Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3d4529a1-3c28-42b4-b071-aa7474560d24.roa
File: 3d4529a1-3c28-42b4-b071-aa7474560d24.roa (raw, json)
Hash identifier: FsKovOL0UZwYGaF3bsstnB3+37WUQ4DHDW8nVvulX04=
Subject key identifier: EB:EA:E1:F5:7A:9D:A9:5B:80:0C:DE:F8:CD:3C:59:21:F7:04:88:CB
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: DA8775A413E51935E81C8E6AA6CA2E9B095026
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3d4529a1-3c28-42b4-b071-aa7474560d24.roa
Signing time: Wed 26 Mar 2025 19:21:57 +0000
ROA not before: Wed 26 Mar 2025 19:21:57 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:840::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
da:87:75:a4:13:e5:19:35:e8:1c:8e:6a:a6:ca:2e:9b:09:50:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:21:57 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:db:ab:6d:17:da:2a:cf:34:91:90:84:4d:d0:
dd:6b:a3:32:36:e8:32:65:28:77:59:5d:fe:27:13:
02:95:7c:dc:70:f1:0e:2a:c0:58:e2:76:50:1f:2b:
9a:97:41:af:33:aa:7f:ab:15:63:77:28:fc:7d:0b:
12:f5:97:98:9c:1d:a8:21:aa:38:d6:6b:2e:fc:4e:
10:49:0c:58:52:21:b7:c9:38:01:0a:62:f7:39:bc:
39:33:e3:3c:b2:02:fc:ae:c8:37:8f:57:a9:b7:70:
21:b7:6c:a5:99:2a:13:ab:5c:46:5d:2d:1d:92:4c:
db:1d:ba:6c:01:33:fa:8e:5e:1e:97:4e:00:a1:03:
8c:75:b5:65:17:c8:89:e5:8a:af:fd:8f:74:fc:8f:
3b:82:ce:ff:8e:ca:0d:db:df:f0:49:07:e2:cc:7f:
34:40:59:61:69:ed:23:8a:fc:51:e0:23:43:94:fd:
2d:89:5f:14:3d:0f:0d:87:e4:8d:ab:7d:c3:9c:06:
91:97:98:3e:e3:22:e9:ee:2a:2f:a6:f0:a6:54:c6:
7d:1f:e9:8c:29:48:e4:05:e6:73:47:a8:c7:17:e1:
bb:21:5c:54:4e:97:3b:92:09:07:4b:54:71:54:d6:
2a:6d:53:a2:7b:8f:54:fb:82:c2:b8:ee:5f:5b:6c:
06:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:EA:E1:F5:7A:9D:A9:5B:80:0C:DE:F8:CD:3C:59:21:F7:04:88:CB
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3d4529a1-3c28-42b4-b071-aa7474560d24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:840::/46
Signature Algorithm: sha256WithRSAEncryption
4b:2a:2e:84:2d:4c:d3:b4:62:b5:eb:69:91:57:01:b5:2b:f2:
ca:79:ec:b0:da:6f:b5:14:75:89:45:a1:0d:ae:fc:65:69:49:
b1:db:5b:8a:ee:70:f0:be:a8:24:22:fe:7e:87:d0:cc:c1:5e:
5c:66:5f:22:cc:b4:18:9c:6e:5a:04:00:9f:13:2a:14:f7:dd:
93:6a:d0:a9:72:89:e4:8d:26:ef:5c:21:7f:c9:b7:25:92:be:
32:b8:65:71:84:1a:84:8a:27:13:7c:55:d2:5f:4b:76:a1:2c:
4a:9e:25:6b:65:05:07:02:12:54:cd:dc:01:85:60:ec:4f:97:
44:00:85:b8:76:28:3d:85:30:65:b5:e2:25:54:37:9e:1c:f6:
ce:92:83:d5:15:be:ce:19:c0:ca:03:0f:8a:a1:5d:79:24:0d:
5f:96:96:57:ce:67:4a:b5:80:31:24:35:1d:b5:6d:b6:97:d4:
78:16:e9:f0:18:ee:04:46:59:5a:20:04:83:fb:7c:b5:d2:71:
12:d8:be:96:92:23:1b:03:24:95:cf:39:df:81:53:7d:aa:7b:
05:ed:db:06:ce:09:96:e5:31:90:df:43:04:07:57:c8:66:0c:
93:85:25:b8:97:54:42:7b:98:f0:5c:ca:7b:f2:01:f1:82:cf:
4f:89:d6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:43 2025 by rpki-client