Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3136a322-f9d4-4c77-b48b-3a4a5b2d3d55.roa
File: 3136a322-f9d4-4c77-b48b-3a4a5b2d3d55.roa (raw, json)
Hash identifier: vVgBKQ7oKNXLE8hfLcZgsa7YJz1k92tqa4GeYIFKImU=
Subject key identifier: 48:8C:D6:BE:C7:4A:B4:83:10:2F:59:1B:C2:C6:A3:9F:15:A8:86:40
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6365617C76C289D8C464E94AC5791DE2DD54C6EE
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3136a322-f9d4-4c77-b48b-3a4a5b2d3d55.roa
Signing time: Tue 11 Mar 2025 00:10:33 +0000
ROA not before: Tue 11 Mar 2025 00:10:33 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d020::/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:65:61:7c:76:c2:89:d8:c4:64:e9:4a:c5:79:1d:e2:dd:54:c6:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 11 00:10:33 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:02:0e:d3:1c:c7:77:21:37:b6:2b:f0:e5:92:
61:77:9f:4c:4c:72:5b:67:de:7f:94:48:a5:f8:22:
a7:d9:1a:58:0a:25:3b:a4:8f:c7:a8:ce:ff:45:39:
aa:57:f8:7e:7b:60:db:8c:b4:85:cd:87:91:d9:68:
1a:c4:f3:8f:29:53:0b:fa:6d:2e:4a:b6:19:43:d8:
45:2d:cd:6d:97:be:21:a7:04:b7:99:7b:eb:a4:13:
9b:79:ad:d4:44:7b:b2:06:64:74:be:bb:30:a1:7f:
9e:c6:28:ca:15:01:5a:bb:f3:0e:8d:c5:f4:7a:3a:
51:3d:11:93:ee:00:12:d7:9f:47:79:e5:e1:46:35:
f5:4c:99:67:7b:f7:b2:92:ba:b7:e2:63:94:6e:72:
e6:ed:c8:0e:ca:7e:0d:36:6f:17:ac:73:fd:fd:1d:
cc:dd:64:fc:75:77:f3:90:bd:95:d8:d5:27:a2:ac:
9d:4b:cd:8a:5e:d4:25:7b:06:15:79:16:7a:33:31:
0e:57:57:94:b9:60:3f:31:b6:9d:f5:03:99:c2:85:
e9:1f:5e:32:17:c7:2e:fa:7f:c4:67:0d:5a:97:32:
61:c2:67:07:97:14:74:e2:59:e8:0e:3f:fe:d8:d7:
48:fb:88:e6:03:e5:0e:58:dd:8e:ad:c1:24:f5:12:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:D6:BE:C7:4A:B4:83:10:2F:59:1B:C2:C6:A3:9F:15:A8:86:40
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3136a322-f9d4-4c77-b48b-3a4a5b2d3d55.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d020::/28
Signature Algorithm: sha256WithRSAEncryption
3a:f6:ca:ae:25:cf:b1:bf:9a:9a:b5:37:ea:8c:2d:d8:e0:eb:
25:18:bc:71:ce:48:da:17:32:b7:4e:96:d1:40:43:d8:a5:57:
e9:b9:ee:83:9d:e7:54:8b:d6:90:ba:9d:ef:82:b3:d5:1d:be:
7b:17:2d:53:f9:b5:b8:46:42:aa:42:59:6a:d0:41:00:89:9e:
d8:a0:e4:bd:ab:93:bd:14:b3:a6:16:57:79:c3:f7:34:83:d3:
99:a1:51:9c:58:a4:14:e5:2d:48:e5:1a:26:a3:cb:ac:09:41:
cd:19:e0:0a:1f:dc:53:c0:6f:cd:5c:8d:21:c3:a3:de:a0:bd:
32:a2:f2:73:ac:bc:a0:a1:2c:95:5f:a2:84:ff:fe:35:98:5e:
5c:7d:67:ad:7d:cc:90:80:56:e9:ab:fa:35:d8:da:f8:ee:29:
bd:99:47:ed:5f:04:5f:91:fe:85:bc:7d:08:0f:2b:b7:5d:36:
d4:f6:93:81:24:3b:d6:32:12:61:25:52:63:61:8b:c1:fe:03:
ff:b5:a4:05:9d:8d:2c:2a:98:39:f2:e3:ff:42:46:61:2b:ec:
62:48:22:f5:89:33:bb:cc:f8:0a:46:38:a5:28:d4:d9:18:31:
c1:fb:9a:99:fc:39:50:e7:48:a7:2c:49:65:63:c8:1e:76:cb:
16:7f:d4:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:42 2025 by rpki-client