Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3dfc02bb-5baf-420b-af1f-f4b8acdce23b.roa
File: 3dfc02bb-5baf-420b-af1f-f4b8acdce23b.roa (raw, json)
Hash identifier: 0PXGHzDtQQWdzwUo2GSVUyi8jncX58znTnUVcjxHDdc=
Subject key identifier: 5B:FC:FB:92:A6:08:1F:77:C8:BF:10:D5:95:D4:17:DE:2D:00:C3:0E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 486D1E20AA73EC22B377253FB3231ECEA6CA85DF
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3dfc02bb-5baf-420b-af1f-f4b8acdce23b.roa
Signing time: Wed 05 Mar 2025 17:12:08 +0000
ROA not before: Wed 05 Mar 2025 17:12:08 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:b080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:6d:1e:20:aa:73:ec:22:b3:77:25:3f:b3:23:1e:ce:a6:ca:85:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:12:08 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:62:66:0f:2b:6a:a9:bc:6b:22:2c:66:51:70:
e7:20:fe:dd:75:59:18:4c:00:fd:b2:41:6c:6f:e4:
a0:ed:3c:4f:49:f9:b2:b7:e6:00:10:13:f6:70:4e:
fa:2d:2a:26:18:85:74:85:fd:e6:fb:99:1f:98:f2:
ab:da:5e:fd:9a:55:6f:91:d6:4c:47:32:e6:d0:88:
71:9d:a0:aa:83:65:86:b4:26:92:73:f1:76:7c:d4:
b3:1c:30:79:31:0a:89:b9:f0:76:7f:1b:5a:b2:c2:
31:fe:a5:c5:e0:e3:20:1e:09:07:de:eb:48:75:5b:
24:78:81:a4:86:60:61:f5:b7:b2:76:7f:d7:51:7b:
58:b2:49:ee:62:50:ec:eb:c7:5a:ac:61:ad:d2:73:
98:40:06:dd:29:40:d0:45:ec:90:ad:71:1e:1b:b4:
76:54:02:a2:fe:92:7f:fd:08:e8:7e:6d:a0:eb:1b:
fd:e6:87:51:6f:77:aa:dc:6d:f0:76:da:a4:fd:4f:
cd:fa:61:80:44:25:a3:2c:d5:f6:6e:36:75:de:f7:
45:49:61:b9:c4:8f:93:e4:7b:d3:ac:93:83:d6:42:
f5:a1:bd:de:1c:ed:c7:f8:35:91:27:cf:4c:3e:65:
0b:9b:01:38:d2:2e:ff:41:9c:02:11:0e:32:a5:dd:
8e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FC:FB:92:A6:08:1F:77:C8:BF:10:D5:95:D4:17:DE:2D:00:C3:0E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3dfc02bb-5baf-420b-af1f-f4b8acdce23b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:b080::/46
Signature Algorithm: sha256WithRSAEncryption
93:91:45:de:b6:be:da:b5:61:07:7e:0f:28:c0:b6:d6:c3:85:
59:76:b1:dd:5a:17:19:cb:4e:9a:30:62:93:cd:b5:fe:0c:34:
e7:e3:9c:88:34:de:b9:11:bf:6d:2d:70:49:11:25:fd:72:7b:
5a:22:23:86:40:97:2a:85:3c:3f:fd:51:ef:87:08:12:f6:e7:
8f:64:de:b9:14:cc:bd:e6:e7:19:86:29:25:f6:39:77:35:e9:
7e:6b:23:22:62:4d:11:1f:b0:fe:98:4c:30:8f:a8:99:51:2b:
b1:8d:24:ba:78:72:c9:23:d4:f5:d6:f3:1e:f6:16:8f:ab:82:
89:02:bc:70:d1:c8:af:b3:2d:a3:80:36:4d:17:f2:89:c5:df:
a9:3c:f3:66:73:3c:b3:21:ef:c8:67:64:76:97:33:74:99:57:
f4:03:7c:26:5a:41:1c:13:68:5f:93:3d:d4:a9:c6:57:66:e3:
50:8e:3f:70:9e:77:02:e7:c5:f3:c4:a3:cb:b5:f4:ab:63:19:
04:74:05:8c:ec:a3:42:2f:d9:4a:00:13:58:da:98:8d:19:a4:
fc:a2:d9:e7:55:91:16:22:23:3b:b3:31:10:d5:36:74:64:8b:
cf:5e:c2:f7:85:16:e9:88:ca:ea:c2:e1:8a:5c:48:a4:80:87:
6d:6c:1d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:10 2025 by rpki-client