Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa
File: 2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa (raw, json)
Hash identifier: XybACQp9WDWcf0i0qikMLVRBUeo6BdzPGrNRWoNTNu4=
Subject key identifier: AF:ED:D8:B5:27:09:3E:D8:DF:E9:74:C1:B9:51:11:12:04:B2:8C:92
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 28EF5063693EB0EA9ADBD09EB8971EDF0BE5F2E8
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa
Signing time: Fri 21 Mar 2025 15:01:27 +0000
ROA not before: Fri 21 Mar 2025 15:01:27 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.96.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:ef:50:63:69:3e:b0:ea:9a:db:d0:9e:b8:97:1e:df:0b:e5:f2:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 21 15:01:27 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:13:08:af:81:c7:90:64:c4:be:b6:89:c1:6c:
e3:b6:e2:50:7f:5b:20:80:e9:59:36:63:74:15:14:
24:6e:4e:8f:ec:6e:cc:98:12:30:7e:96:20:79:14:
4f:e8:ea:67:e8:85:94:2a:99:4e:fb:ce:fd:cf:ad:
21:0b:9a:99:5d:94:35:1b:ec:c1:3b:3a:1f:05:7c:
65:21:79:6a:0f:ae:72:2b:82:1e:c9:d6:fb:67:e8:
e2:a0:d1:f8:a3:c2:01:02:bb:4b:d2:62:f5:f1:43:
98:2e:df:e1:44:78:e5:59:70:a6:bc:3b:f0:1e:ae:
8e:aa:cb:fa:8d:0e:fa:03:29:f4:7c:51:b8:ee:fb:
09:51:e9:b2:e2:2d:d2:24:35:e7:d7:f8:67:78:93:
f5:12:b1:14:81:1a:9f:19:3e:13:57:9b:63:db:97:
c6:38:4d:f6:42:aa:e8:4f:d0:1f:6a:c6:da:1d:64:
0a:76:ff:f0:01:7a:71:c7:d4:79:dd:68:6a:12:82:
7b:c9:fe:db:2f:76:00:07:ad:be:72:59:f5:7f:b8:
cf:ff:7c:13:87:55:bc:f1:f3:5b:9f:d5:97:dd:51:
01:8d:b3:a6:3a:ed:6c:c5:54:9b:e1:6b:b7:e3:14:
fd:ac:68:e4:96:9d:4f:8e:92:ab:f7:47:57:8a:cd:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:ED:D8:B5:27:09:3E:D8:DF:E9:74:C1:B9:51:11:12:04:B2:8C:92
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2fd8037d-0536-42bc-af5c-4d0ed4f8de78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c3:98:de:2d:ff:98:c5:36:fb:af:94:0b:e6:24:89:07:f9:47:
a9:34:c1:1f:54:22:20:05:0e:75:40:cb:32:27:a9:70:3d:48:
96:5b:6b:a3:84:90:c6:05:ce:3e:3b:79:66:89:68:cc:d1:91:
b8:12:30:09:98:50:e6:9a:d2:3a:eb:b2:06:da:b5:24:f7:a8:
f8:df:f7:0c:03:13:70:99:2c:9c:c2:52:07:2e:75:b8:78:ca:
05:7f:ed:87:58:97:c6:fc:8c:d5:91:34:2e:e2:d6:3d:72:05:
9f:f6:e1:bb:ba:5c:03:07:04:9b:59:eb:a0:8d:b4:85:71:74:
2e:70:4c:61:26:d7:06:91:b2:6b:36:a2:ce:b8:5a:db:4e:7f:
62:2c:24:09:e6:7a:9a:98:36:da:a8:48:e1:68:79:de:81:3d:
cb:3c:62:7b:e6:57:a2:87:f4:fd:84:ce:20:5d:81:29:23:cb:
71:99:ec:a6:98:22:d8:4f:78:3d:38:74:0e:27:2b:20:03:b5:
51:7a:1a:eb:fd:29:2c:7b:64:64:7a:d2:1f:81:30:f9:2f:f7:
15:51:8c:a7:c4:8c:87:b7:ec:39:15:1d:6c:1f:d0:e4:61:d6:
81:17:9a:af:00:44:b0:6a:61:72:62:14:16:86:98:af:8c:fb:
48:f5:b1:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:05 2025 by rpki-client