Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa
File: 593bb6f2-1ee0-4352-97de-e329502838f7.roa (raw, json)
Hash identifier: WvOIxFqP37LcjeIMIjxllkxho1Ye+RY5SCahZVbGWtM=
Subject key identifier: C7:E0:6F:6A:2C:39:69:F4:AB:BB:F7:B3:75:56:A6:A9:DD:74:93:6F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4A5DB6F462E0274CE391EB63A62B9C66A60B2115
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa
Signing time: Wed 26 Mar 2025 19:21:49 +0000
ROA not before: Wed 26 Mar 2025 19:21:49 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d034:800::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:5d:b6:f4:62:e0:27:4c:e3:91:eb:63:a6:2b:9c:66:a6:0b:21:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:21:49 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b5:6a:20:8d:a0:88:96:f6:52:9d:e2:95:96:
20:a9:d2:c3:26:60:cf:fc:58:d9:31:03:f1:b6:be:
4c:ab:a6:b8:9c:28:c9:15:87:71:93:a0:81:be:7b:
cb:77:51:6b:70:c6:a7:19:e6:d1:10:cf:07:1c:80:
9a:5b:72:71:a8:41:cc:f0:bb:e3:40:eb:fb:77:15:
4e:4f:26:b3:44:6a:35:b9:f7:6c:5c:a1:f4:58:2e:
8d:ac:ec:f9:84:dd:9f:fe:bd:21:37:bf:ad:af:22:
75:ed:10:94:2c:ea:dc:af:c6:1b:df:91:c6:13:7c:
5f:61:bf:3f:28:a9:73:ed:91:1f:bd:df:13:01:ed:
e8:23:fe:f2:ca:f7:58:2a:48:74:e4:c4:7b:cc:c0:
04:a4:c5:6d:fe:f5:97:9b:75:54:d9:77:e3:3e:80:
f6:48:eb:59:03:85:d7:ad:0b:ae:48:94:aa:5e:37:
b5:7f:67:9e:96:d3:b9:a9:f1:68:7e:47:69:6b:3f:
51:0d:e0:ab:32:bc:2b:55:0e:63:1f:38:c4:0f:fc:
39:d1:92:f1:67:db:81:27:b4:eb:06:87:8a:59:4b:
03:63:88:59:87:21:56:55:cf:b2:af:b3:75:f7:b3:
b1:13:28:62:4f:1c:eb:d6:76:7f:5b:a6:e1:2c:d2:
c1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E0:6F:6A:2C:39:69:F4:AB:BB:F7:B3:75:56:A6:A9:DD:74:93:6F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/593bb6f2-1ee0-4352-97de-e329502838f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d034:800::/40
Signature Algorithm: sha256WithRSAEncryption
bc:c1:d7:4f:51:3b:b6:72:3f:a2:52:61:89:8b:83:6b:58:64:
63:6b:48:9e:84:ae:df:20:ee:c3:0f:4c:cb:71:32:2e:62:44:
d8:19:e4:92:ab:5e:e2:10:86:fc:fe:ce:4c:5c:fc:54:19:1f:
3d:f3:b5:2e:8c:ca:fb:0b:2e:38:09:82:56:0a:e4:5d:f5:b5:
dd:00:11:e2:57:0a:eb:e0:eb:02:7b:12:46:17:e9:f3:3c:8a:
f1:b3:3b:e3:67:80:db:89:4a:09:69:b0:28:55:0c:3a:03:d0:
61:3e:23:ee:0f:4b:6e:c1:90:08:1a:00:d7:90:b0:b0:e3:54:
12:cb:3a:91:9c:74:cd:88:a9:f1:89:49:fd:2e:8d:33:60:b4:
5f:19:51:0a:0d:3e:57:5f:b5:4e:12:1c:d9:1f:e9:57:15:c9:
e2:91:5b:35:e6:dc:54:a2:fb:18:c9:be:aa:7b:1a:73:69:1c:
55:3c:11:5a:e8:21:75:41:b4:0c:98:5d:3f:1b:16:53:68:a6:
d5:b4:a6:40:a3:f4:9d:99:4c:6d:68:6b:65:34:81:4f:ec:db:
eb:c3:ea:81:20:27:f2:43:4e:27:0f:f9:ae:9c:72:e7:49:89:
94:47:0f:fd:c6:bd:8d:3e:c1:3e:b4:a1:89:0d:bb:44:9e:a5:
70:19:13:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:03 2025 by rpki-client