Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6ce1a59c-1bfd-4b5e-ad34-d3f4f07a46f7.roa
File: 6ce1a59c-1bfd-4b5e-ad34-d3f4f07a46f7.roa (raw, json)
Hash identifier: VkzvonyK4sn50qvJlVbr6RsYibC+SYk77K5iPwEIjws=
Subject key identifier: 7E:63:47:FD:F4:42:5D:5C:05:AE:13:E5:47:60:31:21:08:5C:B3:6F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 386E4397FFA5785324A2AFFBA93646A6D78E2D4E
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6ce1a59c-1bfd-4b5e-ad34-d3f4f07a46f7.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 193.57.254.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:6e:43:97:ff:a5:78:53:24:a2:af:fb:a9:36:46:a6:d7:8e:2d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=098f71b00edffa67ee721cc0f65fad93a2f93ea366608f6d5d5168245f1e759e, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:62:b9:37:4b:c8:93:ff:d0:77:1a:24:8d:bc:
02:d7:77:fd:90:76:3f:3e:19:43:79:0f:4e:63:7b:
2b:c3:72:81:bd:2e:f9:24:ca:4f:55:83:2a:53:3a:
d0:5a:b2:b1:70:b1:d4:da:63:3e:a8:45:c4:dd:1b:
48:44:07:35:02:73:34:4d:c8:ec:e6:85:12:e9:44:
a9:dd:b7:f9:a9:3b:9f:dd:b6:c7:f3:81:1e:68:52:
52:64:c6:e6:92:e5:8d:9c:7b:f1:7d:29:d5:90:0f:
27:e9:3e:a9:51:25:2a:2d:2a:b8:d2:96:93:79:30:
3e:9e:06:79:00:1a:74:cd:3d:19:c3:9c:7f:0a:17:
dd:00:4d:c5:ed:be:2b:74:24:d2:95:46:fd:55:65:
02:0f:bf:56:ef:6c:91:2a:06:7d:da:a2:5f:c2:64:
a3:a5:80:ba:94:20:b5:f9:cf:b5:d1:d3:8d:d5:c7:
f2:20:d8:60:4b:47:e9:1c:5e:ff:37:6b:0d:b8:72:
b1:92:7a:0b:e6:0b:e8:94:9b:40:fa:22:ce:6c:b9:
b8:b7:54:ca:a0:72:82:e0:f2:01:94:56:1f:bd:45:
5e:9f:81:1a:9b:0a:29:c5:d4:12:12:51:4a:4b:b9:
d8:fe:01:27:2c:8c:a3:06:1f:9d:14:8b:43:32:84:
04:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:63:47:FD:F4:42:5D:5C:05:AE:13:E5:47:60:31:21:08:5C:B3:6F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6ce1a59c-1bfd-4b5e-ad34-d3f4f07a46f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.254.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:2c:8d:61:ee:4b:3d:9c:f2:9d:7e:4b:15:4d:0f:9e:8a:a5:
be:c7:47:73:6f:86:d0:f6:8b:2f:3e:87:d0:27:6d:80:9f:48:
fd:1c:98:2a:de:7c:fc:12:59:8a:6f:da:ef:37:f3:95:90:4c:
5b:56:0b:f0:10:c4:02:21:e7:ac:bc:0c:8c:58:ac:61:b1:4a:
dd:e0:b5:c1:be:ee:62:36:af:80:85:cd:04:a6:d4:71:60:52:
c1:3d:09:f6:89:e5:80:cb:4a:05:b8:d4:a8:95:d3:47:f5:25:
e8:fa:b4:c6:80:38:1d:0c:65:ac:e6:98:40:e8:7a:91:f2:89:
45:05:87:6d:65:1d:c5:60:5d:9c:28:07:b5:0b:07:30:a1:97:
3a:dd:54:be:7c:34:00:3d:7d:3a:30:ca:7f:b9:3e:8f:e5:2b:
c8:50:1e:17:d8:8a:dd:e2:c5:e0:e1:88:20:95:1e:d9:49:6e:
d0:0e:d5:cd:b0:ea:e7:c8:71:99:4d:e9:e0:9e:f7:50:da:8d:
ce:bf:b4:d2:ad:f6:c0:f3:d5:25:91:d9:82:af:38:ed:f8:82:
9a:67:5d:4a:92:a9:83:70:8d:58:3d:2a:f7:f5:52:3c:9f:1e:
58:6b:ec:d2:92:b4:15:18:16:87:c3:76:d9:e3:9c:30:7c:b1:
89:79:61:b4
-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIUOG5Dl/+leFMkoq/7qTZGpteOLU4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDEyMTMwMDAwMDBaFw0yNTAxMTcyMzU5NTlaMHoxSTBHBgNV
BAUTQDA5OGY3MWIwMGVkZmZhNjdlZTcyMWNjMGY2NWZhZDkzYTJmOTNlYTM2NjYw
OGY2ZDVkNTE2ODI0NWYxZTc1OWUxLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJ9iuTdLyJP/0HcaJI28Atd3/ZB2Pz4ZQ3kPTmN7K8Nygb0u+STKT1WDKlM6
0FqysXCx1NpjPqhFxN0bSEQHNQJzNE3I7OaFEulEqd23+ak7n922x/OBHmhSUmTG
5pLljZx78X0p1ZAPJ+k+qVElKi0quNKWk3kwPp4GeQAadM09GcOcfwoX3QBNxe2+
K3Qk0pVG/VVlAg+/Vu9skSoGfdqiX8Jko6WAupQgtfnPtdHTjdXH8iDYYEtH6Rxe
/zdrDbhysZJ6C+YL6JSbQPoizmy5uLdUyqByguDyAZRWH71FXp+BGpsKKcXUEhJR
Sku52P4BJyyMowYfnRSLQzKEBBUCAwEAAaOCAiEwggIdMB0GA1UdDgQWBBR+Y0f9
9EJdXAWuE+VHYDEhCFyzbzAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
NmNlMWE1OWMtMWJmZC00YjVlLWFkMzQtZDNmNGYwN2E0NmY3LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcE5/jAN
BgkqhkiG9w0BAQsFAAOCAQEApyyNYe5LPZzynX5LFU0PnoqlvsdHc2+G0PaLLz6H
0CdtgJ9I/RyYKt58/BJZim/a7zfzlZBMW1YL8BDEAiHnrLwMjFisYbFK3eC1wb7u
YjavgIXNBKbUcWBSwT0J9onlgMtKBbjUqJXTR/Ul6Pq0xoA4HQxlrOaYQOh6kfKJ
RQWHbWUdxWBdnCgHtQsHMKGXOt1Uvnw0AD19OjDKf7k+j+UryFAeF9iK3eLF4OGI
IJUe2Ulu0A7VzbDq58hxmU3p4J73UNqNzr+00q32wPPVJZHZgq847fiCmmddSpKp
g3CNWD0q9/VSPJ8eWGvs0pK0FRgWh8N22eOcMHyxiXlhtA==
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net