Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/42efa1a8-f804-47c5-8a3d-6f3ea05e1a5b.roa
File: 42efa1a8-f804-47c5-8a3d-6f3ea05e1a5b.roa (raw, json)
Hash identifier: 7wBB3GwlNOOgSkQBVY63BOo9FJDJBA4aEYZW+GRClqM=
Subject key identifier: 38:9B:08:CB:B5:76:C7:CA:31:42:5C:4D:6B:F8:C4:7E:34:F4:E7:8C
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 1E6235654E25886EB001974A21596D62153AB5EB
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/42efa1a8-f804-47c5-8a3d-6f3ea05e1a5b.roa
Signing time: Mon 31 Mar 2025 21:30:39 +0000
ROA not before: Mon 31 Mar 2025 21:30:39 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 51.164.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:62:35:65:4e:25:88:6e:b0:01:97:4a:21:59:6d:62:15:3a:b5:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 31 21:30:39 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=e9930e660afbbcf5fc522ecb12f16167f7ea8ae1b1128eef786ca1c8d16db507, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:8e:c0:0e:58:02:c8:0a:8d:fa:e5:a3:08:
f0:70:a6:cc:c6:d1:c3:4a:f5:7d:a0:ba:b0:7b:d5:
24:25:a4:52:66:0d:fe:c1:c8:3d:fd:89:0e:2a:c9:
b1:c8:43:fd:1d:e3:37:5e:e7:6d:ee:2b:52:96:b4:
43:a8:98:87:19:62:b6:42:09:e6:e1:b4:d9:19:a5:
80:7d:78:79:98:1e:5f:28:77:80:4f:2a:f5:5c:d7:
a9:38:49:73:22:d6:87:52:43:dd:d4:47:ad:da:61:
30:64:c4:b6:17:db:b5:32:e7:a3:80:04:8b:56:b2:
06:ad:d3:21:00:68:1b:9f:83:70:ae:14:ad:d6:cb:
83:6f:bd:88:68:3a:d5:5a:62:77:ed:14:ab:e3:5d:
62:64:9a:11:7f:3e:29:fd:02:7b:60:f0:42:7d:4e:
14:43:7f:67:fc:92:42:9d:9f:f5:fc:76:9c:9f:88:
e3:4e:d8:28:e1:70:2e:77:c6:95:fe:7b:ed:5c:9b:
80:67:df:b9:91:e0:48:13:f7:5e:41:74:e0:64:34:
71:47:05:ef:f7:03:b6:69:58:51:52:e4:7b:89:e9:
bf:fd:b6:ec:f8:cc:f9:e1:9e:68:ca:b5:03:77:ef:
c9:dd:c4:85:59:0c:1a:2d:dd:24:ca:9d:ac:81:1d:
8f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9B:08:CB:B5:76:C7:CA:31:42:5C:4D:6B:F8:C4:7E:34:F4:E7:8C
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/42efa1a8-f804-47c5-8a3d-6f3ea05e1a5b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
11:02:76:c0:20:b2:32:e3:ca:05:80:8e:56:bb:4c:09:b8:f0:
5a:9f:7e:7a:0e:b0:0d:02:a9:6f:32:b7:3a:ad:bc:a5:04:d6:
3b:c4:14:3f:ad:19:0d:e4:59:77:14:ec:c4:6c:da:62:31:f0:
b8:14:a4:0e:fb:c7:57:c8:5a:4a:25:27:35:b8:b6:80:c7:df:
66:4a:27:9f:34:bb:74:fd:bb:d0:30:ed:80:43:26:78:b4:62:
fb:ac:54:ae:af:d0:26:c5:a5:63:42:b8:9d:17:89:6c:a9:1d:
86:99:a3:ad:14:02:9c:fe:73:36:88:66:5f:89:e3:25:30:ec:
ed:36:89:58:24:de:2b:1c:03:fd:eb:25:e3:8c:ed:ae:8a:a5:
ee:4b:56:37:b4:7b:83:81:fb:03:82:83:7c:a2:fa:6c:f1:90:
f7:a2:c5:31:66:b0:63:86:59:c0:d6:5c:4f:97:7e:0d:fe:dd:
4f:c0:90:a0:74:80:d5:89:72:26:e2:23:05:de:fb:8d:8d:47:
09:b9:7a:ef:79:e8:4f:54:de:57:82:0b:6d:c5:aa:8c:91:38:
29:15:aa:dd:2b:af:d1:d4:38:7c:59:fa:55:23:dd:e5:cb:cb:
3a:1c:d9:fc:45:15:57:51:a6:11:3a:04:aa:3c:ae:46:6a:db:
79:a1:c4:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net