Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
File: 6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa (raw, json)
Hash identifier: EyKh0f8hP3juy0Ps66HjW9WzaGGvoxUIn8QYyc9cMA0=
Subject key identifier: A3:87:56:C8:B7:B6:30:D3:7D:FA:E6:34:5E:69:45:57:F8:BD:43:91
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7F3B53AF8136D4F1B5A74227F002E4D9C7CDDDF0
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
Signing time: Wed 05 Mar 2025 17:21:07 +0000
ROA not before: Wed 05 Mar 2025 17:21:07 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:c000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:3b:53:af:81:36:d4:f1:b5:a7:42:27:f0:02:e4:d9:c7:cd:dd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:21:07 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:dc:b1:1e:85:58:bc:f9:3c:fe:bd:53:12:
3a:26:b6:20:2f:0e:43:ba:3d:b0:1c:45:50:b1:2c:
bf:cb:9e:c9:ef:3f:5b:b3:8a:9c:8c:8e:bd:f4:29:
e6:00:99:16:d3:94:72:36:22:12:39:ac:4c:08:ea:
95:21:72:e5:27:52:9a:14:0d:19:dc:5b:5d:47:f2:
ef:82:0a:34:bc:07:5e:a8:f3:36:71:c6:0d:fe:65:
03:4e:2f:72:1f:5b:a5:f3:55:8f:d5:a9:95:48:d6:
90:08:48:9c:3c:44:d7:94:23:e1:9d:53:2c:dd:a2:
b0:78:f4:78:e0:0a:fc:20:62:de:83:6d:d4:68:52:
29:d9:ed:58:95:d1:91:f4:34:af:37:a9:e7:d8:93:
c3:24:82:49:37:df:b5:6e:26:ce:23:5c:a4:39:f6:
5a:32:1b:8e:6c:94:85:a6:7b:6d:22:6c:f2:5a:ab:
c2:db:ae:2f:e1:68:74:73:87:46:a2:d7:03:d2:b6:
53:b4:b8:64:d5:1c:4e:a6:13:64:f9:f0:36:ea:a0:
24:4f:b7:8e:a1:4d:74:bc:10:2e:1e:96:be:22:51:
e7:83:a4:dc:48:4b:bc:2f:e9:4e:53:34:bb:4a:1d:
13:cd:a2:31:ac:02:22:bd:69:1b:9d:53:f5:6c:29:
6d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:87:56:C8:B7:B6:30:D3:7D:FA:E6:34:5E:69:45:57:F8:BD:43:91
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:c000::/40
Signature Algorithm: sha256WithRSAEncryption
57:a2:6d:85:ab:af:fb:d6:e8:9d:c0:a5:8b:d0:ff:c7:5c:4f:
ec:8b:3c:de:f4:cd:4f:75:56:a1:c7:cf:4b:83:b4:06:e2:b1:
62:bb:0a:81:0f:01:6e:ec:41:1a:c9:e9:3e:69:b3:43:b0:90:
17:72:17:a1:0f:84:21:4f:02:f6:27:50:1d:80:5c:5d:02:46:
a2:0b:8c:91:2a:75:f6:b5:09:30:b0:9c:6d:01:20:27:56:89:
76:78:ab:a7:41:fb:84:31:ec:1c:ef:26:be:54:fe:32:57:41:
ab:45:19:c6:fd:ee:03:1f:ea:98:02:c8:cf:b4:42:5d:ab:31:
d9:8f:2c:35:f7:27:62:32:35:cf:1e:90:09:f5:6d:75:f8:d4:
a5:88:6d:24:09:e8:00:a4:fb:a7:0b:d2:7c:1b:31:b4:6d:5a:
10:c5:5a:dc:36:ac:da:b0:1b:1b:f0:f2:42:2a:95:24:23:5f:
39:57:5a:f1:91:dc:a8:b2:5d:2f:b0:87:3e:b5:c4:25:db:c3:
27:9c:8f:d4:e7:cb:45:fc:01:74:9c:75:94:12:25:54:3e:c2:
eb:b5:45:ab:fb:62:17:38:f7:e9:1e:44:59:d7:5d:f6:4f:87:
d4:ef:57:b2:1e:1a:8a:25:82:de:31:8f:fa:19:92:2b:1c:17:
9b:e6:79:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:59 2025 by rpki-client