Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
File: e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa (raw, json)
Hash identifier: bXthvud1GJ+OrM3++xyFjXa+FqccnyIm8T9Dmn5vbWg=
Subject key identifier: 8F:3F:D7:65:61:0D:8B:B8:9A:AA:60:A9:42:22:7E:7F:AB:EE:54:16
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 5E26B7E4461E5BF7FDF5B4AABB7D8AF3496AE74C
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
Signing time: Mon 31 Mar 2025 21:20:16 +0000
ROA not before: Mon 31 Mar 2025 21:20:16 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 193.57.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:26:b7:e4:46:1e:5b:f7:fd:f5:b4:aa:bb:7d:8a:f3:49:6a:e7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Mar 31 21:20:16 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=18b9b5d3f0403ee776b357b48aef9e333645b18624b797d5e14d4b6f743f434c, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:a3:82:5b:17:14:c3:77:5d:50:bf:2d:df:
ff:35:1f:41:e4:f9:77:37:b0:7d:79:ac:48:98:73:
34:7e:a1:0f:2e:bb:60:fb:cd:00:74:ce:12:d0:e6:
3d:c8:75:f2:64:a7:5a:0d:2c:74:ce:84:76:6f:2e:
fd:66:73:8d:2f:19:45:7b:d1:a0:be:81:3d:74:03:
fa:41:49:b5:41:11:db:c1:81:00:5b:ba:56:60:10:
99:4c:32:39:13:d3:33:75:91:44:ed:42:8d:89:92:
d2:28:3f:73:64:9e:ec:6d:65:f7:43:a4:89:8e:a8:
79:29:7d:a6:fd:8c:07:23:40:6c:ad:d0:62:bf:67:
c2:22:e8:3e:9b:66:90:c8:07:ed:57:08:9b:4c:bf:
6d:d5:d4:7f:97:9d:f9:30:93:bf:2f:fa:c5:dc:9a:
ad:f7:66:6b:60:4a:a1:01:c5:ed:d6:f1:89:36:c7:
72:2d:e7:fe:44:02:59:48:fa:c1:41:ba:de:e9:1d:
51:39:6d:7d:7c:c9:32:8c:78:f5:32:b7:30:dd:5e:
01:bf:5c:b0:65:5e:a6:27:d0:c5:76:94:55:d4:9f:
bc:69:de:3b:e5:05:38:d5:c6:f5:56:7e:03:81:15:
f8:df:71:de:8f:74:05:3b:38:1c:81:0e:ff:23:7c:
95:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3F:D7:65:61:0D:8B:B8:9A:AA:60:A9:42:22:7E:7F:AB:EE:54:16
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e680ffe7-d77c-4433-81f9-ffbf76a45a6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.181.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:1d:fb:bc:2a:5c:19:b3:d2:25:14:ef:84:aa:57:6b:b2:ed:
bf:88:8d:d1:80:22:5b:06:df:48:e6:d5:59:e4:1b:54:bc:42:
d6:1a:8d:c2:b3:5c:78:2d:99:d3:c4:1a:09:28:f0:f4:7d:d6:
0c:7e:4a:8c:76:04:17:bd:c6:57:9a:6b:bb:5b:1d:1d:81:55:
c3:22:a6:72:e7:bc:9f:5f:a1:fc:25:1f:80:d8:ec:7b:c3:05:
69:3c:5a:77:bc:22:67:fd:04:a5:67:d1:6b:8d:07:22:b3:1b:
95:45:c3:74:3b:29:3c:0e:25:17:c1:b7:eb:e4:db:79:9e:6a:
fa:9d:ca:75:86:20:8a:4a:c3:56:3f:f6:7f:c2:21:18:4a:eb:
e0:31:e4:a6:b9:2c:f1:ba:d4:a8:5a:ff:e4:e3:8b:ad:24:35:
80:c7:9a:95:29:40:80:ff:b7:2d:26:5b:2f:dd:dc:71:66:03:
34:5c:31:d9:91:fc:a7:e5:0e:16:d6:bd:c0:e1:dc:98:12:57:
11:56:1f:5b:ac:24:7a:91:d6:e9:e0:55:12:99:a7:74:d5:f0:
99:30:ab:d7:74:db:59:a4:8f:3f:a7:11:35:f1:68:2c:e1:e5:
78:5a:29:5f:24:dc:34:e5:00:99:3e:51:88:8d:c3:fd:f9:53:
db:02:fc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net