Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/290e67c7-7b75-4b9d-abc6-0c3ec34c1527.roa
File: 290e67c7-7b75-4b9d-abc6-0c3ec34c1527.roa (raw, json)
Hash identifier: +Unw/vIgXyTISBrnCvOKFQsYTaoLq9qOWx+RLf/jdF8=
Subject key identifier: 07:7B:3A:66:BC:87:AA:E8:F5:D5:FA:90:48:88:AB:A4:1C:B1:8B:9A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2651C35D2D570BB280D84B00A6D6ADCA6FC4805E
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/290e67c7-7b75-4b9d-abc6-0c3ec34c1527.roa
Signing time: Wed 05 Mar 2025 17:50:14 +0000
ROA not before: Wed 05 Mar 2025 17:50:14 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d02b::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:51:c3:5d:2d:57:0b:b2:80:d8:4b:00:a6:d6:ad:ca:6f:c4:80:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:50:14 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9f:64:6f:97:b2:d7:07:c0:33:92:f6:ec:74:
14:88:5b:1a:c6:35:97:50:ca:69:78:10:4b:74:2f:
b0:99:df:33:0c:19:1b:00:9f:55:33:17:43:11:b0:
2d:7b:da:74:53:ff:a9:b8:70:b4:1f:bf:0f:fc:ab:
35:cc:88:53:34:cf:90:1c:c4:79:b2:dc:b5:8a:36:
69:f2:63:67:c8:0c:91:ee:fb:f0:fc:35:39:05:5e:
d2:38:76:4f:f4:65:3b:9d:6a:b8:97:9e:99:84:90:
6b:16:8e:bb:c8:8c:c2:8d:cb:60:08:07:c8:3b:31:
99:ba:80:c8:ef:29:d2:e7:f6:8f:f8:ae:4b:7f:41:
1a:b5:aa:c2:46:e6:36:e0:45:61:92:99:08:de:ab:
5a:da:ed:9b:29:3f:4f:23:c1:14:ef:5a:84:6d:83:
f3:66:bd:b7:2e:5a:e0:8f:c6:77:e9:9f:3a:67:f4:
ae:d4:6c:ff:e2:33:4b:5f:0d:d8:5c:59:1e:ab:1e:
01:f9:6d:8b:c7:19:5c:0e:b2:bd:9b:f5:c3:cf:af:
bf:cb:73:ee:de:f9:3f:92:01:91:9b:5a:f1:29:90:
62:f7:a6:40:ea:7d:49:5d:77:f6:e1:3d:1a:95:f2:
74:0c:f6:2d:56:08:b7:72:53:e9:c8:de:02:23:a4:
99:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7B:3A:66:BC:87:AA:E8:F5:D5:FA:90:48:88:AB:A4:1C:B1:8B:9A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/290e67c7-7b75-4b9d-abc6-0c3ec34c1527.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d02b::/36
Signature Algorithm: sha256WithRSAEncryption
64:ac:04:78:82:7a:d5:fa:32:44:14:78:35:87:8e:7a:d0:4a:
2b:55:b4:1a:de:12:e9:8f:e2:ff:fe:97:a6:b2:11:c9:ee:d3:
bb:ab:44:ef:11:59:f4:15:96:cf:2e:4f:8d:9f:07:17:0c:bd:
65:1f:75:a1:99:9f:02:67:38:e3:89:00:1a:1d:ae:ba:b5:7e:
aa:bb:83:4d:6f:ec:03:66:a9:a2:c8:2c:9c:17:23:8e:e5:80:
3e:ca:78:67:86:20:d8:8f:67:d0:2c:b3:16:b1:a4:db:8b:8d:
1f:88:9b:44:cf:75:03:3b:13:e6:53:db:15:d0:31:1f:33:76:
8c:35:10:5f:29:d8:a0:a5:67:33:9e:31:ac:46:bf:3d:5a:ba:
2b:9e:c2:66:ba:46:c4:6d:db:ca:cc:59:2f:d5:8c:6e:a3:c3:
93:b5:6e:04:28:1f:e8:91:55:73:0d:bf:a5:e3:0e:9a:01:43:
66:94:d9:6c:c2:93:2d:38:6e:83:30:01:55:53:fe:09:de:77:
d4:9a:a9:ca:5d:ac:06:d5:87:11:89:3e:0f:e4:99:cf:10:9d:
65:38:bf:76:93:ce:0d:e5:17:d9:33:9e:61:a4:79:a1:ec:05:
46:bf:05:9e:b8:e7:c9:dd:5b:45:2a:ce:94:2c:7b:bc:83:b2:
b4:dc:ef:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:32 2025 by rpki-client