Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
File: 05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa (raw, json)
Hash identifier: 7H4XGntMwJdpsu4S01bzkQ7rYbCwzit85xMjkmgu3bw=
Subject key identifier: 60:56:F2:D5:E9:CF:17:E0:1F:0A:03:C3:3D:E9:08:4A:2D:A2:83:9E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 32D86E63056029D39B24B005DFEA014B5C335238
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
Signing time: Wed 05 Mar 2025 16:41:17 +0000
ROA not before: Wed 05 Mar 2025 16:41:17 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:8050::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:d8:6e:63:05:60:29:d3:9b:24:b0:05:df:ea:01:4b:5c:33:52:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:41:17 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:a0:fe:43:eb:9f:68:06:0b:53:41:ae:2c:
dd:5e:98:22:bd:9c:d6:22:e0:2b:64:cc:0a:e3:3e:
e6:1b:c8:e3:f0:42:ab:26:b0:25:89:18:ed:60:5e:
da:fb:7b:01:02:32:7e:19:0c:0a:06:e8:c6:40:23:
68:93:fd:c3:8d:e9:9d:5f:32:a0:40:cb:b5:4f:e2:
56:65:34:86:4f:74:f5:51:33:76:66:48:02:b6:8a:
07:46:9a:d6:a1:d2:99:4e:9c:24:8a:a9:28:62:86:
b3:cb:7e:89:ca:e0:f7:7a:fc:38:23:17:38:52:df:
ee:4e:72:b7:00:31:ad:22:ea:5e:d2:13:6b:a7:4c:
c8:20:4b:c5:cb:c2:e7:4a:08:b3:87:ca:4c:7a:82:
13:f3:77:c6:03:7f:84:7b:00:99:bd:4a:ca:1a:08:
a9:7e:32:33:b8:f1:b7:3d:94:c3:f5:c9:70:58:e4:
c0:c5:ff:64:f1:2a:12:bb:14:84:8d:2c:54:f6:fa:
9f:eb:d2:25:9d:4d:83:ae:de:7a:a5:94:92:02:a5:
ff:a0:26:04:b1:98:c9:94:7f:f6:80:53:a3:e0:ed:
d9:14:b3:94:8c:b9:d2:56:72:d0:d1:20:19:08:05:
d8:c5:59:0c:5b:50:19:d8:c5:78:20:9d:b5:5a:5b:
65:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:56:F2:D5:E9:CF:17:E0:1F:0A:03:C3:3D:E9:08:4A:2D:A2:83:9E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:8050::/48
Signature Algorithm: sha256WithRSAEncryption
15:a6:ed:c2:dd:e5:c5:36:05:3e:e4:20:7a:72:1f:dd:55:05:
d9:32:84:a4:fa:87:c2:d0:39:dd:ee:24:2c:f4:cf:e6:41:d1:
75:48:29:2b:14:b2:1c:33:44:5e:38:ab:01:e6:4b:de:47:04:
81:93:47:4c:09:bd:43:b0:62:6a:95:9f:4c:37:1d:d4:f2:33:
65:ff:5b:50:13:57:31:91:d0:9f:b9:0a:b9:e6:8f:4f:6b:83:
1a:2e:37:bd:af:67:07:fd:e7:53:c9:d4:7e:f6:ee:fd:9c:d0:
1c:ba:bb:99:92:a4:07:6f:bf:8a:f3:37:1e:31:af:f6:ca:6e:
20:61:6a:e9:4f:41:d3:b3:77:d3:ae:bc:1e:ce:79:79:37:cc:
c1:32:c9:d6:53:6f:1e:00:6e:43:fd:09:8a:24:60:f1:78:20:
95:1c:f1:7d:d3:a8:ff:7f:d4:81:26:c5:c3:9f:3a:dc:42:ec:
6b:aa:22:de:69:3d:22:d2:59:bf:c0:4c:92:f6:2f:77:29:17:
e6:61:ca:bb:2d:07:59:b4:f8:a3:0d:a8:76:c7:cd:0d:37:ed:
18:3a:0b:10:02:ab:e0:da:c2:b7:5f:56:2e:43:e6:1e:b2:2c:
24:24:20:f3:43:16:58:2f:45:6c:98:f7:01:c2:64:22:b2:cc:
1b:30:c9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:37 2025 by rpki-client