Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/dbcb975b-22d4-4912-ae03-ce7b0158c404.roa
File: dbcb975b-22d4-4912-ae03-ce7b0158c404.roa (raw, json)
Hash identifier: 8AoLh1slyJoR3UyN77sPMKn3UJHv+Bmv7REPw3lCmKA=
Subject key identifier: 6A:BF:17:AA:3B:23:5C:D4:EE:4C:3C:72:F0:EF:06:37:AD:BC:BB:52
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 76886DAD5D98B3DA2BB79C11ED58EE5D455BCE09
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/dbcb975b-22d4-4912-ae03-ce7b0158c404.roa
Signing time: Fri 08 Nov 2024 00:00:00 +0000
ROA not before: Fri 08 Nov 2024 00:00:00 +0000
ROA not after: Fri 13 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 185.48.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:88:6d:ad:5d:98:b3:da:2b:b7:9c:11:ed:58:ee:5d:45:5b:ce:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Nov 8 00:00:00 2024 GMT
Not After : Dec 13 23:59:59 2024 GMT
Subject: serialNumber=798e0e5cc9d1bea6a330f66e8b6eced4a4c09a8bfd0c8949c830b1c7a43af8c1, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5a:05:c6:80:ef:72:05:e5:49:08:d0:01:1a:
2b:fb:6b:94:ce:99:bf:6c:a3:ef:5a:62:a7:52:d1:
60:a1:17:c5:34:88:80:83:d3:02:07:89:8f:8e:5a:
f0:fa:03:24:67:a2:b4:4e:7f:2a:e7:ce:43:8a:0b:
af:b1:b7:41:07:25:24:f1:d0:a1:f4:1c:fe:fe:69:
8d:5b:25:04:bb:59:52:ad:8c:45:37:66:e3:a7:d6:
d0:c3:d2:3a:e0:b7:23:8c:5d:14:4e:a6:e1:81:64:
80:2b:1a:0a:c2:f6:26:fe:18:b8:56:de:28:15:fd:
08:a6:32:e3:15:67:d2:ff:ea:48:f0:01:f4:df:a0:
68:54:a4:c6:63:4c:35:8c:95:ed:45:10:11:2a:76:
f1:9d:69:60:28:20:52:71:2c:22:50:57:a1:75:4d:
42:5c:47:08:3e:6a:d3:3f:1b:29:0e:e0:59:ad:88:
91:63:b0:da:1b:07:e2:00:a1:b7:6b:0d:eb:5e:05:
bc:15:d8:92:0b:e6:0b:86:48:fc:80:51:25:69:6b:
0c:68:ca:bd:24:e5:31:8a:d5:b3:89:e4:73:d3:10:
fe:05:73:98:68:07:0c:3b:a0:49:69:84:d1:31:79:
40:1c:1e:c9:4f:f2:c4:2e:f4:26:f0:40:e5:61:e0:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:BF:17:AA:3B:23:5C:D4:EE:4C:3C:72:F0:EF:06:37:AD:BC:BB:52
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/dbcb975b-22d4-4912-ae03-ce7b0158c404.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:68:6a:f0:ff:02:63:5f:04:09:e7:bb:dd:52:f4:7a:2c:91:
92:2c:7f:a6:f3:22:5b:b5:2f:ce:56:d5:7c:86:0a:6c:21:aa:
61:f2:18:82:99:bb:79:ab:96:32:a7:73:6c:a0:5e:5a:13:9e:
c3:34:71:a0:39:77:fe:54:86:f3:fc:16:5d:09:f9:e0:33:a1:
df:66:d7:1f:36:5f:08:90:80:46:b0:8f:d8:83:17:32:65:f2:
8d:38:4e:07:b2:29:8b:5e:82:81:0f:4c:a0:0b:a4:d2:ab:5d:
bd:5d:be:f2:00:c4:fc:43:9c:db:48:4c:3c:d7:3a:6a:21:cc:
08:ff:d3:8c:65:ba:0e:40:fa:c3:e3:8a:76:fa:41:86:34:b8:
ae:1a:f8:40:2d:a1:53:1c:10:c5:c5:37:54:77:d0:16:c5:ba:
1b:9d:0e:8f:4d:62:88:eb:39:71:b0:e2:57:67:26:76:62:f5:
25:c7:42:66:12:0c:f9:4b:0f:25:bc:11:36:9c:4b:50:36:2c:
06:d6:ab:0e:54:77:bb:57:17:4d:e8:7a:4c:99:1b:ff:ca:8d:
ec:4a:39:99:ec:42:60:50:92:6d:8f:76:cf:a1:e6:bd:b5:5c:
6c:dd:6e:46:e3:c1:51:dd:5b:54:53:08:18:5e:51:99:cd:2d:
19:07:12:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:11:43 2024 by rpki-client on console.sobornost.net