Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa
File: 216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa (raw, json)
Hash identifier: H87GbE4tAtUOAPO2/SgrI3iXGaNbyMsZMKCb9HiENtY=
Subject key identifier: 5E:7F:F5:E3:18:F8:52:DC:DC:4F:74:6E:EB:31:A4:0D:01:E4:C4:89
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4D1BFDB1476E5199A54C7BE7E1A2057B5C1333FE
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa
Signing time: Wed 05 Mar 2025 15:21:21 +0000
ROA not before: Wed 05 Mar 2025 15:21:21 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:40c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:1b:fd:b1:47:6e:51:99:a5:4c:7b:e7:e1:a2:05:7b:5c:13:33:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:21:21 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ce:ad:6d:e3:f9:35:26:b8:b8:c8:af:eb:06:
a4:49:6f:61:0b:5b:73:1a:5d:46:b7:2f:07:4b:df:
0b:a1:b9:da:50:8d:8c:07:20:b1:bc:be:96:49:03:
53:14:88:cc:92:59:44:33:11:1a:a9:6b:16:14:82:
6f:4c:2d:58:6c:db:01:76:1a:f4:fc:3c:b6:6f:c8:
b0:6b:85:99:73:df:8a:e1:b0:2e:d4:e8:0b:ed:dc:
e3:d4:2c:a9:1d:1a:3d:80:d3:cf:59:c5:24:6c:a1:
75:fb:30:c6:f5:cc:9f:97:a0:e1:94:c7:16:10:bb:
71:f6:77:16:8b:0a:ef:f7:9b:9e:94:c0:22:f7:95:
a1:f8:33:c6:36:33:72:bb:7b:8d:c1:c1:ee:2c:b7:
fd:56:25:9a:2d:36:07:50:23:5e:bc:1e:44:b1:ee:
9c:db:49:10:89:2d:5a:92:07:12:d4:c3:65:62:16:
7d:1b:78:88:b3:ce:8d:1f:a3:48:d2:81:f9:f4:de:
dc:ab:b3:2b:13:f7:20:25:6b:62:61:6c:75:b0:4c:
89:41:29:d5:4e:61:31:e0:8d:00:96:d9:f6:df:5c:
99:5a:d4:12:6a:9f:5c:98:53:00:cd:40:1c:5f:5e:
3c:c3:da:d1:f3:dc:6e:3c:19:f9:2c:2a:80:90:20:
2f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7F:F5:E3:18:F8:52:DC:DC:4F:74:6E:EB:31:A4:0D:01:E4:C4:89
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/216e1c1f-35c3-4c02-a0c3-0b5815c016d7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:40c0::/48
Signature Algorithm: sha256WithRSAEncryption
9e:55:2c:56:9d:2d:0d:b1:0d:e1:ef:89:f0:e0:36:c2:e0:0d:
e4:a2:3f:ae:3b:3e:8b:34:c8:a7:d2:45:1f:c8:93:f7:08:cd:
11:8a:09:b1:73:db:e2:ce:5a:99:d6:da:b6:e3:b3:0e:4e:18:
04:9f:72:4d:4e:a2:8d:bb:94:4c:cc:67:f5:8e:a2:71:38:e3:
18:15:ab:c7:35:ab:6e:09:c1:a8:45:ce:7e:cd:c3:7d:0b:e4:
f3:b1:cf:4b:10:ed:ea:d9:a0:bc:43:28:f0:74:c3:ae:49:4f:
11:dd:b5:e9:3a:c9:cb:61:fe:3d:02:41:e3:ec:bc:bf:5f:54:
ab:a1:ef:d8:ed:5c:30:c3:3f:fb:f5:15:cc:fa:f9:e7:32:26:
20:39:99:68:cb:54:34:a4:d5:3f:9e:70:04:36:84:44:52:13:
d7:62:5c:3c:fd:5e:08:d6:79:ba:4f:65:5c:eb:b2:8d:a5:61:
f0:61:c3:d5:e6:8f:12:36:df:da:fc:4a:cd:52:ff:2c:36:92:
96:d2:88:2d:8b:8f:2f:bf:b8:b7:ca:80:df:85:11:13:95:93:
95:a2:b9:e0:c5:7d:e5:a8:fc:ec:2b:e5:65:34:83:eb:69:f1:
00:7c:4f:91:66:f2:6e:08:8a:92:78:71:ab:5a:71:45:af:d8:
85:c1:c6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:33 2025 by rpki-client