Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4ad4b1d5-173e-4c13-8032-ab2dd1fafee4.roa
File: 4ad4b1d5-173e-4c13-8032-ab2dd1fafee4.roa (raw, json)
Hash identifier: abBISJs+umQxTBD60AL6rPZmuWduY1ZywkDyxgFxnBk=
Subject key identifier: B0:5F:61:3F:59:FF:12:AB:12:45:75:3A:34:1C:63:CA:C5:33:D5:A2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1D2EF652055DE0A5E429EBB5B0426CA5BB3AE54E
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4ad4b1d5-173e-4c13-8032-ab2dd1fafee4.roa
Signing time: Wed 05 Mar 2025 17:32:05 +0000
ROA not before: Wed 05 Mar 2025 17:32:05 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d050:c000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:2e:f6:52:05:5d:e0:a5:e4:29:eb:b5:b0:42:6c:a5:bb:3a:e5:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:32:05 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:39:11:77:0e:c4:e3:be:2c:e5:a2:7f:f3:1c:
d9:2a:fb:d4:9e:8d:16:c8:1f:90:df:71:6f:12:28:
38:a3:ca:59:c0:14:50:cc:2f:e8:83:2d:e7:67:4b:
81:9f:f4:19:5c:62:01:a0:c3:a5:7d:7a:32:6b:42:
f5:99:36:7b:76:00:47:4f:84:d5:36:8e:a7:92:0d:
47:91:d3:14:05:49:22:29:e0:62:5e:8f:ee:54:5e:
0d:df:44:bb:35:ad:7d:44:1d:18:76:82:86:af:1d:
3e:fb:78:dd:69:74:96:7a:0e:4e:ad:5f:e5:ad:8d:
10:1a:1f:17:bc:47:08:61:5f:75:6d:92:95:6f:9f:
7b:a7:6f:62:46:7a:07:05:48:c9:c9:1a:af:07:5a:
14:5b:7c:9a:fe:e2:0f:dc:5e:5d:82:ba:ef:ff:df:
0f:52:6b:98:58:06:b6:68:b9:1d:1b:15:ae:81:77:
68:16:c1:ff:e3:4c:f9:94:41:33:aa:ff:e3:1e:51:
7c:fb:c6:c5:5d:78:29:dc:22:a3:77:3e:12:f8:b0:
15:c5:b2:70:40:97:3f:e7:17:fa:39:cc:7b:4e:40:
e5:0a:05:ba:4a:c5:11:6e:69:5b:67:d2:d0:8b:e3:
26:7b:4d:fb:01:83:2b:30:b4:d1:6f:6a:32:b7:49:
fb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5F:61:3F:59:FF:12:AB:12:45:75:3A:34:1C:63:CA:C5:33:D5:A2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4ad4b1d5-173e-4c13-8032-ab2dd1fafee4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d050:c000::/40
Signature Algorithm: sha256WithRSAEncryption
3b:f1:07:3b:8c:63:e2:16:a4:6e:c0:e9:5f:f1:ae:ca:a1:34:
f9:15:a8:c8:4d:bf:a9:25:0d:ef:ce:1d:7e:65:2c:be:87:dd:
71:5e:3f:cc:58:92:de:d7:34:da:04:35:70:04:5f:70:1d:95:
ef:31:06:f0:59:bc:93:d2:5a:fc:ed:16:92:a5:8f:5c:68:1d:
63:6a:bb:63:41:e6:83:5e:4c:d2:4f:41:cb:de:94:ec:6d:92:
20:2d:62:4b:a5:8b:26:35:66:08:52:43:30:14:dd:bd:23:f2:
f7:93:9a:7c:aa:4c:c3:a6:8b:38:74:e2:d7:7c:02:ae:1d:51:
35:11:f5:02:3a:e2:4b:f2:7d:53:0e:59:90:1b:bf:c6:d5:58:
e2:df:03:27:32:23:a2:15:9c:f4:fe:ed:d9:fb:c3:d0:0e:8e:
66:2f:31:e4:9b:31:d8:15:88:49:57:b0:b9:61:fd:85:db:dc:
44:53:a0:9b:27:de:c7:92:4b:88:cc:8d:b6:2e:b1:75:50:73:
ae:db:fb:33:0e:39:4a:29:aa:4d:ce:49:b9:75:1a:3f:7e:e3:
54:49:3f:7f:4d:76:62:6d:5f:18:fb:93:ed:45:a6:cc:a0:04:
42:02:13:f0:fb:18:3f:a0:40:b1:2e:1f:bd:28:e9:fb:ab:33:
18:bc:08:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:32 2025 by rpki-client