Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
File: dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa (raw, json)
Hash identifier: URMcycMrhzbiHwFnG6GGTIeEHjet8EB93xfUkUyFBEg=
Subject key identifier: 0F:5A:88:15:2C:8F:13:9D:58:5C:7F:AB:DC:7F:37:9D:40:A8:5F:1F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 4D2E9F58D3A3DFFB8ADBC44843C39C91A5BDF0BD
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
Signing time: Mon 02 Sep 2024 00:00:00 +0000
ROA not before: Mon 02 Sep 2024 00:00:00 +0000
ROA not after: Mon 07 Oct 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.224.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2e:9f:58:d3:a3:df:fb:8a:db:c4:48:43:c3:9c:91:a5:bd:f0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 2 00:00:00 2024 GMT
Not After : Oct 7 23:59:59 2024 GMT
Subject: serialNumber=74a46744239b709bbac266d173a2a9ab35a73934512f24daf42cfb689cbc63c0, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3c:d3:cc:42:fc:06:54:6d:10:ff:97:ad:50:
d8:90:b8:9d:8c:5b:a2:f2:a2:5a:fb:a6:70:96:d8:
e7:aa:09:8e:70:3f:e6:8c:5b:9a:83:85:a8:f2:55:
2c:cd:e1:de:4f:8b:14:96:1a:bc:3c:05:e9:f2:e7:
64:54:08:25:73:09:21:a7:0c:38:a9:3e:0a:63:01:
16:0c:94:e7:7d:6a:47:21:29:70:72:75:37:47:b5:
67:1a:fe:1e:7c:c9:ad:e2:e0:20:70:d0:6c:a8:f5:
23:aa:d6:d9:39:f0:01:71:22:17:34:fa:d8:a6:4b:
79:f8:38:ff:72:0c:6b:e5:be:05:2a:9d:6c:29:9f:
38:9a:86:e1:22:26:24:2c:0b:33:3e:42:53:91:52:
1c:10:a8:ea:4a:de:97:67:e0:9f:c1:3f:14:96:50:
1b:9b:c3:35:52:7b:f4:c6:5c:55:e4:f7:d1:fd:1f:
20:5e:bf:69:8a:40:ab:58:71:cb:b8:f1:d0:ca:c4:
67:a1:55:58:d7:fa:81:a3:6f:73:71:8e:2f:0e:3b:
0e:02:61:a1:aa:df:3a:ec:58:8e:cc:77:42:0a:16:
48:e6:fc:06:78:82:ad:92:1d:49:66:7e:02:4a:11:
12:3c:74:e9:16:db:49:e2:36:cb:b6:21:9d:2c:7f:
01:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5A:88:15:2C:8F:13:9D:58:5C:7F:AB:DC:7F:37:9D:40:A8:5F:1F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.224.0.0/15
Signature Algorithm: sha256WithRSAEncryption
49:fd:bc:38:10:34:b3:00:75:b3:63:ee:da:ee:16:6f:b8:1c:
5e:c9:a9:2a:a1:90:3c:3f:69:a1:26:4a:de:33:1a:d6:4f:56:
92:8e:9c:f4:37:7a:a5:09:81:03:6e:b4:fd:0c:10:df:95:ac:
35:eb:06:7e:bc:d4:25:d1:1d:40:8c:5a:92:95:33:04:da:b4:
be:42:16:23:14:d0:b8:2c:8c:91:c9:ac:d1:70:07:0b:20:9a:
84:57:12:66:45:76:33:d9:9f:c9:30:bb:93:5d:d4:17:e7:16:
1c:7d:29:ed:2d:e9:78:c9:d9:e8:e5:aa:66:79:ed:00:cc:f5:
aa:c5:f6:d4:b7:6d:45:ed:53:2b:2c:22:d4:e5:db:af:0c:8f:
f3:ad:78:e1:08:bd:3c:13:d7:35:0d:5e:f3:3e:50:eb:21:91:
cc:1c:ac:f4:7a:21:ba:7c:dc:7d:f9:ea:a2:29:6c:47:aa:0d:
a8:3f:60:23:34:49:a0:1c:d6:50:fc:d1:99:a7:cc:18:9e:d5:
1d:e4:84:27:87:16:54:9f:d9:a8:5c:43:85:19:c5:1a:10:c2:
11:5b:ec:d8:b4:02:62:3d:1f:aa:c2:cf:cc:0d:87:ec:9d:3c:
e6:21:7f:63:fe:ed:25:4e:93:2b:18:eb:b7:0e:2a:a0:58:cc:
8d:e8:99:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 20:06:51 2024 by rpki-client on console.sobornost.net