Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6f7eb0e6-fbf6-4872-8a70-838cbba40e6f.roa
File: 6f7eb0e6-fbf6-4872-8a70-838cbba40e6f.roa (raw, json)
Hash identifier: phIn4p1WLsVAB1sFInB6SKeCx3PTJ0TVbNXvnlonLgc=
Subject key identifier: 9D:81:06:D0:E2:68:B2:1E:CD:59:6B:B4:B8:E5:6A:04:21:85:81:2A
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 1FC0964E64BE18D861F88544ABE3172D94E75D39
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6f7eb0e6-fbf6-4872-8a70-838cbba40e6f.roa
Signing time: Mon 18 Nov 2024 00:00:00 +0000
ROA not before: Mon 18 Nov 2024 00:00:00 +0000
ROA not after: Mon 23 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2a01:578:1010::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:c0:96:4e:64:be:18:d8:61:f8:85:44:ab:e3:17:2d:94:e7:5d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Nov 18 00:00:00 2024 GMT
Not After : Dec 23 23:59:59 2024 GMT
Subject: serialNumber=8c4dee34d68cd415cf9bfb2d3967baf8e23f1fd1f1e8eb9ca792df4854661b7a, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:74:fa:52:86:77:8f:f8:be:1b:33:f7:6b:a1:
4a:c2:d8:06:de:75:0e:ba:76:9c:d6:58:ac:36:4b:
46:76:0c:a8:1c:d4:96:f0:6d:7e:a1:29:fe:bc:74:
2a:9e:5f:8f:19:7a:f3:e3:48:ef:53:a6:b0:cc:28:
ae:e7:6a:6f:3c:d8:17:9e:4a:ed:c9:9e:d7:de:72:
a4:17:aa:0b:68:05:71:f3:60:11:50:35:a4:ca:a6:
44:ac:3f:71:51:85:77:d0:8f:41:4a:2d:fc:63:2e:
29:5d:a0:26:e2:a5:cf:73:bb:2f:26:df:82:c6:92:
6a:06:de:43:dc:f2:68:4a:7b:aa:c7:6d:b7:1c:ac:
64:a0:80:78:54:9e:5f:13:f0:d5:3e:73:df:70:d9:
2c:58:af:09:13:65:24:8c:55:c0:54:2d:e9:bd:ee:
77:79:37:60:07:4f:e4:b4:d6:3c:f2:2e:b6:4f:46:
33:a2:ed:d3:0f:8b:ea:d8:84:cc:50:79:bd:cc:ec:
54:77:69:49:0e:ae:46:c4:8b:aa:1d:1d:e8:76:b5:
9b:d8:96:02:b8:ca:56:52:7f:22:65:bc:4d:18:be:
2b:12:0b:ed:81:e7:d2:97:4a:ee:88:3a:64:16:6c:
94:e2:e5:d3:b7:91:25:cb:27:d4:b9:2e:75:79:7d:
bc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:81:06:D0:E2:68:B2:1E:CD:59:6B:B4:B8:E5:6A:04:21:85:81:2A
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/6f7eb0e6-fbf6-4872-8a70-838cbba40e6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:578:1010::/44
Signature Algorithm: sha256WithRSAEncryption
71:db:bf:cf:8f:80:0e:5e:31:ab:02:22:95:1b:26:3c:fd:3a:
03:55:a9:6a:dc:3e:4c:81:95:5e:2a:e5:d6:57:9b:5b:26:2c:
6b:7d:ee:7f:d8:be:fd:ed:8b:aa:66:27:c2:66:50:dd:4c:22:
cd:33:1f:1d:bb:8c:a2:74:f8:0a:42:35:6e:dc:87:e5:53:41:
61:81:2b:37:c6:77:2a:07:14:73:cd:06:a2:7c:a0:f5:f4:3b:
f4:27:17:b4:05:55:74:10:e0:94:9a:f9:bf:57:cf:c2:8c:d0:
8f:b3:08:f0:11:08:20:0d:7c:44:0e:dc:81:6b:49:90:cd:0d:
1c:9e:89:d3:71:06:ba:6e:6e:18:b9:14:ca:ff:60:f4:49:3d:
62:e8:d2:45:c4:5e:68:e9:2b:0f:36:3d:0c:63:1d:6c:16:21:
a9:c5:c9:f8:db:6b:9e:28:dd:17:87:cc:f2:b4:59:36:51:e9:
58:aa:91:a4:0a:0c:37:7d:c4:0a:b1:95:c7:a8:08:ac:d1:4f:
f4:3d:ac:0e:6a:79:0b:c6:30:05:16:f5:a4:90:28:73:7f:92:
83:3e:55:31:3c:75:34:63:f5:8b:ae:6e:5a:ad:52:3e:8e:0a:
6c:8c:fa:ed:5e:77:f2:00:ef:fe:55:48:98:4e:78:24:54:20:
68:cb:3b:e4
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUH8CWTmS+GNhh+IVEq+MXLZTnXTkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDUzZjQ3NDYzNTRlMmFkMTVjZTdlYmQ4ZGMyMWY5NmMw
ZTVjODdjZjAeFw0yNDExMTgwMDAwMDBaFw0yNDEyMjMyMzU5NTlaMHoxSTBHBgNV
BAUTQDhjNGRlZTM0ZDY4Y2Q0MTVjZjliZmIyZDM5NjdiYWY4ZTIzZjFmZDFmMWU4
ZWI5Y2E3OTJkZjQ4NTQ2NjFiN2ExLTArBgNVBAMTJGMzMzY0MTFhLTY2NTEtNGYx
My04ZWY5LWRlNjgxYzdjOTQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOV0+lKGd4/4vhsz92uhSsLYBt51Drp2nNZYrDZLRnYMqBzUlvBtfqEp/rx0
Kp5fjxl68+NI71OmsMworudqbzzYF55K7cme195ypBeqC2gFcfNgEVA1pMqmRKw/
cVGFd9CPQUot/GMuKV2gJuKlz3O7LybfgsaSagbeQ9zyaEp7qsdttxysZKCAeFSe
XxPw1T5z33DZLFivCRNlJIxVwFQt6b3ud3k3YAdP5LTWPPIutk9GM6Lt0w+L6tiE
zFB5vczsVHdpSQ6uRsSLqh0d6Ha1m9iWArjKVlJ/ImW8TRi+KxIL7YHn0pdK7og6
ZBZslOLl07eRJcsn1LkudXl9vCcCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSdgQbQ
4miyHs1Za7S45WoEIYWBKjAfBgNVHSMEGDAWgBRFP0dGNU4q0Vzn69jcIflsDlyH
zzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1JUOUhSalZP
S3RGYzUtdlkzQ0g1YkE1Y2g4OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4OGMv
NmY3ZWIwZTYtZmJmNi00ODcyLThhNzAtODM4Y2JiYTQwZTZmLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvOTY3YTI1NWMtZDY4MC00MmQzLTllYzMtZWNiM2Y5ZGEw
ODhjL19sQWk1VEhEc1FkUFlBOW5tRVQ2b2xIdVZjOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoBBXgQ
EDANBgkqhkiG9w0BAQsFAAOCAQEAcdu/z4+ADl4xqwIilRsmPP06A1Wpatw+TIGV
Xirl1lebWyYsa33uf9i+/e2LqmYnwmZQ3UwizTMfHbuMonT4CkI1btyH5VNBYYEr
N8Z3KgcUc80Gonyg9fQ79CcXtAVVdBDglJr5v1fPwozQj7MI8BEIIA18RA7cgWtJ
kM0NHJ6J03EGum5uGLkUyv9g9Ek9YujSRcReaOkrDzY9DGMdbBYhqcXJ+Ntrnijd
F4fM8rRZNlHpWKqRpAoMN33ECrGVx6gIrNFP9D2sDmp5C8YwBRb1pJAoc3+Sgz5V
MTx1NGP1i65uWq1SPo4KbIz67V538gDv/lVImE54JFQgaMs75A==
-----END CERTIFICATE-----
Generated at Thu Nov 21 02:11:39 2024 by rpki-client on console.sobornost.net