Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
File: 82037871-73f4-40ba-be5d-495a41d85184.roa (raw, json)
Hash identifier: YRDGtvmyRzHRKysaUEDg5JLOLG8F0OjYl24WlXohyY8=
Subject key identifier: 3C:63:CF:04:19:0A:34:2A:95:38:22:70:A7:1F:6C:F3:3B:DD:A4:31
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7AFC9D573A4AD4F712726CECDEFA64690E2ABB60
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
Signing time: Fri 11 Apr 2025 00:40:15 +0000
ROA not before: Fri 11 Apr 2025 00:40:15 +0000
ROA not after: Fri 16 May 2025 23:59:59 +0000
asID: 7224
IP address blocks: 46.51.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:fc:9d:57:3a:4a:d4:f7:12:72:6c:ec:de:fa:64:69:0e:2a:bb:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 11 00:40:15 2025 GMT
Not After : May 16 23:59:59 2025 GMT
Subject: serialNumber=b14a00b346fb6c1f45863c6ef364c49889c10f8dd0c165cf3dee42ecc7b47405, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:c6:3a:bd:39:11:d6:9d:b2:01:b5:17:01:
cf:40:f1:02:d2:f8:c0:cc:74:f8:d9:6e:ea:43:ec:
82:e4:47:6d:f5:90:39:44:6b:b2:61:e9:78:d0:69:
9d:00:41:ed:f8:ba:bf:21:c6:c7:ed:09:b5:c0:5c:
06:ff:b1:17:fe:fb:72:f4:91:67:fb:0a:5d:7e:09:
24:6f:32:79:0b:0f:a5:17:f8:10:52:5e:ef:93:d2:
c4:9c:ea:5d:fe:ba:57:b8:66:71:2c:0e:30:0f:1f:
a7:d5:f6:ed:cb:3b:16:78:d1:0e:1e:9a:2a:c3:4f:
a6:d4:f3:e1:2b:ce:82:23:67:6c:7d:df:0c:ae:c8:
53:ec:6f:3e:59:ec:b9:f5:77:0f:a0:64:34:e3:88:
a7:a2:87:ae:98:15:22:2f:9e:d3:c5:4e:a9:0a:03:
b4:26:ed:6c:92:dd:c9:af:80:bc:ce:d2:02:aa:59:
63:b3:d9:1a:68:98:0f:d5:9c:33:3a:98:00:f2:90:
27:41:76:98:82:dd:a4:3d:b0:3c:8a:15:b2:d9:79:
20:f5:b4:df:97:c2:be:0f:4e:53:0e:20:4f:6c:99:
af:21:5e:7d:b5:87:5c:ce:a8:d7:ff:95:cf:6e:60:
5f:b5:15:ea:a5:9f:63:c6:8e:93:81:83:0f:82:83:
2e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:63:CF:04:19:0A:34:2A:95:38:22:70:A7:1F:6C:F3:3B:DD:A4:31
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/82037871-73f4-40ba-be5d-495a41d85184.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.51.212.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:a7:a9:56:d7:3a:d5:03:1e:79:b6:89:05:9e:01:8b:d1:b7:
0b:f7:31:76:71:fa:f3:16:e4:b1:e4:b3:fa:c4:7d:3e:3a:5f:
64:7d:e4:1f:9e:65:07:00:64:8d:04:54:6d:ce:67:74:38:0d:
65:33:06:11:97:ee:19:6c:c4:78:12:bb:89:f9:b2:a0:53:7e:
bb:44:8b:d3:e9:3d:f4:4c:59:1d:b9:9e:00:54:d0:8d:19:8c:
d4:5e:3d:c6:2b:90:10:a9:46:c2:51:30:6c:d5:1b:0b:88:95:
9e:3e:24:24:5d:c4:35:8c:e4:eb:e8:93:b0:fe:c0:38:0b:f6:
1a:c4:d8:e5:c8:bc:94:61:90:60:b9:0c:ac:0d:c9:d9:7a:b4:
41:c3:14:3b:82:ce:92:de:fd:a1:30:66:d8:7c:54:5b:94:c9:
2d:44:e0:b2:1b:81:f5:49:bd:d1:46:a3:2e:4e:17:3e:16:d8:
de:1a:dc:ce:b8:63:59:d4:07:8c:65:17:66:31:0e:8a:29:c1:
35:b7:54:98:0d:2f:ab:18:36:03:25:92:8d:01:b7:7b:ad:2e:
c6:f0:30:78:5b:15:b1:ff:c2:d3:d3:68:33:15:bf:f8:85:fa:
40:2b:62:4f:e4:17:60:af:ea:10:c4:69:9c:21:2c:cd:b7:21:
c8:e8:3c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net