Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b8d55e9d-2730-4ec2-91d5-af98a5a51340.roa
File: b8d55e9d-2730-4ec2-91d5-af98a5a51340.roa (raw, json)
Hash identifier: xVPiCE2CfXQdNUXh18e4Zoi1uGpjBwZV3VMhbx3nqqg=
Subject key identifier: 7D:98:7E:FE:0D:3E:42:55:3C:22:F7:AD:9F:C6:EF:EA:C9:65:46:59
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7CC4631C925113483F4DADD0912EE783ED15F393
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b8d55e9d-2730-4ec2-91d5-af98a5a51340.roa
Signing time: Tue 28 Jan 2025 00:00:00 +0000
ROA not before: Tue 28 Jan 2025 00:00:00 +0000
ROA not after: Tue 04 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.44.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:c4:63:1c:92:51:13:48:3f:4d:ad:d0:91:2e:e7:83:ed:15:f3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 28 00:00:00 2025 GMT
Not After : Mar 4 23:59:59 2025 GMT
Subject: serialNumber=e07d2e66dd354cd481206998971b46fdf31854fdff79249e106b941333ada10f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d4:4b:55:70:62:f5:d3:ad:12:62:be:62:7a:
06:71:b6:3f:2e:e0:67:6a:9f:31:11:d9:31:b9:b0:
e3:74:fb:71:48:e9:a8:82:ff:57:c6:1d:2c:11:6b:
70:7c:af:68:e5:31:7f:6e:01:dc:03:78:7f:09:e7:
76:0d:71:4a:5d:2b:3a:29:ce:f1:84:97:8d:a8:f1:
86:ee:80:c9:38:dc:fc:07:46:e2:cf:55:e0:b0:68:
e1:1e:0e:48:7d:93:d9:55:9c:96:94:c2:6b:c4:f3:
1e:11:ca:3c:f3:4a:60:a6:09:85:6c:31:bf:9f:95:
4e:e2:f8:ca:29:c8:94:9f:91:9e:7e:bf:6c:4e:89:
aa:bc:73:79:8c:63:23:20:a5:39:63:a9:8e:86:9f:
60:93:02:aa:0b:4b:13:fd:8d:77:0f:74:1d:9a:44:
ea:a5:94:cb:03:3b:23:f6:35:82:5d:13:d9:45:22:
0c:fe:73:52:79:3c:c2:67:db:28:76:62:4a:33:e2:
60:39:70:f6:42:8d:04:25:9a:be:af:d3:c7:73:44:
e3:c5:12:f0:ae:ec:d2:16:79:35:26:94:83:28:ef:
b5:31:09:9f:1d:37:7e:5d:2e:70:98:a7:1e:3a:e3:
c0:df:f7:79:7c:ff:54:ad:49:80:1e:b3:f9:d7:61:
92:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:98:7E:FE:0D:3E:42:55:3C:22:F7:AD:9F:C6:EF:EA:C9:65:46:59
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b8d55e9d-2730-4ec2-91d5-af98a5a51340.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:89:57:f7:e4:aa:31:47:97:8a:ff:18:b1:1f:7a:89:d6:84:
f3:e0:6a:5a:2f:9c:11:82:59:67:10:da:53:65:09:3a:ed:56:
da:1a:85:18:af:62:8a:04:02:3a:76:d7:98:87:48:85:32:ba:
af:9c:6b:9f:e5:05:72:84:4b:88:4c:13:22:0c:e8:e1:a9:31:
ed:70:25:94:cb:34:a2:ce:b8:e2:9d:ce:2a:da:dd:91:cd:e7:
ce:42:5d:39:fd:3e:1e:65:ed:37:32:32:04:36:d7:f5:11:83:
56:72:b8:62:03:a6:98:ec:51:ff:17:cd:93:ce:67:4b:be:54:
95:ec:de:3f:09:b9:78:8f:bb:1d:63:73:f8:e4:8c:c8:55:3e:
0c:67:3a:40:db:ef:25:2d:83:dc:cc:8f:eb:60:36:a1:de:0c:
76:58:50:83:15:c3:40:d7:5d:ca:1a:7d:2f:ec:cc:d0:2d:4f:
33:64:b6:70:d6:d8:ff:b0:d8:36:64:f6:f0:2f:81:7f:d8:a8:
2a:f1:bb:27:42:d4:96:a9:35:02:2f:1a:fd:44:d9:8a:58:a4:
e6:22:84:45:b1:23:e8:dd:c7:12:5b:a2:f2:04:71:15:5f:d1:
d0:3c:24:6c:c1:a5:28:59:3e:ee:b6:82:86:4e:24:e1:17:f1:
40:8c:45:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:23:50 2025 by rpki-client