Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa
File: 79440387-66a3-4852-a94b-8a3250f20726.roa (raw, json)
Hash identifier: xaDoQIphdpZB24mlk1j1m2rpb25H1TciAM8pALRzO8E=
Subject key identifier: 2B:C9:4A:88:CD:43:3D:1F:AD:AB:C7:93:23:84:7C:16:0C:3C:10:2E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2D9B303162B5DE220DF5B651BA2B9E7A70251137
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa
Signing time: Tue 04 Mar 2025 23:50:12 +0000
ROA not before: Tue 04 Mar 2025 23:50:12 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:a040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:9b:30:31:62:b5:de:22:0d:f5:b6:51:ba:2b:9e:7a:70:25:11:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 4 23:50:12 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:4b:59:92:45:3f:e0:85:36:6e:0f:85:09:
0d:9e:56:3a:55:3a:3e:4a:1b:3e:38:7d:bf:66:37:
c4:ce:36:0b:4a:bc:2b:97:98:ee:69:00:b6:28:db:
fb:cd:42:10:66:46:47:d7:6f:bf:15:25:29:53:66:
89:65:41:fa:80:c9:5e:81:9a:a0:f1:6f:2d:e2:58:
e7:2c:8e:7f:55:58:ba:1d:d0:00:3a:64:a3:69:81:
db:cd:6b:a7:2c:24:cf:60:3c:70:1a:b2:63:55:d4:
1c:c4:d2:15:52:1e:df:b5:85:94:9c:5b:bc:ed:70:
08:3f:2d:a5:71:9b:25:e4:65:57:70:71:31:98:73:
dc:ca:69:bc:1f:a6:eb:05:e7:b5:06:39:74:0f:cb:
0d:d4:7c:b5:a7:bf:3d:3f:e0:33:31:6b:92:b0:57:
28:0e:53:33:59:27:fc:12:a3:ab:29:a3:5e:ec:f8:
e6:7e:c7:92:f3:25:75:4c:e7:0d:dc:9a:5e:9b:70:
a9:52:a3:f4:21:ee:30:4b:78:b3:34:34:48:77:03:
67:b5:ac:ff:46:e5:0c:53:95:c0:d0:8a:66:84:e6:
cc:b5:0c:d9:f1:38:64:cc:77:a4:95:95:9c:9d:99:
b8:b8:27:ee:2a:a3:a2:13:fd:81:a2:82:5e:24:74:
67:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C9:4A:88:CD:43:3D:1F:AD:AB:C7:93:23:84:7C:16:0C:3C:10:2E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/79440387-66a3-4852-a94b-8a3250f20726.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:a040::/48
Signature Algorithm: sha256WithRSAEncryption
b3:2d:8e:5c:02:47:78:2c:f7:8d:56:bc:bf:d6:2a:a8:8c:c4:
96:d0:fe:64:4a:50:84:40:9f:cf:07:f5:ad:16:25:95:52:2e:
29:0a:9c:90:ed:41:16:80:94:ee:92:03:c5:dd:ec:5c:dc:17:
06:d6:cd:5e:71:9f:5a:38:3e:7b:aa:63:e6:24:10:5f:a5:34:
1f:27:3a:0e:41:55:a0:11:f9:bd:4f:33:05:d8:b5:0b:57:79:
fa:97:95:b0:dc:81:75:a6:54:a3:82:42:d6:d7:59:eb:e3:f6:
f3:3f:ab:d0:0a:03:8a:17:a1:19:f8:35:01:60:19:a2:c2:98:
46:a4:c1:da:93:cb:99:56:b8:56:1c:fc:32:d2:f8:6a:e5:00:
d0:98:03:9a:cc:9e:13:28:3b:c8:38:a8:68:cf:84:79:ac:28:
3f:8b:61:7b:d1:6d:2e:89:c7:c9:86:5b:2e:d2:30:01:7d:76:
8b:5f:83:07:ff:4e:48:9c:b3:06:f6:63:50:a3:d9:db:35:8d:
fd:83:75:2c:6e:91:91:a9:94:b3:bc:1d:01:6f:e6:5f:23:c0:
16:84:be:70:ae:ca:2c:68:73:0d:e2:c4:e3:59:5d:8a:8e:db:
3e:fd:ca:85:e7:88:24:a1:a1:7a:e1:cd:67:8c:9d:fe:47:66:
e5:bb:61:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:08:53 2025 by rpki-client