Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/780dce66-c0fd-40f4-9a09-0015d6bf272c.roa
File: 780dce66-c0fd-40f4-9a09-0015d6bf272c.roa (raw, json)
Hash identifier: OM5i+iUyCwpempeXc5whQM8jI8WQQCm+M8iIAbsJhTo=
Subject key identifier: E4:B3:95:FC:EC:A2:A7:4D:C1:B8:0D:70:B2:1C:BC:77:DF:E4:28:0F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 25E51FDB6439F322E42AD8DD9A271376A32973B4
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/780dce66-c0fd-40f4-9a09-0015d6bf272c.roa
Signing time: Wed 05 Mar 2025 17:11:57 +0000
ROA not before: Wed 05 Mar 2025 17:11:57 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:90c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:e5:1f:db:64:39:f3:22:e4:2a:d8:dd:9a:27:13:76:a3:29:73:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:11:57 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f9:20:90:9d:86:35:b5:1c:d4:c4:a2:49:de:
37:5d:3d:0b:7f:0e:76:a2:5c:5d:0d:4f:c9:a1:bd:
f1:e4:73:08:b5:82:2a:f0:08:42:88:42:1a:eb:70:
83:3e:59:57:91:fa:06:0e:a2:9b:e4:94:61:9d:24:
1b:3a:29:66:21:25:86:65:22:59:3a:b3:51:02:a3:
e4:6b:4d:16:2b:32:6e:2a:9e:e0:70:5f:f3:83:17:
de:af:40:40:eb:60:fa:ec:b5:42:af:3b:0b:1b:26:
0a:59:37:b8:d2:0e:c2:5a:66:8d:6a:28:e5:e5:06:
df:1b:45:35:91:b7:99:a2:36:89:62:42:97:4f:7d:
6e:e2:f0:98:ce:a3:c9:52:43:7f:6e:e6:20:46:26:
8c:2f:52:b5:d5:9a:b0:2d:c1:63:cb:da:36:b7:1e:
20:d2:c1:04:82:82:c7:a9:12:4e:f8:7c:c8:c5:72:
ff:02:d5:dc:4b:66:da:fd:eb:fc:69:a9:69:d3:04:
94:ca:20:38:ac:3a:48:fa:24:d0:13:d4:b4:6a:cf:
50:7a:f1:cc:8b:71:50:cd:3f:b1:f1:ab:a8:ac:23:
d9:9d:05:62:ec:70:c0:9b:30:2a:20:e2:ca:33:ed:
e5:36:97:9b:20:0a:71:ee:bc:49:95:f2:ae:36:ed:
31:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B3:95:FC:EC:A2:A7:4D:C1:B8:0D:70:B2:1C:BC:77:DF:E4:28:0F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/780dce66-c0fd-40f4-9a09-0015d6bf272c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:90c0::/46
Signature Algorithm: sha256WithRSAEncryption
9a:d1:8b:b3:b8:b4:9f:67:9a:3d:f2:99:ec:c1:e2:12:f3:3b:
34:66:9b:ae:09:d6:f8:0f:2d:56:93:9e:3f:7e:b2:33:0b:04:
42:13:87:78:4b:71:4f:e3:d0:c5:8a:6d:86:06:ad:f9:39:d1:
82:76:af:19:a0:32:7e:1a:41:99:b2:3d:05:08:ca:55:73:2e:
db:9b:f5:d2:b6:fa:d4:01:a2:1c:05:bf:17:31:e1:72:9a:21:
db:3d:a6:0e:7a:57:ce:3b:af:0e:82:fe:0b:95:53:cb:5d:8b:
e3:84:12:6d:8d:9e:ef:ee:f1:34:4f:bc:c5:82:45:39:4f:94:
86:16:d7:99:27:bb:b1:e9:c2:f5:5f:6d:29:18:63:63:b3:70:
cb:7f:67:41:67:e9:03:fd:e5:9c:43:bf:0e:2c:33:b5:2b:47:
7a:01:26:4b:6f:86:7d:14:04:cf:f2:4c:15:a0:e6:5b:b1:31:
0f:37:a2:e6:67:46:16:26:fb:2b:18:68:5d:97:e0:5f:60:e9:
69:a1:dd:cf:54:04:53:f2:96:3a:00:36:20:f4:07:60:ad:a8:
6e:83:2b:80:7a:2e:14:a5:62:6e:24:72:fb:3f:a0:f1:80:0e:
72:a0:42:19:b9:a2:5d:3c:86:d6:f1:dc:45:2f:3d:20:82:37:
89:3b:9a:26
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUJeUf22Q58yLkKtjdmicTdqMpc7QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDUxNzExNTdaFw0yNTA0MDkyMzU5NTlaMHoxSTBHBgNV
BAUTQGZhOGY5Mjc1ZTZiZmI2NTlhYTNlNTljOGQyNTdjN2I2ZWI1ODU4NjZiOGI2
NjQyMDFhODk1Zjg1NDZkZTA3ZGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOH5IJCdhjW1HNTEokneN109C38OdqJcXQ1PyaG98eRzCLWCKvAIQohCGutw
gz5ZV5H6Bg6im+SUYZ0kGzopZiElhmUiWTqzUQKj5GtNFisybiqe4HBf84MX3q9A
QOtg+uy1Qq87CxsmClk3uNIOwlpmjWoo5eUG3xtFNZG3maI2iWJCl099buLwmM6j
yVJDf27mIEYmjC9StdWasC3BY8vaNrceINLBBIKCx6kSTvh8yMVy/wLV3Etm2v3r
/GmpadMElMogOKw6SPok0BPUtGrPUHrxzItxUM0/sfGrqKwj2Z0FYuxwwJswKiDi
yjPt5TaXmyAKce68SZXyrjbtMWkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTks5X8
7KKnTcG4DXCyHLx33+QoDzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NzgwZGNlNjYtYzBmZC00MGY0LTlhMDktMDAxNWQ2YmYyNzJjLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0DWQ
wDANBgkqhkiG9w0BAQsFAAOCAQEAmtGLs7i0n2eaPfKZ7MHiEvM7NGabrgnW+A8t
VpOeP36yMwsEQhOHeEtxT+PQxYpthgat+TnRgnavGaAyfhpBmbI9BQjKVXMu25v1
0rb61AGiHAW/FzHhcpoh2z2mDnpXzjuvDoL+C5VTy12L44QSbY2e7+7xNE+8xYJF
OU+UhhbXmSe7senC9V9tKRhjY7Nwy39nQWfpA/3lnEO/DiwztStHegEmS2+GfRQE
z/JMFaDmW7ExDzei5mdGFib7KxhoXZfgX2DpaaHdz1QEU/KWOgA2IPQHYK2oboMr
gHouFKVibiRy+z+g8YAOcqBCGbmiXTyG1vHcRS89III3iTuaJg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:48 2025 by rpki-client