Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdc831eb-07c2-47bb-a73d-177abc9b14c0.roa
File: bdc831eb-07c2-47bb-a73d-177abc9b14c0.roa (raw, json)
Hash identifier: XG/GHgVoF5/UDAAQnJqhTRQaptWHB7E4Oqg6j0e/EW4=
Subject key identifier: 32:7F:4A:D6:25:C7:31:8A:1A:40:9D:13:C9:9D:37:E0:03:15:20:32
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7DABE7C77E3E4ACCFCECF829C4F1078938EE084B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdc831eb-07c2-47bb-a73d-177abc9b14c0.roa
Signing time: Mon 27 Jan 2025 00:00:00 +0000
ROA not before: Mon 27 Jan 2025 00:00:00 +0000
ROA not after: Mon 03 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.204.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:ab:e7:c7:7e:3e:4a:cc:fc:ec:f8:29:c4:f1:07:89:38:ee:08:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 27 00:00:00 2025 GMT
Not After : Mar 3 23:59:59 2025 GMT
Subject: serialNumber=7103321202a5c5efa298b0d311ecf7781dd982fe83679827105650b7591b80e4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:b5:c2:06:78:c0:e9:7d:be:c2:99:19:88:
e5:54:72:c1:e6:7e:5f:48:36:c7:9f:8a:ea:68:45:
a3:46:f3:14:9d:25:9c:0e:1d:c2:a0:09:92:c8:16:
2c:c0:93:7d:c9:a3:a5:ae:e2:5b:ae:c4:4a:b1:89:
a9:8d:51:44:5a:f3:cd:c9:6d:7d:af:ed:cd:91:5f:
32:7b:2a:67:64:a0:2e:8c:a3:af:c7:60:e3:83:32:
a5:2c:50:28:9b:5e:12:18:19:71:3d:f5:13:f4:1e:
da:1e:e2:7b:0c:12:a6:85:77:28:fb:cc:54:4f:56:
bc:9b:de:bb:ab:8a:7a:b9:dd:57:f9:05:b5:fe:e2:
98:6c:f8:5f:f5:c5:2c:0c:85:92:ab:99:54:cb:ab:
dc:e7:51:ed:d6:6f:28:90:4a:81:65:3c:cc:be:78:
ae:29:7e:e1:d0:ee:5c:29:85:b5:a3:45:d0:be:6c:
d0:6d:62:37:f8:31:f4:1c:f1:63:b0:ff:ab:0a:32:
80:d8:5a:e5:e9:1c:14:32:8c:6e:c3:db:a1:28:37:
74:9e:59:de:66:68:01:7f:1c:dd:ca:7b:df:76:ff:
88:6b:f7:b8:88:da:d9:d4:b2:f4:21:3e:57:c1:ae:
40:4c:86:3f:57:71:cf:db:38:ff:2b:59:21:4f:df:
71:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7F:4A:D6:25:C7:31:8A:1A:40:9D:13:C9:9D:37:E0:03:15:20:32
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bdc831eb-07c2-47bb-a73d-177abc9b14c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.204.0/22
Signature Algorithm: sha256WithRSAEncryption
30:40:1e:b8:c6:14:40:f0:36:d0:25:9f:9d:50:0c:db:8f:ea:
13:98:3b:90:0f:54:56:29:1a:d8:1d:04:6f:ce:01:0f:8a:e0:
f9:7a:8b:9b:bb:06:3f:f1:c4:d7:c9:1c:36:92:50:0d:fe:cc:
c0:17:69:f4:fe:83:b5:27:06:b5:8c:cd:7c:1d:6c:78:53:dc:
58:40:37:d4:de:9f:c3:03:0c:74:1d:5f:22:5d:b2:9a:cf:a8:
c5:5d:f8:49:10:ef:e0:36:23:ec:9d:79:37:a6:05:e0:f6:81:
fe:a2:63:93:f4:9b:db:76:60:65:62:03:aa:6d:f1:64:5f:02:
ca:9d:4d:03:be:1a:10:c0:2a:20:78:66:b5:79:87:48:2c:73:
09:34:ce:40:40:2c:60:93:56:d0:ac:82:35:6c:5b:a8:27:7e:
1c:5b:61:de:bf:a8:d6:95:98:87:9a:69:8b:8b:cc:0f:4b:f5:
ea:76:e3:55:0b:3d:a4:8b:40:a8:d6:b6:b4:a3:0f:53:c5:06:
aa:c0:cc:dd:a6:26:ac:ac:be:f8:ef:23:f2:24:88:bf:4f:04:
63:dc:23:6c:c0:65:b5:cb:5a:ae:ce:9c:79:b8:65:1f:2f:58:
4c:44:6f:de:9b:07:d5:92:0a:bc:90:21:71:17:ca:9a:fb:9a:
d7:77:ab:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:02:03 2025 by rpki-client