Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/45c6591c-1ba0-4769-9e6a-11566f006613.roa
File: 45c6591c-1ba0-4769-9e6a-11566f006613.roa (raw, json)
Hash identifier: pPjrXCUdtMLPMqsrFZbrc4AwjFrai1R48DS1Uq1JF0Y=
Subject key identifier: 9A:3E:A3:5D:C3:44:2C:57:BB:84:5F:08:61:97:B5:73:3D:DC:E3:64
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4E588289F4B2D1C1D02C87F85282BA17CF403563
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/45c6591c-1ba0-4769-9e6a-11566f006613.roa
Signing time: Wed 05 Mar 2025 15:51:21 +0000
ROA not before: Wed 05 Mar 2025 15:51:21 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:90c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:58:82:89:f4:b2:d1:c1:d0:2c:87:f8:52:82:ba:17:cf:40:35:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:51:21 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:10:c6:81:f2:6b:1c:51:2f:da:d0:6a:f0:00:
68:81:f4:cb:0f:85:c3:55:ec:b6:d0:4b:63:d6:8c:
77:9f:a1:93:a5:7f:4d:68:71:46:7f:ba:43:78:8d:
76:9c:f5:55:d1:c2:81:30:96:0b:65:50:b9:87:1f:
ae:cd:5e:48:94:fe:c2:78:d6:42:61:f3:4c:14:07:
ca:4f:3b:13:f2:42:7f:a9:19:87:10:45:80:77:2c:
f2:1c:56:bf:e5:24:bf:b8:59:c2:70:4c:a1:a9:3c:
c4:64:e8:93:4e:bc:0a:41:3f:15:08:1f:f4:33:85:
e9:d7:c2:44:32:da:14:7e:9e:9e:f2:1c:d7:51:0d:
f5:3b:62:25:6f:e9:b7:51:93:6f:4e:ea:35:97:a8:
57:04:ef:e7:86:83:13:cd:4c:b6:0b:09:fa:03:75:
77:1a:0f:42:09:6a:81:f9:71:08:e9:72:12:04:97:
eb:2d:77:30:3e:0a:5f:86:89:d2:51:0f:8e:9b:85:
fa:dc:74:eb:ab:ca:5e:d0:85:e8:56:37:50:8c:1a:
88:6f:a0:d7:6d:d9:3c:3d:a9:b1:fc:2d:b9:7b:e5:
1c:89:99:4f:d9:03:11:41:04:6c:f9:a7:17:b0:8e:
8b:35:9f:d4:44:fa:47:df:69:80:71:d0:ec:72:63:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3E:A3:5D:C3:44:2C:57:BB:84:5F:08:61:97:B5:73:3D:DC:E3:64
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/45c6591c-1ba0-4769-9e6a-11566f006613.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:90c0::/48
Signature Algorithm: sha256WithRSAEncryption
03:0a:3a:98:be:29:be:a9:8b:54:44:4f:21:4b:ab:7b:7a:a2:
96:48:cb:26:b2:34:ce:86:08:6a:cf:fd:07:25:9e:5a:68:25:
9a:2d:f6:68:ee:1a:d4:bd:a8:94:75:55:83:d1:a2:f5:1c:c3:
65:40:df:cf:65:e4:9e:1a:ad:0f:a2:9c:48:cd:43:a2:f6:bd:
5b:eb:50:2b:2e:cc:10:2a:24:a7:0b:ce:de:7e:ad:79:30:55:
67:a5:2c:29:b1:43:a3:04:83:6a:91:73:37:8f:4b:9a:3e:30:
a3:9e:34:cb:8f:9a:6d:5b:5f:f1:63:ee:9c:96:4e:c8:4b:e8:
5e:ef:d8:0c:5e:19:d7:90:b4:71:81:f5:92:4f:2d:0f:86:3d:
ef:0d:22:16:40:2b:15:2b:81:cd:fb:da:c5:4e:60:24:a9:c0:
54:ad:6e:28:db:0b:eb:e4:21:62:e1:bc:d8:b0:87:c3:21:d6:
76:c3:6f:0b:32:cd:7a:2d:39:4d:a1:61:ff:c3:bf:73:84:aa:
a8:f7:16:f7:c8:b8:25:b1:c6:48:bf:1b:e0:d3:7e:06:ac:84:
bc:17:f5:1c:09:57:93:7e:98:c0:1b:a9:c7:5b:b6:16:2d:b5:
23:a2:6d:8f:c4:46:ff:e7:29:73:66:d4:b2:3b:5c:36:4f:d0:
e1:3f:47:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:37 2025 by rpki-client