Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/191b6a6c-2595-4848-a6b3-22a230649f67.roa
File: 191b6a6c-2595-4848-a6b3-22a230649f67.roa (raw, json)
Hash identifier: FFtJjyL+m78dLHbm+9jwGdEJZbdaR31r5K8wyn6MOW8=
Subject key identifier: A9:BC:05:CE:BE:75:EE:51:C5:9E:9B:5F:2B:DE:57:06:88:0E:73:67
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1B79E5D92D37FA84BFE10AFE5E21D2E9A96A66A9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/191b6a6c-2595-4848-a6b3-22a230649f67.roa
Signing time: Wed 05 Mar 2025 17:11:46 +0000
ROA not before: Wed 05 Mar 2025 17:11:46 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:5040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:79:e5:d9:2d:37:fa:84:bf:e1:0a:fe:5e:21:d2:e9:a9:6a:66:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:11:46 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3d:1f:f1:29:76:08:90:ce:fc:b6:d4:fb:fa:
84:f1:cd:7c:4c:79:ab:7b:a6:d1:53:d5:3d:e3:db:
90:57:3b:9c:e3:85:19:cb:91:db:05:7c:08:82:8a:
ed:c9:f8:48:a9:28:38:7c:19:18:7b:86:da:18:eb:
05:56:96:e6:e8:5c:cd:26:7d:c8:75:2c:d4:fa:df:
90:c2:a9:75:3e:c9:83:b6:3e:9c:34:53:6f:2e:56:
fd:ae:92:aa:ad:fb:f9:ef:aa:10:9b:ff:01:15:f2:
bd:db:6d:3a:04:e3:a7:93:d9:ae:3b:e1:d9:cb:25:
fc:d7:3f:74:87:24:18:19:19:bc:2f:d9:ce:77:a3:
af:b4:b4:7e:3e:eb:4b:da:61:5b:cd:bc:87:05:30:
0c:ea:cd:84:7b:6b:bb:46:eb:32:cd:39:66:d0:4a:
d0:94:91:41:8d:d2:71:be:a6:06:c6:b2:03:6f:91:
79:c8:13:b8:6b:a1:9f:5f:7d:c8:c2:d8:07:a1:32:
8e:76:da:6b:14:71:7e:dc:b4:0a:6a:50:52:67:da:
e3:44:10:ff:bb:22:bf:f7:0a:49:be:bd:27:f8:ba:
ae:10:7f:af:14:1a:92:87:fc:30:09:2c:eb:ff:a7:
de:8b:8c:55:c4:0f:d9:a9:e6:1f:6f:7e:aa:73:71:
fa:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BC:05:CE:BE:75:EE:51:C5:9E:9B:5F:2B:DE:57:06:88:0E:73:67
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/191b6a6c-2595-4848-a6b3-22a230649f67.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:5040::/46
Signature Algorithm: sha256WithRSAEncryption
85:89:57:35:91:c4:ab:2f:1c:21:24:8c:a4:e7:19:b3:8b:f9:
50:fa:5a:b0:4d:d5:63:c7:75:b8:2c:2d:39:48:75:3f:bf:7c:
ee:a9:6c:dc:d7:22:d6:ba:42:5f:bc:85:d1:c3:6c:2a:5e:e7:
d4:15:3c:ee:38:89:0c:af:28:70:31:eb:17:de:6c:b1:57:d9:
4d:d7:64:5d:6e:29:29:18:f3:a3:be:2f:a2:37:05:ae:8b:39:
b7:0a:31:9b:18:7e:10:d1:b8:06:15:43:87:74:73:77:7d:c3:
2f:68:1b:d2:26:b0:be:18:f0:f3:83:a0:a0:17:12:4a:5e:19:
b9:60:fe:d8:d1:d8:6b:c4:03:df:20:92:67:55:71:b7:c2:9c:
64:8a:ab:11:42:51:05:d1:ab:c3:68:a9:20:9f:93:b4:d9:0b:
44:5d:37:4e:34:c3:41:1a:aa:07:e1:5f:a3:40:ca:dc:63:62:
67:5d:69:d2:c3:3a:a1:cc:c2:d4:8f:26:ab:ea:7c:94:0c:93:
b2:29:cb:b8:61:c5:96:ee:7f:2a:87:01:03:79:ef:34:ca:67:
7a:2f:1e:2b:3c:35:67:0a:0e:64:38:1b:81:1f:42:fe:03:4b:
00:86:93:71:97:75:7b:4a:53:e4:3a:67:9a:5a:6f:79:03:3a:
28:87:57:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:08 2025 by rpki-client