Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6ddca7-172f-4f0e-9a83-9a359f62c43d.roa
File: 4b6ddca7-172f-4f0e-9a83-9a359f62c43d.roa (raw, json)
Hash identifier: ssmsA0LubGDsBg5PIY/j5ydQp/9R4niyxg+xMLDXYjg=
Subject key identifier: 0D:35:01:DB:11:BF:68:21:24:F0:56:55:1A:14:DA:A2:60:CA:29:A6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2A4E51C3B42E73A94CE9920790B8D37A1AB0B324
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6ddca7-172f-4f0e-9a83-9a359f62c43d.roa
Signing time: Wed 05 Mar 2025 17:21:53 +0000
ROA not before: Wed 05 Mar 2025 17:21:53 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d075:4000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:4e:51:c3:b4:2e:73:a9:4c:e9:92:07:90:b8:d3:7a:1a:b0:b3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:21:53 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4e:44:38:bf:a9:23:df:95:60:e8:65:91:26:
6a:67:24:34:33:6c:f2:02:1d:14:c6:a0:3a:c0:57:
ee:cf:1e:0f:03:bd:3c:e5:e7:a7:d1:3d:47:ad:80:
03:ee:61:8d:2a:4f:f6:2b:a4:86:60:71:bc:d7:77:
1e:ab:54:a6:af:f7:79:ee:b0:60:7b:39:2c:ca:cc:
e7:4f:ee:f4:98:76:4d:71:9d:0c:15:b2:2a:e0:f8:
d5:57:0b:87:01:f7:8b:c4:f7:56:5a:31:20:9b:79:
47:f8:8c:5f:4b:41:b7:c5:13:60:eb:f9:82:91:ca:
86:43:c0:3f:0d:fb:ab:21:e3:27:72:ef:8f:e9:d1:
4a:53:aa:02:f6:20:34:fc:2e:ab:60:5e:5c:6a:22:
ae:ae:e7:b4:c5:02:2e:a3:6c:74:b3:e7:30:bd:cc:
99:e2:70:55:c0:eb:a0:33:70:38:97:42:e5:0d:2d:
fc:16:2c:d5:91:f6:6a:47:9e:a1:de:9c:51:76:db:
73:4c:42:46:7f:51:47:f0:e4:5a:26:6a:0a:e6:f3:
19:0f:48:37:8d:1e:0b:eb:d4:50:7e:d9:6e:28:88:
f5:70:32:70:49:72:4b:c4:f7:33:1f:6d:1f:3a:5c:
d1:ce:6c:1b:37:f1:45:e3:86:d2:36:d2:d0:e8:f1:
24:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:35:01:DB:11:BF:68:21:24:F0:56:55:1A:14:DA:A2:60:CA:29:A6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b6ddca7-172f-4f0e-9a83-9a359f62c43d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d075:4000::/40
Signature Algorithm: sha256WithRSAEncryption
88:28:c6:3f:76:f9:db:38:ba:b3:eb:cb:b5:da:43:09:78:9d:
6e:00:7d:e3:26:73:59:58:33:79:ca:7b:2f:7a:21:52:36:16:
5c:84:50:36:bb:4b:77:60:9e:86:ed:c5:a1:23:a7:4b:26:ce:
ff:21:ce:da:6d:a8:0e:89:4f:ec:44:3d:80:6c:3b:8c:98:62:
53:c8:7c:3e:14:9f:03:17:d6:0b:0f:3c:af:a3:ae:d6:7c:6b:
4e:e5:37:3a:ca:dd:e4:5b:55:d1:13:08:6e:08:17:f0:8b:7e:
50:4b:39:84:85:dc:27:08:e8:98:47:f6:57:91:df:36:8c:ab:
11:46:7e:54:e4:5e:47:66:52:60:9d:ac:df:32:8d:db:ea:00:
b3:80:92:d7:5d:b4:db:ea:5b:da:59:8c:65:4e:d8:3f:3a:84:
7c:97:36:f9:28:2a:68:bf:7d:ae:d7:f7:bb:b5:8f:2f:77:e4:
d5:03:d5:a5:fb:a8:38:8e:ee:43:1f:7b:10:ee:26:fa:fb:aa:
f4:da:62:4c:a8:63:07:38:97:df:ff:2c:82:5c:46:9a:30:c0:
d5:f7:10:ea:d4:ff:9e:c7:70:dd:b1:d1:b4:0c:07:ea:8f:ac:
50:14:f1:4a:98:95:81:17:c6:75:bf:fe:20:af:9f:54:41:17:
a2:a6:59:48
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUKk5Rw7Quc6lM6ZIHkLjTehqwsyQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDUxNzIxNTNaFw0yNTA0MDkyMzU5NTlaMHoxSTBHBgNV
BAUTQDExNjhlMDFjOTQ4NzMyZjA3MmJjYTg5NWE1MjcxY2FjODdlYzYxMWM5ODA0
N2NmZDBmZGVkMTc5N2M5OWFkNzYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMRORDi/qSPflWDoZZEmamckNDNs8gIdFMagOsBX7s8eDwO9POXnp9E9R62A
A+5hjSpP9iukhmBxvNd3HqtUpq/3ee6wYHs5LMrM50/u9Jh2TXGdDBWyKuD41VcL
hwH3i8T3VloxIJt5R/iMX0tBt8UTYOv5gpHKhkPAPw37qyHjJ3Lvj+nRSlOqAvYg
NPwuq2BeXGoirq7ntMUCLqNsdLPnML3MmeJwVcDroDNwOJdC5Q0t/BYs1ZH2akee
od6cUXbbc0xCRn9RR/DkWiZqCubzGQ9IN40eC+vUUH7ZbiiI9XAycElyS8T3Mx9t
Hzpc0c5sGzfxReOG0jbS0OjxJHsCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQNNQHb
Eb9oISTwVlUaFNqiYMoppjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NGI2ZGRjYTctMTcyZi00ZjBlLTlhODMtOWEzNTlmNjJjNDNkLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HVA
MA0GCSqGSIb3DQEBCwUAA4IBAQCIKMY/dvnbOLqz68u12kMJeJ1uAH3jJnNZWDN5
ynsveiFSNhZchFA2u0t3YJ6G7cWhI6dLJs7/Ic7abagOiU/sRD2AbDuMmGJTyHw+
FJ8DF9YLDzyvo67WfGtO5Tc6yt3kW1XREwhuCBfwi35QSzmEhdwnCOiYR/ZXkd82
jKsRRn5U5F5HZlJgnazfMo3b6gCzgJLXXbTb6lvaWYxlTtg/OoR8lzb5KCpov32u
1/e7tY8vd+TVA9Wl+6g4ju5DH3sQ7ib6+6r02mJMqGMHOJff/yyCXEaaMMDV9xDq
1P+ex3DdsdG0DAfqj6xQFPFKmJWBF8Z1v/4gr59UQReipllI
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:40 2025 by rpki-client