Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa
File: 74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa (raw, json)
Hash identifier: ssbSz95ZzoVZJnt9M88oKypaWSpcB//lulVSjMjcV3Y=
Subject key identifier: 40:0E:6F:61:C9:F2:0B:69:E4:49:98:0A:E5:76:34:3E:7A:E6:8B:C7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6EA7CDD36D778FE1EEE6F7EF4EC6A79720A15811
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa
Signing time: Wed 26 Mar 2025 19:23:19 +0000
ROA not before: Wed 26 Mar 2025 19:23:19 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:880::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:a7:cd:d3:6d:77:8f:e1:ee:e6:f7:ef:4e:c6:a7:97:20:a1:58:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:23:19 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:73:e6:68:76:0c:8c:57:f8:fc:be:5d:1b:67:
06:d8:2a:41:3d:a9:49:65:7e:41:12:f7:1b:df:69:
af:38:a1:b7:55:0c:38:3e:df:d8:b5:b4:92:7a:d4:
02:62:7d:26:28:b4:fb:b8:ca:7b:d8:16:9c:03:a6:
3d:b6:31:a7:53:7d:80:c0:6e:42:16:83:f3:9a:9f:
11:41:12:0c:77:da:29:20:41:b4:5c:ac:72:b5:12:
82:c7:46:27:7c:ff:50:3b:73:cb:32:3b:ef:91:03:
ee:28:cc:f4:9f:da:5d:95:70:0f:b2:4a:29:66:c5:
e8:51:e2:63:52:66:7f:e6:50:92:52:69:f9:94:20:
ff:f7:6d:69:82:a5:f4:b2:23:43:ad:30:63:92:f4:
93:3e:a2:6b:7d:18:90:9f:75:e3:75:80:b4:a6:d1:
9f:96:e7:20:91:91:e0:06:70:8b:3c:cc:a4:da:8b:
66:d0:c2:ea:65:ec:7b:7b:3a:ec:85:45:72:8c:d3:
2e:6d:88:d0:a8:ce:12:2f:2f:76:11:03:2d:8e:cb:
2a:08:24:8f:d3:f9:46:95:56:df:24:21:ea:cd:9b:
0a:2e:2d:8b:7a:76:96:f3:b3:78:d3:d2:ad:46:7a:
34:fd:54:a1:75:d9:6a:bd:e4:b2:49:03:c9:55:19:
c0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0E:6F:61:C9:F2:0B:69:E4:49:98:0A:E5:76:34:3E:7A:E6:8B:C7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/74f41cc9-ba0e-46d9-a774-45f6a030a3f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:880::/48
Signature Algorithm: sha256WithRSAEncryption
b2:5f:25:47:cc:55:b5:98:1c:7b:db:30:1f:c0:58:b2:6c:3a:
eb:15:78:a7:96:09:47:af:62:65:17:82:52:3d:bc:ee:ab:36:
55:b7:c7:6b:3a:c9:c8:a1:7e:2b:8b:b6:b3:5b:67:4a:45:75:
9b:eb:63:07:38:ed:90:67:42:12:77:e9:e8:46:0a:35:49:00:
29:e1:16:ec:27:10:32:30:6d:5f:a3:37:4f:ba:3f:15:3b:0d:
03:76:bd:11:65:42:41:a2:9b:26:43:55:fb:e8:01:c3:16:d7:
3b:a3:13:b5:45:ef:07:34:94:d0:ff:0c:57:f0:89:1a:f3:c3:
e7:27:50:53:c2:14:6d:6b:4c:03:51:ca:79:49:d5:ed:b3:23:
74:12:97:4a:a4:d7:5f:6e:da:fd:c4:88:87:23:6a:3b:10:6f:
23:e6:02:f4:45:fe:a3:83:88:c7:c8:46:fb:72:69:2a:11:44:
9b:f4:55:8a:a9:e5:ee:81:5c:1b:3b:64:32:97:d4:a2:66:38:
c3:4f:2f:5a:36:7a:b9:08:d4:33:5f:4d:89:6b:49:5d:10:c7:
88:34:3f:71:c2:d4:2f:ee:3d:d4:30:1b:78:bd:80:5c:f0:08:
c0:2f:74:db:be:ae:38:cb:9d:1f:bd:13:a4:4d:a0:1d:f2:07:
37:81:f9:86
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUbqfN0213j+Hu5vfvTsanlyChWBEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMjYxOTIzMTlaFw0yNTA0MzAyMzU5NTlaMHoxSTBHBgNV
BAUTQDA4M2JmZGJkNGViY2FmN2FlODFmZTRiZDQ4MjM4NjVjMjJhOTE5Y2QzMDZl
MzlmYzRhZDU5NDBkMjA4MmM1NWExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALlz5mh2DIxX+Py+XRtnBtgqQT2pSWV+QRL3G99prziht1UMOD7f2LW0knrU
AmJ9Jii0+7jKe9gWnAOmPbYxp1N9gMBuQhaD85qfEUESDHfaKSBBtFyscrUSgsdG
J3z/UDtzyzI775ED7ijM9J/aXZVwD7JKKWbF6FHiY1Jmf+ZQklJp+ZQg//dtaYKl
9LIjQ60wY5L0kz6ia30YkJ9143WAtKbRn5bnIJGR4AZwizzMpNqLZtDC6mXse3s6
7IVFcozTLm2I0KjOEi8vdhEDLY7LKggkj9P5RpVW3yQh6s2bCi4ti3p2lvOzeNPS
rUZ6NP1UoXXZar3kskkDyVUZwBsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRADm9h
yfILaeRJmArldjQ+euaLxzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NzRmNDFjYzktYmEwZS00NmQ5LWE3NzQtNDVmNmEwMzBhM2Y0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DgI
gDANBgkqhkiG9w0BAQsFAAOCAQEAsl8lR8xVtZgce9swH8BYsmw66xV4p5YJR69i
ZReCUj287qs2VbfHazrJyKF+K4u2s1tnSkV1m+tjBzjtkGdCEnfp6EYKNUkAKeEW
7CcQMjBtX6M3T7o/FTsNA3a9EWVCQaKbJkNV++gBwxbXO6MTtUXvBzSU0P8MV/CJ
GvPD5ydQU8IUbWtMA1HKeUnV7bMjdBKXSqTXX27a/cSIhyNqOxBvI+YC9EX+o4OI
x8hG+3JpKhFEm/RViqnl7oFcGztkMpfUomY4w08vWjZ6uQjUM19NiWtJXRDHiDQ/
ccLUL+491DAbeL2AXPAIwC90276uOMudH70TpE2gHfIHN4H5hg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:10 2025 by rpki-client