58:b3:73:60:ae:2d:70:c5:89:3d:28:40:64:
e9:33:49:8f:3b:9c:95:31:82:c6:4b:96:94:11:98:
05:57:3f:88:af:11:52:21:c3:3f:7f:73:58:1d:46:
9c:46:6d:cb:a2:a9:5b:db:b8:cf:53:1f:01:63:a2:
c9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0A:00:BC:77:74:3F:A9:65:71:45:7A:CB:A3:BB:41:9A:F9:48:71
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.212.0/22
Signature Algorithm: sha256WithRSAEncryption
73:23:4d:de:96:fe:9c:5c:4c:60:48:a8:6b:9d:20:51:09:45:
cf:a3:be:34:be:5d:fd:8b:37:dc:b0:8f:10:02:f8:e2:95:28:
62:d8:bc:bf:bf:9b:54:78:3e:02:08:70:d4:46:e2:c8:53:b9:
6b:6b:ef:20:2a:9d:2b:3f:e9:4e:5d:a1:a3:07:87:54:01:20:
9b:44:cd:c6:5e:40:16:74:45:28:16:b5:b6:53:1d:32:e4:af:
8b:3d:ab:cc:33:52:f6:c3:3b:0c:3c:70:2c:47:11:ec:be:85:
12:85:42:de:5a:99:6b:1e:55:e8:9f:f1:9b:2c:98:3f:25:d9:
58:9f:db:5a:39:d5:60:97:c0:d4:d0:6c:ab:b0:ba:4b:7d:ed:
e0:ce:52:8e:85:30:c3:30:fa:1b:98:bf:d4:77:58:2e:95:0a:
66:18:8d:15:d8:07:8d:1b:0d:17:6c:27:ff:79:bd:f5:5d:05:
af:62:e5:17:db:f6:4e:e0:0f:a0:7f:86:d1:90:c4:ef:89:85:
66:16:b9:26:f1:b7:d3:67:f7:41:2b:c6:43:69:72:d4:e1:7a:
f0:38:76:99:e7:69:82:9a:67:99:b0:93:fe:45:7b:e4:f5:fa:
38:09:96:8e:82:ca:89:f5:af:a0:de:95:3a:f4:90:21:52:e8:
a6:e6:4f:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:03:17 2025 by rpki-client