Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/060d4100-8917-4547-940a-7545ce6a0fcb.roa
File: 060d4100-8917-4547-940a-7545ce6a0fcb.roa (raw, json)
Hash identifier: Icdaz+V32/lH/92Q7tuZIuAn5achlYy6tV08XpB/9GU=
Subject key identifier: D2:7B:E0:1D:23:7D:F1:4B:6D:5D:3D:8A:ED:B7:11:44:38:09:57:6A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1CBD17D3CF1C5EAAAE06B8450564525A8C70736A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/060d4100-8917-4547-940a-7545ce6a0fcb.roa
Signing time: Wed 26 Mar 2025 19:22:02 +0000
ROA not before: Wed 26 Mar 2025 19:22:02 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:880::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:bd:17:d3:cf:1c:5e:aa:ae:06:b8:45:05:64:52:5a:8c:70:73:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:22:02 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f0:58:88:b7:44:07:27:91:1d:c6:61:b5:3e:
83:7a:30:87:ce:e0:3d:65:09:9a:27:73:a9:68:d7:
12:e9:3d:77:7e:38:cf:05:d7:9c:60:7e:4b:ec:bf:
75:d3:b5:6e:19:0d:a2:69:45:ad:04:38:7c:8e:a0:
f1:dc:fa:0f:b9:c4:ae:8a:59:53:ad:4f:09:6f:f8:
40:56:b5:da:70:0e:b9:80:58:13:48:30:8d:cf:5a:
ae:39:0a:01:cf:f0:41:9d:d2:5f:e7:ed:06:ae:bf:
fc:cf:b4:5d:3d:3e:49:5d:d4:29:dc:6a:1e:06:68:
2d:0c:f1:82:d4:b6:93:ae:57:04:07:f3:d8:e2:75:
17:be:80:6f:27:f4:a0:20:7c:7e:bc:9c:08:3a:77:
94:64:c0:de:0a:d0:ec:a0:07:15:5b:d1:34:e9:5e:
4a:6c:64:29:82:e6:00:20:c3:85:d5:e6:bd:de:34:
7e:f5:fe:8f:e7:e6:c0:86:02:95:ed:11:c1:aa:1d:
fc:3b:47:df:ba:7b:d9:96:6f:c6:b2:10:71:37:f3:
02:63:00:fe:1e:d5:62:c9:27:3c:93:4f:17:26:7c:
b8:d6:63:db:c9:27:a2:6d:64:11:5e:5a:9d:7e:22:
47:78:43:a7:ab:99:21:fb:3b:64:0e:f2:c1:42:a6:
e6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7B:E0:1D:23:7D:F1:4B:6D:5D:3D:8A:ED:B7:11:44:38:09:57:6A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/060d4100-8917-4547-940a-7545ce6a0fcb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:880::/46
Signature Algorithm: sha256WithRSAEncryption
74:83:30:d7:0c:04:74:91:05:ac:8a:99:5c:19:1a:0b:1d:68:
76:61:18:44:e4:38:c5:96:33:bd:23:86:05:a4:36:fe:ab:1a:
93:eb:e0:cb:a4:ef:98:ad:e4:bf:88:cb:f8:a8:17:46:f2:dc:
75:52:7b:21:93:72:9a:73:89:fb:d5:59:f4:26:3f:ce:d3:e4:
1c:ce:cf:df:d0:19:c8:be:56:08:94:7d:65:ec:dd:30:2d:60:
04:18:f1:1f:f8:eb:c1:e7:b5:8a:e1:dc:fb:37:cb:ea:b9:78:
b4:db:4f:76:96:1a:e6:2f:e1:7c:be:3d:08:6f:64:86:c3:d6:
86:d5:07:3d:5e:a1:e4:5c:06:7b:93:54:d7:27:40:ee:c4:e4:
df:35:c8:ca:ad:ac:75:31:8f:51:7a:28:f4:48:b6:e8:e2:d8:
c3:7f:3b:f6:56:05:e8:b6:45:d2:40:56:e6:cf:2e:32:05:2e:
cd:74:d1:7a:67:af:b8:f4:bd:0b:e9:bd:d2:ba:89:d3:19:fb:
5a:42:b7:04:b5:6e:9e:5a:89:15:47:69:72:a9:78:31:03:f8:
ba:71:fc:02:9e:a4:0e:51:21:d0:61:92:8c:33:71:8d:8d:ef:
fe:26:43:68:e6:ab:38:a5:cf:85:4f:64:ac:0d:88:d8:ec:a8:
57:83:87:a4
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUHL0X088cXqquBrhFBWRSWoxwc2owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMjYxOTIyMDJaFw0yNTA0MzAyMzU5NTlaMHoxSTBHBgNV
BAUTQDJlZmM3MTlhY2VhYzllMjUzMWNiN2I3YWM0ZTkxZWY3YzYyM2Q0YjExNGE0
YTRlNGQ4MzQ3OTYxOGIxOTQ5YzcxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN/wWIi3RAcnkR3GYbU+g3owh87gPWUJmidzqWjXEuk9d344zwXXnGB+S+y/
ddO1bhkNomlFrQQ4fI6g8dz6D7nEropZU61PCW/4QFa12nAOuYBYE0gwjc9arjkK
Ac/wQZ3SX+ftBq6//M+0XT0+SV3UKdxqHgZoLQzxgtS2k65XBAfz2OJ1F76Abyf0
oCB8frycCDp3lGTA3grQ7KAHFVvRNOleSmxkKYLmACDDhdXmvd40fvX+j+fmwIYC
le0Rwaod/DtH37p72ZZvxrIQcTfzAmMA/h7VYsknPJNPFyZ8uNZj28knom1kEV5a
nX4iR3hDp6uZIfs7ZA7ywUKm5vUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTSe+Ad
I33xS21dPYrttxFEOAlXajAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MDYwZDQxMDAtODkxNy00NTQ3LTk0MGEtNzU0NWNlNmEwZmNiLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HsI
gDANBgkqhkiG9w0BAQsFAAOCAQEAdIMw1wwEdJEFrIqZXBkaCx1odmEYROQ4xZYz
vSOGBaQ2/qsak+vgy6TvmK3kv4jL+KgXRvLcdVJ7IZNymnOJ+9VZ9CY/ztPkHM7P
39AZyL5WCJR9ZezdMC1gBBjxH/jrwee1iuHc+zfL6rl4tNtPdpYa5i/hfL49CG9k
hsPWhtUHPV6h5FwGe5NU1ydA7sTk3zXIyq2sdTGPUXoo9Ei26OLYw3879lYF6LZF
0kBW5s8uMgUuzXTRemevuPS9C+m90rqJ0xn7WkK3BLVunlqJFUdpcql4MQP4unH8
Ap6kDlEh0GGSjDNxjY3v/iZDaOarOKXPhU9krA2I2OyoV4OHpA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:52:05 2025 by rpki-client