Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14a1cb35-92d7-4bc2-854c-094a3829c73e.roa
File: 14a1cb35-92d7-4bc2-854c-094a3829c73e.roa (raw, json)
Hash identifier: sLkOf1UzPETP2sTOExBOY5dI8iSdsV2PQJsKZsr4D3w=
Subject key identifier: 24:CE:2E:D8:AA:C7:10:9B:5F:4C:F8:7B:A6:F4:EA:AE:5D:41:44:8F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 70871848EA166EC0CB888FC4E9DCE5AED6EE98E1
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14a1cb35-92d7-4bc2-854c-094a3829c73e.roa
Signing time: Wed 05 Mar 2025 15:40:10 +0000
ROA not before: Wed 05 Mar 2025 15:40:10 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:8040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:87:18:48:ea:16:6e:c0:cb:88:8f:c4:e9:dc:e5:ae:d6:ee:98:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:40:10 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:bd:cd:3a:72:c0:10:18:68:ae:11:79:84:a7:
cd:2e:a6:b7:c0:ab:50:91:36:29:31:db:43:7a:10:
81:b3:6f:78:8f:ee:39:7d:81:39:a2:06:45:29:29:
58:38:7a:9d:cd:36:a6:26:c9:d2:e1:48:e1:ad:de:
0b:9b:ba:e9:e0:1e:ae:3b:53:d0:6c:53:3d:fb:cb:
5d:e6:99:6f:e7:94:00:04:ad:7d:8b:05:49:af:d5:
9d:4b:3d:3b:b2:bf:67:bf:5e:ce:27:24:e7:e6:1f:
72:5d:13:35:f0:c3:09:72:85:da:4e:7f:88:34:3b:
58:1c:d2:c1:bd:c0:be:e7:b5:84:92:b9:c3:f8:cc:
e8:eb:4b:71:9b:2e:f2:1e:d3:b4:b6:62:fb:67:46:
f7:f8:30:83:b9:88:55:71:5a:ff:0b:a8:84:f7:25:
98:e5:37:b5:3e:7e:9f:90:86:11:03:ea:f3:24:97:
25:cd:7b:d7:ed:fb:23:5f:a9:83:73:2f:be:a8:54:
e4:98:c2:03:56:d4:38:11:ab:0e:92:23:50:76:09:
d7:eb:27:9e:cb:d4:2f:80:db:4d:8e:2a:b9:02:3d:
15:b3:30:a8:04:64:b0:0d:43:43:cf:b2:33:67:a9:
6a:1d:07:e0:6a:d2:0a:8e:42:64:0f:f0:3f:e4:02:
4f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:CE:2E:D8:AA:C7:10:9B:5F:4C:F8:7B:A6:F4:EA:AE:5D:41:44:8F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/14a1cb35-92d7-4bc2-854c-094a3829c73e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:8040::/48
Signature Algorithm: sha256WithRSAEncryption
c2:82:7d:25:d7:ae:f4:72:32:f0:5e:ba:c7:92:d4:6a:ac:a5:
52:d8:61:f0:94:13:10:4c:e9:7f:b6:20:d7:cc:8b:d8:f7:d0:
ba:73:4f:37:ab:38:e0:76:1c:cc:2a:32:6e:5b:fe:64:b8:4e:
2f:ee:d4:06:84:17:86:2c:36:98:8b:2f:39:e0:97:fc:f6:20:
18:a8:70:b1:1f:72:56:7b:cb:a3:15:c1:74:cf:13:9c:4a:96:
c0:33:e3:9a:c9:08:46:dc:2c:b7:55:98:20:11:c4:c4:68:f6:
86:21:4d:41:9e:b0:f9:b2:aa:8b:9a:c0:82:4c:ba:53:7a:fd:
70:77:70:a7:ee:c7:f4:af:26:38:22:f4:ca:bb:33:9c:d8:49:
61:0c:c5:72:c8:09:f7:f2:3b:ff:bb:3d:e1:db:4f:c0:4a:56:
45:0d:a5:72:a5:04:7f:67:a9:d8:34:e5:8e:b3:8f:10:52:d9:
78:08:34:96:86:c1:da:df:40:fe:12:5d:77:bb:6f:56:00:ce:
07:94:85:71:d9:9c:e3:7b:0b:33:2f:b5:29:ff:e3:f8:98:ae:
36:25:c9:58:83:cb:99:88:57:a9:4e:96:fe:85:ac:68:35:7d:
f7:26:22:e3:74:93:ca:c7:33:bd:d9:65:09:0d:f7:07:14:1b:
0c:c5:99:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:49 2025 by rpki-client