Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9a80014-1059-43a6-8d7d-1ed06f9d7a3e.roa
File: e9a80014-1059-43a6-8d7d-1ed06f9d7a3e.roa (raw, json)
Hash identifier: cbmNwgjkvaHRoGOHW4NsNuAtfI0oUKN9ZC/bY5o9WxE=
Subject key identifier: CB:F2:B6:90:A5:AB:71:DD:B6:63:FE:69:77:5B:03:2D:6D:C0:54:68
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 7F29CDCB7CC3B9E3C74A2FAD179F7319389E29A4
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9a80014-1059-43a6-8d7d-1ed06f9d7a3e.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 51.214.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:29:cd:cb:7c:c3:b9:e3:c7:4a:2f:ad:17:9f:73:19:38:9e:29:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=807703cb3c7ec4acff5bf466bbc215f5a69cfe7e3d9730e9731c07f90cbcacdc, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b4:db:1f:f1:e3:5f:f7:87:5f:e2:ad:e5:79:
88:75:f5:16:cb:09:7d:75:8b:4f:d7:a9:4d:35:9f:
9c:66:a0:70:8d:4c:65:e2:ff:73:d1:af:b4:3a:12:
65:39:3c:a6:13:d7:69:b9:35:ac:d8:a2:8c:7f:06:
41:03:9e:5c:d7:22:8a:95:c6:20:76:7d:a1:de:f0:
cf:67:35:ad:54:e4:0e:91:29:7c:42:2b:21:97:84:
d2:45:ab:07:2a:c9:da:2c:c9:c0:de:d3:51:4d:f0:
56:87:a5:57:2f:88:2f:1b:c1:9c:5c:77:f3:7f:77:
d5:d2:1c:62:3e:d8:09:8a:c5:b1:a3:83:d0:93:8a:
34:74:7d:4a:f3:38:f2:e2:6a:21:8d:17:3e:8c:b7:
94:ef:3f:77:90:25:94:f5:33:8a:6b:75:04:90:c0:
d3:41:78:27:a9:ef:54:6f:cb:4b:7b:c1:c8:14:e7:
5b:dd:fb:da:b3:a2:3a:7f:7a:73:6c:c9:d9:ba:21:
a9:1a:8e:51:90:82:da:d7:ef:db:ed:81:28:4e:d5:
bd:d0:af:70:3b:82:4c:43:2a:11:c2:be:4c:12:e6:
c3:a7:05:bb:00:5f:16:68:13:67:19:1c:40:83:30:
53:b2:a2:16:6a:be:85:f8:1c:0f:38:6a:98:57:d0:
8d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F2:B6:90:A5:AB:71:DD:B6:63:FE:69:77:5B:03:2D:6D:C0:54:68
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/e9a80014-1059-43a6-8d7d-1ed06f9d7a3e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.214.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8b:a9:88:0d:62:92:58:30:b0:6b:87:44:3e:8e:3b:56:9a:73:
45:a4:da:0e:61:e9:29:c1:d2:a2:ad:95:bf:86:5d:29:97:6e:
3e:92:65:07:2b:b8:14:81:f7:98:ec:92:44:e0:a5:09:27:96:
7e:3a:77:0c:66:fa:86:f3:a0:7a:91:81:fe:c4:59:d9:42:f5:
b6:5d:18:10:39:11:6b:d2:38:01:5c:44:b2:59:9d:ed:37:4a:
9a:6d:1d:cb:fb:31:81:09:4d:4b:97:6c:ab:77:ee:f7:94:c5:
d5:08:fb:96:2b:67:3c:76:4d:72:05:a2:07:b8:89:23:88:26:
12:a4:ab:d6:bf:4b:97:e3:85:85:ed:26:39:a4:07:5c:0e:a8:
a8:ee:35:fa:29:62:00:2f:24:f5:c7:c7:6f:42:cf:f0:6a:26:
81:23:bb:46:ae:0b:30:d2:1f:99:0e:eb:fd:74:a5:8a:f1:ba:
2b:7e:ef:f7:a7:38:e7:b4:68:f8:d0:3f:a7:66:93:8e:8c:75:
94:a1:b1:ab:1b:bd:e6:da:96:91:a4:c4:47:5a:87:63:f2:45:
3b:1d:e8:c2:57:c2:cc:62:ad:ee:a1:5c:0e:2a:d5:d2:76:a1:
5b:ab:a1:0f:15:11:bd:78:1b:9c:a7:86:f0:93:49:97:ef:53:
54:d4:90:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net