Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44bb2f76-7c1e-411a-85f6-b9cd1c77d60c.roa
File: 44bb2f76-7c1e-411a-85f6-b9cd1c77d60c.roa (raw, json)
Hash identifier: YfRYlYyeqEVio8zKWsWZr/joFEYta5Q+sBOovIcRfNk=
Subject key identifier: F5:08:E0:89:11:05:FB:65:F4:C3:44:07:8C:8A:88:09:C1:9B:A7:0D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 061841C02E29EA17AE23AADB6DC52DAB5F8400B8
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44bb2f76-7c1e-411a-85f6-b9cd1c77d60c.roa
Signing time: Wed 05 Mar 2025 15:21:23 +0000
ROA not before: Wed 05 Mar 2025 15:21:23 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:5040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:18:41:c0:2e:29:ea:17:ae:23:aa:db:6d:c5:2d:ab:5f:84:00:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:21:23 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7d:8e:6f:49:60:f0:ec:70:7f:72:c7:37:00:
e4:21:75:a3:b4:9b:f4:ab:29:f6:9b:1d:dd:a4:78:
6c:b7:da:95:8d:f1:0d:f2:4e:b1:78:7c:34:58:78:
54:88:ff:8c:5c:bb:8f:b0:78:03:26:98:9e:44:33:
f4:0c:38:db:2e:e6:27:4f:d6:44:f1:46:2c:03:71:
19:bb:30:30:f6:37:f4:5f:f3:90:dd:67:c9:09:cc:
5e:44:32:bd:aa:09:bd:d3:01:62:15:5e:55:4e:56:
f9:62:41:c8:81:3e:47:b1:99:14:85:2f:54:e4:c8:
94:d9:67:43:0a:d3:ae:e0:ac:e1:dd:96:96:0d:c5:
42:ad:4b:04:42:52:aa:47:b9:f2:82:7f:1f:63:ce:
dc:f3:8d:f0:f0:89:76:86:5d:51:1e:9e:ea:f1:4f:
a7:9c:d2:49:0a:46:36:15:80:11:fd:03:93:31:67:
0c:92:05:24:ad:93:05:2d:90:8f:c4:1b:59:aa:dd:
ee:24:f7:aa:65:36:5c:2a:4a:58:74:20:b5:7c:23:
d1:91:75:88:88:ac:cc:49:de:44:ff:bd:64:86:96:
54:13:e4:de:46:ac:a0:15:81:81:a6:f0:5b:92:90:
21:30:82:92:6c:87:99:18:4f:a3:7d:cb:e4:08:7e:
a6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:08:E0:89:11:05:FB:65:F4:C3:44:07:8C:8A:88:09:C1:9B:A7:0D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/44bb2f76-7c1e-411a-85f6-b9cd1c77d60c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:5040::/48
Signature Algorithm: sha256WithRSAEncryption
45:c8:bb:80:4f:ab:a6:18:42:1d:dc:7d:fa:93:1d:e4:e0:c0:
82:b4:05:99:da:0f:ae:08:e9:56:8b:a7:95:bf:02:e0:4b:68:
87:ff:38:30:25:1f:c5:02:6e:69:47:9d:b6:0d:68:8d:ec:32:
b1:09:d5:c2:74:17:8f:c6:a7:37:02:5d:6b:9a:bf:f1:6a:c5:
7b:0a:e1:79:25:64:54:9a:3c:7e:31:92:0f:f5:f9:67:86:f5:
96:e4:b6:c4:79:34:e1:c7:df:cf:0e:3c:36:30:d1:ee:55:f9:
ad:6a:70:fd:a4:d6:70:f9:0e:11:c6:d3:4c:2c:04:9a:c6:57:
80:ec:cd:99:7c:e7:b1:28:19:c3:d3:d7:27:56:18:6b:ba:e8:
61:ad:dd:7c:1a:f6:d6:c8:d0:9e:b8:c5:18:e5:37:cc:42:ac:
25:14:45:b3:39:fb:1e:8e:7e:4c:fc:88:41:18:ff:34:08:18:
46:8a:9f:d9:5e:7c:0b:90:99:dd:56:f6:e0:21:27:74:3b:d5:
d5:e7:5e:d7:f2:57:ae:db:65:c4:b0:52:9d:2a:a7:d6:c9:be:
47:cd:84:a8:74:a6:39:28:a9:79:5d:b5:9f:2c:30:39:a8:80:
24:32:f6:2c:73:78:37:76:50:8e:d9:de:7e:89:b1:38:56:4a:
cf:36:9e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:43 2025 by rpki-client