Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3c6c4dd9-ed90-498e-88a4-f116875a7de2.roa
File: 3c6c4dd9-ed90-498e-88a4-f116875a7de2.roa (raw, json)
Hash identifier: ZPOWylf8Q6bu4LP+2/egwVykaWGei9W4oJdvgTQL8OM=
Subject key identifier: 20:8E:B2:65:DA:8B:DA:AE:F9:F6:2C:0D:9E:06:D4:F9:FD:4F:0A:C4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 60E893290136A40ABFB2B1DF168433AE3E468D69
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3c6c4dd9-ed90-498e-88a4-f116875a7de2.roa
Signing time: Wed 05 Mar 2025 17:10:21 +0000
ROA not before: Wed 05 Mar 2025 17:10:21 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:6040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e8:93:29:01:36:a4:0a:bf:b2:b1:df:16:84:33:ae:3e:46:8d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:10:21 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:93:a6:75:b8:25:47:7b:f0:0e:da:c1:69:b3:
81:b2:41:58:60:7e:e3:15:ad:65:a5:6c:8b:0c:e7:
46:4b:5d:50:b6:8f:61:1e:01:42:4a:69:50:6d:21:
18:3a:0e:9b:48:8a:d1:1a:ec:a1:ef:2b:f0:52:bf:
8d:50:21:ba:d4:7b:31:ff:82:7c:0b:66:8b:3f:02:
1d:6c:09:a8:1f:a4:4c:ba:a9:be:dc:d1:bf:1f:37:
4d:7a:18:a2:77:54:b3:6c:2f:2e:5c:8d:86:64:94:
50:32:4b:95:e8:79:bf:0b:19:a5:70:85:05:77:6a:
b3:a4:62:0a:64:22:c3:94:5a:99:f2:35:9a:15:a9:
8a:65:47:0a:d5:83:ea:0f:37:6b:ac:7b:2f:7d:c2:
79:26:fa:bd:ba:ef:1f:71:6e:c7:6c:2c:07:a5:41:
25:76:f3:0c:72:9d:3b:9c:d3:1b:01:36:d3:dd:82:
1a:4a:b4:40:3a:5c:44:93:39:b6:56:b7:19:cc:53:
34:db:e1:de:37:4b:1f:9a:e0:28:b8:e9:70:b9:98:
d3:bf:20:97:f1:25:7c:f0:a5:5c:3e:5a:43:58:fe:
01:44:a4:a9:a7:5b:6f:eb:7a:32:fd:00:5b:07:1c:
c8:e0:03:76:84:db:72:11:f6:d5:8c:e4:5c:d8:05:
f3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8E:B2:65:DA:8B:DA:AE:F9:F6:2C:0D:9E:06:D4:F9:FD:4F:0A:C4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3c6c4dd9-ed90-498e-88a4-f116875a7de2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:6040::/46
Signature Algorithm: sha256WithRSAEncryption
3f:11:15:33:ef:14:45:42:74:83:f4:73:23:d7:04:2e:26:41:
4d:e3:02:b1:c7:c8:b2:b1:c8:01:c1:b4:10:05:40:56:fb:1e:
74:a6:50:2b:01:e1:25:59:c4:96:47:8b:e0:48:bc:33:d6:58:
75:8b:f9:49:45:09:cd:e7:96:20:94:e3:ee:13:7e:9d:dc:da:
b3:4e:a1:a5:a3:e6:4c:9b:a2:60:ab:a1:2d:c5:41:c2:c7:88:
46:e2:1a:a6:d6:98:b9:63:8b:01:d1:8a:04:31:42:46:4b:77:
86:18:a6:cb:32:d2:b2:b5:8e:b2:28:7b:8c:d8:d7:23:8a:3e:
10:1f:0a:75:06:2b:7b:4d:eb:c1:e4:75:7d:39:03:43:0a:0a:
cf:ff:a3:92:8b:b5:86:a8:9e:ef:99:d0:df:07:8b:a0:c1:82:
e8:09:71:4a:56:e9:a9:f9:7b:ef:a8:23:9a:26:97:56:20:13:
03:81:4d:15:fd:1f:76:dd:86:f3:49:e3:40:54:df:a6:c3:e2:
56:52:96:a6:5f:8b:a0:f6:71:76:fe:c2:c1:4d:fa:91:a9:44:
11:2d:12:66:b0:31:48:45:e2:f2:0a:5c:a0:83:72:13:74:7e:
a8:19:44:64:27:eb:76:29:92:bf:4c:77:e8:34:b8:ce:8e:96:
cb:72:58:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:54 2025 by rpki-client