Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa
File: 1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa (raw, json)
Hash identifier: WUxyIimZiUCBtPQkO9KQ6Wj7nPY341Crfx4bHMaZmrk=
Subject key identifier: E4:21:60:AB:9C:0C:83:8B:B9:8B:22:52:AA:28:89:F9:C9:75:6F:C2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7A6C6F814F47DA4EED66A795CACA47F71BB64D0C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa
Signing time: Wed 05 Mar 2025 17:50:07 +0000
ROA not before: Wed 05 Mar 2025 17:50:07 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d01d:800::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:6c:6f:81:4f:47:da:4e:ed:66:a7:95:ca:ca:47:f7:1b:b6:4d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:50:07 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:f3:11:bc:87:2d:98:64:b9:cb:bd:c3:d9:
58:f0:27:52:41:52:49:df:08:34:85:46:b9:ac:10:
ec:a8:aa:9a:4f:f8:d3:e8:5a:23:f1:61:8d:8c:84:
e8:9a:60:78:02:c8:e0:68:e6:1f:ce:14:0a:2a:83:
42:75:6a:a0:6c:c4:a8:1d:6c:8e:b0:5d:98:88:32:
b1:f0:af:c2:34:c8:bd:87:76:ba:16:9a:5a:9e:e7:
d9:38:8d:3f:bb:67:00:87:b4:a8:60:6d:94:c7:8f:
7c:c6:37:0e:58:ed:fe:54:09:57:4f:ea:4a:d4:94:
ba:cf:88:60:53:8d:ef:c9:7f:e1:b7:5c:a4:10:b7:
0d:0e:67:5c:18:a5:84:72:fb:9a:c8:52:dc:f4:9b:
34:3b:c8:24:4c:23:98:7b:08:71:d6:0a:d8:3d:a1:
1b:71:19:75:bc:40:d0:36:51:cf:be:59:4b:23:8c:
93:05:f8:d5:9d:15:66:a3:f8:e6:bb:a8:03:89:52:
64:d9:c4:f8:51:4c:6a:bb:0e:6e:82:a6:4f:dd:eb:
17:7e:e1:9c:59:05:23:50:4d:f5:ff:ef:07:9c:82:
db:70:78:3a:ea:b1:e9:37:7c:99:80:63:f3:e8:5b:
8e:5e:bb:59:b5:ef:ce:3b:e3:9f:dd:b6:e7:7e:f6:
07:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:21:60:AB:9C:0C:83:8B:B9:8B:22:52:AA:28:89:F9:C9:75:6F:C2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1d480b6d-25fc-4f37-b125-f45ce236f4ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d01d:800::/37
Signature Algorithm: sha256WithRSAEncryption
89:c7:e3:9e:e4:e9:4a:f5:95:ca:73:c0:25:da:09:39:f2:fb:
88:80:28:18:a6:31:f6:44:31:2a:15:26:0d:af:83:38:cd:86:
5d:2e:ee:23:3f:da:f1:d4:9f:18:63:41:13:32:49:42:2c:37:
49:82:9f:72:ce:dc:77:f4:a0:12:85:c7:3e:92:4a:d1:82:8f:
98:3c:04:1c:20:9b:d6:42:45:b5:89:59:82:c9:3a:df:5d:47:
81:cf:37:a0:2c:b5:fd:c2:47:db:03:9e:a0:91:1e:84:48:24:
eb:72:4a:6f:30:ef:7e:0b:63:03:0b:71:41:87:75:3e:50:91:
ae:fe:7a:37:d7:47:a7:c8:33:58:f6:35:a1:b4:a5:2d:9b:fd:
a1:a0:66:f3:d6:6a:15:23:12:88:97:b4:62:0f:1b:00:6e:47:
fb:e0:09:d7:8c:f7:52:90:cf:51:70:c5:a6:d3:86:e1:e0:8f:
3c:46:0e:8e:6e:56:14:e8:9b:7e:8d:ba:a7:f8:bd:db:77:fb:
94:34:42:98:2d:82:eb:47:39:52:b9:7f:17:8d:c4:0a:9a:ff:
25:dd:fc:ff:5b:34:96:15:f0:73:4d:e6:7d:1a:ab:88:ae:72:
a9:87:28:29:74:2e:83:d3:3e:5d:56:cb:ed:53:c1:60:05:ea:
2b:28:78:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:35 2025 by rpki-client