Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62ff4e5e-9e65-44fc-af7f-4e44935ceb42.roa
File: 62ff4e5e-9e65-44fc-af7f-4e44935ceb42.roa (raw, json)
Hash identifier: IF3UA82BanReFkxNrZKlkmIkXbmE9bHn8Y8HV7IiHeI=
Subject key identifier: 80:8E:E7:74:40:01:E1:6F:0E:27:22:D7:7A:DC:2C:C6:33:76:B6:F9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0A642ED8D4908995C39F44D76B71AB48BA05E198
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62ff4e5e-9e65-44fc-af7f-4e44935ceb42.roa
Signing time: Wed 05 Mar 2025 16:00:46 +0000
ROA not before: Wed 05 Mar 2025 16:00:46 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:1080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:64:2e:d8:d4:90:89:95:c3:9f:44:d7:6b:71:ab:48:ba:05:e1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:00:46 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0d:77:a7:15:01:ac:00:9b:36:f9:32:46:c3:
f8:7d:65:18:08:b6:0d:a0:25:9b:87:90:9a:3f:95:
2d:3d:2f:35:f1:ce:63:37:5d:ec:31:46:c9:ee:4a:
de:78:d3:b5:40:1e:ff:35:ac:c1:dd:24:40:64:1f:
09:63:98:13:11:46:aa:1f:1d:af:5b:f1:70:05:bd:
9f:29:a4:7a:ef:7e:f2:7e:df:64:40:b3:b0:b8:6e:
be:87:14:85:fe:a7:f1:b7:ef:40:1b:8a:b0:57:bc:
77:0c:21:28:10:c7:52:cd:3c:3c:59:b0:e6:3a:44:
74:21:01:73:c4:98:37:cc:d9:ad:a2:eb:89:45:df:
20:ff:e4:44:18:ca:35:6c:3f:e5:81:2a:6f:c8:da:
d0:48:e4:87:58:47:47:da:ab:32:eb:3e:c6:75:b9:
3d:87:98:5c:d0:3c:20:b7:44:66:4b:ae:67:fe:6a:
b2:b4:a6:55:29:15:b4:ed:31:fa:19:69:12:40:38:
c8:fd:a9:c7:cf:e7:fd:b9:89:00:80:c5:f1:bc:63:
92:79:4c:29:14:9a:51:18:d5:8b:93:6e:3c:e1:d2:
ac:d8:6e:8a:a9:2e:e0:2b:3b:ce:f4:56:cb:46:cc:
15:5b:86:40:49:07:db:2c:2f:37:b8:57:60:f5:55:
ad:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8E:E7:74:40:01:E1:6F:0E:27:22:D7:7A:DC:2C:C6:33:76:B6:F9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/62ff4e5e-9e65-44fc-af7f-4e44935ceb42.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:1080::/48
Signature Algorithm: sha256WithRSAEncryption
a1:24:d9:4d:23:a3:4d:17:6f:2e:13:03:50:c4:c1:8b:43:34:
66:1b:74:d4:25:50:5c:b7:f1:81:ac:58:3b:c7:fd:4f:ea:7c:
96:1c:10:55:92:7c:06:ed:5b:91:4d:94:43:84:f3:93:c8:92:
67:fb:5c:37:3a:d0:8a:f0:6a:d4:89:fd:0b:64:d8:c5:e8:6c:
63:89:22:76:f6:3a:0e:dd:b0:20:d6:d0:89:8e:f1:bb:76:0f:
ca:0e:fe:73:78:d3:f3:94:49:97:83:0c:ec:1f:58:5e:b3:00:
1c:f6:28:f0:c8:e3:55:62:71:97:45:4e:0c:1b:e7:f8:36:23:
bd:91:6b:e3:a2:7b:8c:f0:be:0c:1e:9d:bf:b5:42:3b:6d:40:
2b:3b:bb:33:f6:6e:98:26:3f:a8:67:e9:1b:fd:94:8d:77:c2:
5b:87:66:b6:e5:e3:f6:2a:a3:e8:06:03:0e:28:45:1b:f3:96:
a0:2b:df:b9:0e:f5:84:a5:66:db:ff:8c:da:34:cb:b9:ac:54:
17:a1:c6:0a:57:86:0e:d2:89:dd:c3:39:ea:bb:23:f2:12:4d:
83:b4:4e:1a:f4:02:4c:b6:7c:bd:f0:bc:d7:bd:8d:56:5e:ec:
35:70:ae:30:37:02:41:95:00:b8:0a:a9:de:51:08:45:8b:cb:
a9:29:3d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:47 2025 by rpki-client