Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
File: 55ba2d71-c4db-41f1-a648-b39b354abfa6.roa (raw, json)
Hash identifier: 99Mf6UgZfgIUXaFnvpOZidYvat67Cu2LjZI/NMpQTTU=
Subject key identifier: 2E:C6:82:73:26:84:50:B6:C0:44:1F:E3:DD:BB:34:14:11:33:15:0B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 31A5387FCEBF823D824B9AA2017280A4A616EF45
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
Signing time: Wed 05 Mar 2025 17:21:50 +0000
ROA not before: Wed 05 Mar 2025 17:21:50 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:8000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:a5:38:7f:ce:bf:82:3d:82:4b:9a:a2:01:72:80:a4:a6:16:ef:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:21:50 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:5e:a1:14:e1:1a:a8:e7:6b:aa:5c:c8:cc:f2:
61:89:a4:ff:87:e8:6f:eb:30:b7:13:67:c4:c8:42:
c9:f2:45:7f:f7:ea:4e:9c:44:62:c1:ee:48:f9:b8:
e3:d4:1d:30:e7:ef:ea:1e:79:91:9c:a4:d5:58:94:
bd:d9:ba:eb:3c:4a:57:b1:4e:ac:33:4d:8d:1e:a0:
b8:84:fb:49:0f:0c:8b:56:06:1f:ab:c0:5b:b0:5b:
38:4c:01:ca:65:7f:cb:f9:cc:1d:a1:b4:41:ad:d6:
51:58:a1:a8:ad:ee:67:58:1b:fc:05:04:61:9c:19:
bd:b3:5d:09:bc:b4:ab:66:10:b9:43:69:4c:a3:7e:
0f:9b:ba:86:f7:a9:67:08:ff:17:e0:5b:ad:a0:75:
ec:4c:cc:b4:8c:1f:41:39:08:3b:40:d4:52:03:1a:
41:36:4b:66:02:38:f7:aa:38:7e:61:d6:be:43:c6:
04:1e:e8:bb:21:ce:f3:0f:50:32:19:da:c2:80:b1:
04:55:f7:4e:09:3c:ed:e3:9b:1d:51:8d:cb:da:47:
b5:35:86:39:4a:f6:57:26:4b:a9:90:d9:43:75:95:
27:d4:ab:9e:7d:f5:13:67:d4:33:68:35:68:1f:76:
17:63:f7:15:19:af:5a:53:c3:b3:43:50:1d:45:54:
e7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C6:82:73:26:84:50:B6:C0:44:1F:E3:DD:BB:34:14:11:33:15:0B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/55ba2d71-c4db-41f1-a648-b39b354abfa6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:8000::/40
Signature Algorithm: sha256WithRSAEncryption
12:65:ef:a3:03:a0:57:24:11:94:cf:b1:66:b3:87:73:6f:da:
a8:52:5c:55:e4:67:04:c1:dc:02:4c:21:2e:7b:54:2f:c5:89:
8f:80:0f:40:8f:51:01:5e:9a:2f:a0:31:c8:e6:15:0a:9f:98:
da:55:9d:0f:c7:42:f3:0c:5f:9e:ab:5e:3e:f3:7d:97:dd:d2:
12:2f:f1:bd:b6:10:88:9c:e8:f0:4c:25:e7:da:ea:e5:84:70:
f5:77:2c:88:e3:e6:31:83:d6:1c:54:cd:56:ce:68:38:9c:48:
af:96:f9:56:ce:a7:f2:01:bb:c6:2d:f2:0d:b1:fd:c8:42:47:
f3:19:2b:e9:6f:52:6a:90:02:1a:95:90:a0:23:e7:d1:56:0d:
32:49:20:7e:96:61:0b:98:a8:85:ec:a9:ed:fd:79:30:9d:65:
27:79:62:ea:3d:28:72:07:2f:2b:d6:a0:b0:1f:e0:83:ca:d9:
f3:ab:b5:c4:9e:03:7f:3b:0f:72:de:2f:ea:4c:a3:9c:ae:ad:
9d:07:19:7a:04:45:85:a5:82:9c:37:59:1b:5e:51:49:9a:fc:
00:32:80:a7:fe:2c:57:de:1f:bc:5d:d8:70:89:43:fe:db:86:
07:ed:42:b0:b4:b3:15:b0:92:53:af:c7:d5:59:0c:3b:74:0f:
b5:3f:6c:4a
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUMaU4f86/gj2CS5qiAXKApKYW70UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDUxNzIxNTBaFw0yNTA0MDkyMzU5NTlaMHoxSTBHBgNV
BAUTQDM4YWFmZTBlYTY0MDVmMjViMjJkM2Q1OTE3MzBmZDE4NGMwZGRjNzM3OTI3
YWI4NzVlYmJiYTEyYzgyODY4YjAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPReoRThGqjna6pcyMzyYYmk/4fob+swtxNnxMhCyfJFf/fqTpxEYsHuSPm4
49QdMOfv6h55kZyk1ViUvdm66zxKV7FOrDNNjR6guIT7SQ8Mi1YGH6vAW7BbOEwB
ymV/y/nMHaG0Qa3WUVihqK3uZ1gb/AUEYZwZvbNdCby0q2YQuUNpTKN+D5u6hvep
Zwj/F+BbraB17EzMtIwfQTkIO0DUUgMaQTZLZgI496o4fmHWvkPGBB7ouyHO8w9Q
MhnawoCxBFX3Tgk87eObHVGNy9pHtTWGOUr2VyZLqZDZQ3WVJ9Srnn31E2fUM2g1
aB92F2P3FRmvWlPDs0NQHUVU5wECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQuxoJz
JoRQtsBEH+PduzQUETMVCzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NTViYTJkNzEtYzRkYi00MWYxLWE2NDgtYjM5YjM1NGFiZmE2LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0FiA
MA0GCSqGSIb3DQEBCwUAA4IBAQASZe+jA6BXJBGUz7Fms4dzb9qoUlxV5GcEwdwC
TCEue1QvxYmPgA9Aj1EBXpovoDHI5hUKn5jaVZ0Px0LzDF+eq14+832X3dISL/G9
thCInOjwTCXn2urlhHD1dyyI4+Yxg9YcVM1Wzmg4nEivlvlWzqfyAbvGLfINsf3I
QkfzGSvpb1JqkAIalZCgI+fRVg0ySSB+lmELmKiF7Knt/XkwnWUneWLqPShyBy8r
1qCwH+CDytnzq7XEngN/Ow9y3i/qTKOcrq2dBxl6BEWFpYKcN1kbXlFJmvwAMoCn
/ixX3h+8XdhwiUP+24YH7UKwtLMVsJJTr8fVWQw7dA+1P2xK
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:56 2025 by rpki-client