Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b2e309e-e9d4-4546-8969-2d7b4b9d513f.roa
File: 0b2e309e-e9d4-4546-8969-2d7b4b9d513f.roa (raw, json)
Hash identifier: PBh9ywsu2huh6FQ9sU6oop017kXgZ+Do+XaTMbcbVkQ=
Subject key identifier: 60:E7:37:FF:BA:4F:9F:2D:DA:F6:A3:B2:A9:57:47:57:F9:0A:B7:29
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4D8D52B80D347886F464A2BC9C37CE2ADC4E15DF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b2e309e-e9d4-4546-8969-2d7b4b9d513f.roa
Signing time: Wed 05 Mar 2025 15:30:15 +0000
ROA not before: Wed 05 Mar 2025 15:30:15 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:10c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:8d:52:b8:0d:34:78:86:f4:64:a2:bc:9c:37:ce:2a:dc:4e:15:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:30:15 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:eb:fe:a1:a4:53:1c:68:56:d2:d4:1e:72:69:
a6:12:3f:37:e3:00:7b:06:7e:35:71:c5:24:ed:9d:
53:68:85:2d:a6:5d:14:90:b7:ac:6d:60:65:08:31:
25:11:d5:b1:20:d2:13:8a:b6:75:7c:65:14:4b:2d:
fe:8a:86:9a:92:1c:e8:a6:a1:30:64:b3:f0:79:f1:
7b:ad:b5:ce:81:69:11:f0:ea:be:89:5e:bc:04:0f:
20:8b:83:ee:60:a2:93:31:d2:df:74:75:e6:ea:31:
c5:a3:ae:76:dc:25:7f:76:f3:87:9c:8f:e7:49:49:
2a:e9:f7:d4:14:25:41:a8:60:37:66:94:88:49:72:
6e:8f:56:43:0d:cd:06:ea:87:c7:00:d2:6f:58:9d:
ae:0d:a1:0a:fa:d6:f7:8c:7b:91:06:97:24:a5:85:
8c:9a:c6:30:06:16:a0:53:94:57:07:78:dc:f5:42:
e7:55:ee:ea:29:a5:38:b9:4a:2a:f3:0f:5d:dc:da:
5b:e6:92:9c:70:df:d3:0a:9d:ff:6c:1e:2a:6c:28:
03:af:da:8e:4e:bb:90:31:92:81:4f:d9:0f:0a:ed:
91:e7:76:28:e3:10:84:69:75:53:bf:59:62:10:b4:
ea:55:69:ec:6c:cd:e7:71:bd:ad:ce:9a:22:ac:4b:
41:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E7:37:FF:BA:4F:9F:2D:DA:F6:A3:B2:A9:57:47:57:F9:0A:B7:29
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b2e309e-e9d4-4546-8969-2d7b4b9d513f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:10c0::/48
Signature Algorithm: sha256WithRSAEncryption
3f:b7:d0:02:38:e8:a0:c8:91:07:da:d6:72:0c:a9:84:e8:e1:
b7:bb:87:82:a8:69:f4:94:02:06:cf:d1:e4:e5:f2:59:1c:f3:
c7:74:6e:19:6f:dd:ea:f9:6f:cd:cb:c6:e1:48:f6:2a:cf:bf:
7b:58:68:2d:46:be:44:7c:b1:91:52:0c:da:46:7c:3a:69:c7:
b4:82:b6:2c:c4:49:6c:ea:ef:9f:e5:c0:60:05:31:3e:90:2c:
8d:18:24:ab:ab:f3:9f:e8:0d:ce:08:66:76:83:12:34:3d:c6:
6f:ef:0d:3b:a1:fe:ad:53:11:85:b3:cf:b7:81:be:bd:44:ea:
27:9d:25:0b:d8:85:3b:69:dd:be:d1:31:a7:54:f8:cb:77:6e:
8b:ea:55:36:00:e1:62:a1:fc:f8:ad:46:a0:60:a3:99:66:63:
be:bd:04:fb:d4:87:80:e4:2b:cd:38:4f:4e:45:2b:0e:94:ef:
b3:d1:08:2e:4f:39:9c:ed:0f:e2:d9:98:7f:d9:f4:88:83:2b:
ef:0e:c2:b4:18:76:ba:df:10:db:ec:2b:bf:d6:fd:39:43:a7:
c1:2a:57:0b:5e:a2:64:f6:98:0e:84:9f:b5:06:24:61:21:d4:
b1:5c:6f:71:9c:38:df:0d:19:8c:4f:d3:aa:3b:d4:70:fa:ac:
98:92:af:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:28 2025 by rpki-client