Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a13a493-9332-42c9-85c4-fb9d6b0fc03e.roa
File: 4a13a493-9332-42c9-85c4-fb9d6b0fc03e.roa (raw, json)
Hash identifier: TB43uUO8eC2ug0TxNIBdKeSLRGEiizscaoENf1sjpf0=
Subject key identifier: 4D:33:B1:DC:1C:6A:F8:4D:59:82:78:3F:D3:36:8B:0E:25:CB:AE:99
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7801089561D58105A6EF71260D82EBFADC9DEE9D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a13a493-9332-42c9-85c4-fb9d6b0fc03e.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:01:08:95:61:d5:81:05:a6:ef:71:26:0d:82:eb:fa:dc:9d:ee:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: serialNumber=29b208cd48be7632ac6125ec79e30d15e9c36dc5b748f49124aaafd60402afd0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f1:dd:5d:36:9c:81:c8:69:fb:80:1f:74:17:
48:d9:e6:0c:f9:5c:85:95:b3:f0:9a:f2:da:53:aa:
96:60:2c:f1:63:8a:92:bb:ef:4a:cb:1c:8f:9c:e2:
2e:db:d8:1b:4f:26:52:ac:79:ec:a2:d5:e4:3e:a0:
81:19:96:54:a2:60:bd:2b:f0:bf:98:88:25:e4:66:
12:b8:13:11:a1:09:bf:0d:75:9d:7a:59:06:55:01:
8b:62:c0:47:a6:8d:39:2e:73:ea:83:bd:4d:b3:45:
2e:51:73:8b:6e:f7:2e:c0:f4:05:e7:a4:9e:39:67:
fa:94:6b:ee:58:cd:a5:68:af:aa:95:7e:02:67:da:
6f:2f:f8:51:b3:c7:70:9a:6f:24:be:7a:26:1c:df:
bc:38:44:c4:20:4e:bd:69:2c:4d:3e:93:df:88:66:
19:5d:68:38:0a:f4:dc:1a:cd:95:da:c3:3a:1a:5d:
96:be:df:1f:83:a9:12:c2:7d:11:59:e0:ca:32:0e:
1f:29:a6:64:25:35:b8:f6:78:95:84:01:0c:57:82:
7d:30:dc:a4:31:bb:67:10:ce:cb:6b:2b:4f:1f:2f:
f2:7c:31:2d:5a:a8:d8:9a:f8:f2:2b:9c:a1:4f:6b:
c9:d5:8b:ec:8e:8e:b0:a5:61:33:13:e9:ab:dc:4c:
5d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:33:B1:DC:1C:6A:F8:4D:59:82:78:3F:D3:36:8B:0E:25:CB:AE:99
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a13a493-9332-42c9-85c4-fb9d6b0fc03e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.0.0/16
Signature Algorithm: sha256WithRSAEncryption
be:01:eb:50:9b:99:52:35:95:04:4d:8a:30:92:8e:d9:67:ec:
48:fd:b8:f5:0c:36:34:b8:50:a8:00:6b:dd:24:b1:6e:a4:7f:
ac:1e:48:32:05:db:4b:c1:b3:bc:d4:83:7b:05:89:21:a3:28:
81:5b:fe:3f:df:f0:18:2a:e5:b8:df:e7:5c:e2:3b:82:dc:86:
e3:1f:35:b3:32:8a:6c:49:d6:31:8a:b5:4e:b0:cf:21:6c:11:
54:c4:4f:9e:9a:b5:3a:e3:12:18:63:6d:e6:97:e8:4f:85:f0:
55:b1:6e:cd:b7:a1:55:e4:d9:88:26:e0:e1:05:65:07:86:d4:
c0:60:65:a6:7b:ff:27:07:8b:2a:f7:3b:a0:50:4b:b6:37:94:
b6:25:15:6a:0f:aa:8d:1e:0b:06:7d:1b:af:7a:59:c2:be:47:
94:39:3e:90:10:37:e5:c3:87:10:c9:92:fb:b2:5c:35:37:56:
52:82:cf:4b:65:4f:17:a8:c7:40:44:6b:49:16:10:e2:a5:80:
98:5a:a3:f2:5f:76:8f:55:60:a2:71:75:bb:8f:c9:64:23:9b:
b3:94:b0:8c:64:c1:cd:03:7c:51:b2:36:a3:33:f6:3c:ab:08:
bc:58:e9:6f:2c:c0:91:4f:9e:cb:27:b0:96:27:6c:7d:65:84:
4c:62:32:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net