Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc85da0f-0832-49be-86a7-ca4e42c3e0c2.roa
File: dc85da0f-0832-49be-86a7-ca4e42c3e0c2.roa (raw, json)
Hash identifier: j25Qqf+TyNL+mNd0DhKo/kFJutd49RMasNRPzx5Ws9E=
Subject key identifier: CB:95:D2:AE:DE:2F:73:FF:85:B7:0F:4C:FD:15:01:DF:65:7B:40:4B
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3702ECC08068960EC735360D42B308CEB4FD7C63
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc85da0f-0832-49be-86a7-ca4e42c3e0c2.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.76.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:02:ec:c0:80:68:96:0e:c7:35:36:0d:42:b3:08:ce:b4:fd:7c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=37a30145bb17e4783f46fbb061b03e989dfa14e85ed3d758e080188d2001f832, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:89:c8:91:04:12:f6:fe:e4:74:01:e3:7a:df:
1b:9d:a2:24:69:29:63:74:c3:a8:33:ba:03:bf:8a:
de:11:00:0e:04:60:10:18:14:9e:fa:c5:bf:c6:60:
42:30:da:2e:99:26:16:bf:81:ae:b7:8f:8c:cc:8d:
da:6a:34:f0:ac:6c:e6:ad:2a:cd:e1:a9:54:fa:ec:
6b:fe:c7:bd:cf:71:f6:ec:8c:e2:e9:e7:e9:ec:b3:
e8:68:52:4d:e1:f9:7b:c9:96:e8:21:f3:39:ad:a8:
ce:3e:b3:07:16:e9:bc:9c:28:42:48:93:51:a3:7f:
42:51:ae:e6:cc:36:ff:fa:1c:3a:fa:a7:02:4a:9a:
06:cd:8e:37:94:d9:32:a2:df:9d:fe:23:a3:eb:7c:
ba:1a:a1:40:07:77:57:32:ec:25:8b:4e:2d:69:80:
01:be:d0:1d:48:2c:30:f3:0d:53:3b:d8:38:58:e8:
fb:5b:55:97:83:f3:d8:b0:f7:58:4c:4b:e2:a2:49:
eb:da:8f:bf:8e:ba:e3:ad:55:bb:c2:da:ff:fa:a5:
7d:19:8f:1b:9b:25:9b:02:da:ec:6e:9d:c3:8f:e3:
17:18:09:d7:6e:6d:3e:95:8c:6b:53:86:6d:34:1f:
87:50:b5:65:57:1a:ef:c3:89:3b:a3:3c:0c:53:23:
4f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:95:D2:AE:DE:2F:73:FF:85:B7:0F:4C:FD:15:01:DF:65:7B:40:4B
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc85da0f-0832-49be-86a7-ca4e42c3e0c2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.76.0.0/16
Signature Algorithm: sha256WithRSAEncryption
78:56:dd:20:0a:db:c4:7a:2c:2c:19:49:b9:2b:d3:2d:30:0c:
f1:41:34:58:fb:5d:cb:c7:81:9a:61:24:69:d7:77:da:9b:7c:
29:c8:39:bb:3b:91:f2:bc:08:a9:f9:6f:46:6c:6e:46:66:35:
a0:45:23:9c:9b:18:5a:2c:68:b3:13:4b:b8:11:cc:4e:92:be:
96:9c:6d:9f:06:55:1a:6c:4a:ba:91:3f:b5:87:45:e8:c6:40:
58:16:86:9c:cc:cd:9d:29:fa:0f:c6:c5:8c:1b:6c:1a:cf:ec:
29:cd:f3:a2:cf:df:5d:87:a4:1a:a7:cd:31:89:cd:ac:58:95:
6b:ec:27:bc:bd:96:4c:27:83:7d:a2:c2:69:e8:3f:ab:20:91:
ae:23:2e:3a:8d:af:57:7b:c3:ff:dd:8d:6f:7a:aa:fa:d6:bb:
a2:28:34:d6:75:e6:66:e0:5f:d4:ab:6e:e5:3f:24:88:63:fe:
1a:f4:38:75:13:30:68:ff:be:2f:82:97:21:81:9e:84:94:2b:
71:50:5c:3b:02:c7:05:bb:74:ab:80:31:9b:50:64:2d:52:17:
2c:5f:09:90:83:5b:ba:d0:4a:45:30:69:4c:28:68:46:45:e2:
7e:11:26:05:41:a1:6e:ce:23:39:f0:74:23:de:a1:f3:4e:c8:
ef:68:39:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net