Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a9916a41-7c7f-4c1c-bcf2-b6e1b32b7dfb.roa
File: a9916a41-7c7f-4c1c-bcf2-b6e1b32b7dfb.roa (raw, json)
Hash identifier: OQpv1y7cF0pAhhHcOBCie2T0tA+iLDtw/1tXZQFlgFk=
Subject key identifier: C3:DC:0D:1F:E3:D4:67:42:75:7F:17:35:C0:72:7E:DF:DF:40:70:A6
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 2A761DED4E6258A6376089BC8952ECE87048D942
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a9916a41-7c7f-4c1c-bcf2-b6e1b32b7dfb.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.212.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:76:1d:ed:4e:62:58:a6:37:60:89:bc:89:52:ec:e8:70:48:d9:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=68061e7202e9e9e00c4fbeea07b45470dcf8de008795d3e2d55d54f9cbef325e, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:39:73:95:f4:1d:c2:e9:67:dd:11:34:9f:
fe:48:ac:db:ec:cb:d0:13:92:60:d7:d5:28:96:96:
26:73:4d:18:85:85:8e:0c:47:a9:ad:97:8a:e4:78:
e2:00:14:94:ef:c4:4a:cb:bb:7d:dd:07:67:d6:a9:
6f:7f:0d:0f:4d:db:50:79:9c:58:ac:73:1c:07:93:
1b:12:7e:be:f2:df:37:ba:b1:39:90:85:c3:18:40:
7f:4f:86:00:f5:21:c1:cc:4b:26:78:7c:0d:a0:87:
0c:35:fc:10:5d:c2:0d:98:c2:82:98:09:4e:aa:46:
00:33:06:44:c3:d6:c5:c4:f4:13:ab:07:a5:36:ce:
ce:5c:4a:f6:e5:7f:6b:ad:a7:3e:1b:a2:bf:3a:43:
2c:20:ff:56:57:af:c6:6b:7e:2b:7a:9e:06:a9:0d:
50:7c:5b:78:4e:3f:17:64:67:43:a9:be:8c:b9:b2:
48:8d:50:c6:9d:25:e5:f2:94:b5:00:f7:1a:20:73:
32:0a:53:03:68:45:6a:38:8f:3a:f7:1e:3d:6f:4a:
12:64:91:b4:b3:b3:98:e4:6c:e3:0f:0e:e2:a5:db:
d6:ea:1a:75:c7:05:eb:45:83:0f:84:6d:c6:e9:31:
1a:b6:b6:d6:55:77:5d:51:14:7b:d2:de:37:87:c7:
d9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DC:0D:1F:E3:D4:67:42:75:7F:17:35:C0:72:7E:DF:DF:40:70:A6
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/a9916a41-7c7f-4c1c-bcf2-b6e1b32b7dfb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.212.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c2:f0:e1:34:20:09:11:4c:75:72:38:5b:76:b6:6d:76:a9:a4:
d6:0e:f3:66:55:82:a2:87:8e:2b:cd:81:41:6d:29:5e:cc:ca:
d1:0b:d9:7b:59:0e:74:7d:62:7b:2d:6f:e9:f3:71:b6:40:bd:
8d:5b:68:45:2f:4e:19:57:98:15:aa:8b:db:d1:70:94:9e:c4:
2e:1b:52:27:be:86:3b:e2:5a:27:e1:0d:3c:84:b5:b1:09:ec:
47:e2:3f:f8:37:18:8b:63:4e:b8:01:8a:42:c8:96:2d:b5:df:
df:a6:36:68:7c:38:cb:7b:b2:79:63:77:64:67:37:28:2e:8e:
6a:10:17:4d:df:81:88:25:9d:e4:16:db:fe:e6:ab:64:55:d5:
4d:e6:27:db:c6:57:f4:9d:9a:64:e6:64:e0:97:33:bb:02:b0:
66:85:b4:63:3c:27:ff:cf:df:2a:11:70:94:63:b4:f1:a4:f4:
94:75:76:8d:a0:cd:76:a6:f5:94:da:2a:96:54:eb:95:80:f2:
a4:33:cc:7c:6f:64:ba:7f:a1:38:30:d9:1e:d1:d5:5a:94:b1:
c1:f6:26:b9:ba:38:5a:30:92:53:cc:b1:66:d2:27:eb:1d:1c:
91:dd:7d:8f:30:10:cd:bd:cc:bb:a5:18:c0:81:41:05:6c:94:
93:f2:bb:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net