Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e5242553-2ce0-44b9-a44b-832a808bc6b1.roa
File: e5242553-2ce0-44b9-a44b-832a808bc6b1.roa (raw, json)
Hash identifier: wjBzd2PBv5H0rFH3lq9JhF7NmsgxOa3zWfj3byD/ooI=
Subject key identifier: B2:C4:24:EC:55:15:B9:E9:7E:85:92:FC:F9:04:E7:D6:81:95:D5:2C
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 3D069EA6DC5283BAF4AD2C509A686596013411DC
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e5242553-2ce0-44b9-a44b-832a808bc6b1.roa
Signing time: Fri 06 Dec 2024 00:00:00 +0000
ROA not before: Fri 06 Dec 2024 00:00:00 +0000
ROA not after: Fri 10 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 51.70.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:06:9e:a6:dc:52:83:ba:f4:ad:2c:50:9a:68:65:96:01:34:11:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 6 00:00:00 2024 GMT
Not After : Jan 10 23:59:59 2025 GMT
Subject: serialNumber=c3fe58673a684b957be15cea84e90670316bf4d729b4ee2a9ceafab3cc28662e, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:51:41:1e:0b:02:81:94:61:8d:7a:e5:43:
f8:e5:5e:00:f1:31:3e:b8:fe:96:71:af:48:e6:53:
85:8e:93:63:86:52:6d:87:4a:73:c9:c0:1b:90:3f:
26:63:52:88:20:5c:0a:9e:4f:b0:d4:b0:df:15:77:
a5:25:2c:f8:0f:2b:a6:00:cc:cd:a9:28:09:c4:be:
10:44:9b:0c:3d:1f:ce:42:64:95:e0:c1:7b:5a:37:
99:05:d3:38:1f:d4:ea:ec:0d:d7:1b:da:8a:79:27:
2f:04:c3:ef:4b:e5:1c:eb:74:19:1d:17:f3:e6:63:
4a:41:4a:75:20:b2:12:4f:37:a4:09:9b:bc:36:cd:
44:cc:7e:63:82:74:08:60:f5:d8:20:95:98:ef:bd:
c3:96:bf:18:04:77:9f:5a:22:25:77:9e:78:d9:4a:
a7:5c:07:65:2f:60:be:11:4d:ec:f3:b4:df:8f:40:
46:6f:9b:04:8a:a1:2e:27:e1:e0:d4:8f:c1:7c:a7:
19:9b:f9:88:3d:7d:e9:5b:28:ca:ef:6e:c4:3c:1a:
36:4b:9c:ab:f7:ec:11:82:2f:76:52:62:b9:1f:1c:
85:89:a3:ee:c7:7d:5f:8f:c2:6f:98:94:d0:09:b1:
b2:1b:81:08:b8:9f:86:da:24:3c:c4:f6:b7:b1:3b:
4f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:C4:24:EC:55:15:B9:E9:7E:85:92:FC:F9:04:E7:D6:81:95:D5:2C
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e5242553-2ce0-44b9-a44b-832a808bc6b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0f:63:8c:6b:b2:9b:b5:0f:a0:25:5e:b0:ed:44:ba:02:62:f8:
0b:9d:12:27:ee:1a:b0:44:68:6e:89:99:7f:60:42:e5:f5:cd:
9f:e2:81:87:63:74:8e:34:d4:7b:3b:a3:57:55:39:5f:80:1b:
9c:92:3f:2d:39:9f:88:ec:fb:73:9d:3a:ec:a3:49:fc:0a:61:
7f:28:62:78:68:95:3c:c6:95:fc:7a:a9:fb:ed:13:be:c1:34:
78:50:18:50:e4:17:f3:29:8f:5b:b9:28:d8:90:f8:82:16:60:
5e:1b:d7:89:d1:7c:ed:19:a1:e9:7f:ea:6d:ee:46:7a:01:8f:
e2:6f:91:5d:e1:12:c3:86:bd:c8:0a:56:c7:de:51:aa:98:bb:
5f:bc:63:ed:db:3b:b0:a8:17:9b:d7:fb:60:a9:84:43:90:56:
ee:a2:bb:a6:94:8c:93:ad:de:a2:ec:fd:18:0a:c7:29:b1:cf:
b8:99:63:2b:55:4a:61:48:af:cf:19:2f:46:61:1a:9f:38:3d:
34:fb:70:67:45:01:2b:7d:ec:a4:ed:ef:4a:70:42:21:3a:f5:
e2:e2:94:a8:62:aa:e4:7c:8b:57:99:27:42:a3:a8:ad:ae:b3:
f8:8f:03:f7:ef:5f:eb:3a:20:da:a0:ad:97:b4:3d:fc:90:6a:
99:52:91:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net