Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
File: 7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa (raw, json)
Hash identifier: bKglAOi0lepJD6WDIg7HCo6suUGG20BsvbvXmLlJZ3k=
Subject key identifier: 87:79:DE:8A:13:01:66:4F:6E:70:56:16:17:4E:B9:3A:47:96:44:05
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 69A8D4D2ABB11B1CD1A983675BAC2B3883F8AA10
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
Signing time: Fri 07 Mar 2025 15:00:12 +0000
ROA not before: Fri 07 Mar 2025 15:00:12 +0000
ROA not after: Fri 11 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:e000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:a8:d4:d2:ab:b1:1b:1c:d1:a9:83:67:5b:ac:2b:38:83:f8:aa:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 7 15:00:12 2025 GMT
Not After : Apr 11 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:08:6a:58:4e:88:12:a2:32:ab:ee:65:37:da:
4e:8f:ba:4e:39:da:75:29:76:32:c8:69:30:f1:76:
a8:a8:25:ba:fd:03:95:3f:32:99:ad:b6:86:a3:a9:
5d:ab:aa:4d:93:2b:8b:98:fc:f5:35:f4:fd:6b:e8:
c2:da:2e:88:af:44:90:fc:03:72:ad:35:96:7a:39:
98:2e:85:23:e6:7e:ab:73:37:cf:65:61:68:92:a2:
76:08:d5:b3:a0:99:f1:0d:0e:ae:96:61:76:a9:b8:
d7:d3:f9:e4:1b:19:00:d5:03:0e:4c:c3:ef:42:d4:
df:d5:3b:a7:fb:59:09:ff:55:be:e0:51:bf:ce:19:
f5:63:5d:90:49:fd:88:f2:83:df:2c:58:a8:eb:c7:
4b:9a:36:f6:cb:58:70:b8:18:8b:a6:bf:b9:cc:b2:
3f:33:00:60:9a:fd:f6:7d:8c:b5:af:2d:80:00:ff:
5a:dd:06:8c:f3:80:10:4a:1a:13:32:66:b7:d1:96:
bd:89:04:73:d8:c9:88:44:b5:27:29:10:1a:35:e1:
59:17:53:af:22:66:15:a8:dd:3e:85:7b:14:8e:59:
b4:95:16:58:1f:ce:d0:a5:34:9b:97:98:64:6d:9a:
92:28:ae:d2:38:b2:13:86:b7:f3:09:fe:6e:7b:91:
f3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:79:DE:8A:13:01:66:4F:6E:70:56:16:17:4E:B9:3A:47:96:44:05
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a2215e7-5ee2-420b-8f98-5e0faef4cbea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:e000::/40
Signature Algorithm: sha256WithRSAEncryption
01:fc:20:14:43:0c:dd:2f:8d:10:a5:3a:7b:68:68:56:d4:71:
99:95:33:d2:70:83:89:92:8e:eb:b0:13:a5:b8:17:37:b8:13:
fc:1c:47:ac:f1:19:27:74:7a:fa:74:4e:f7:c0:d7:81:9a:c2:
72:c5:fb:d6:e6:db:57:c1:30:36:ec:3e:35:d0:ff:f9:2d:10:
15:5d:cc:2c:08:73:bb:33:d9:64:8c:e7:b8:58:4c:0f:df:28:
33:7e:36:f0:f1:59:01:2a:c7:5d:47:7a:56:b8:33:e6:d9:c8:
fd:2d:e7:41:65:23:21:41:27:4f:13:5a:75:c2:7d:5f:79:00:
15:02:d4:53:a0:5b:b4:8e:22:52:f6:2e:a2:35:35:41:8d:6a:
e3:93:7f:d1:59:e6:c5:c8:de:1d:2d:13:1f:c9:86:09:ad:08:
03:01:d1:14:3f:9e:0e:1c:8b:c7:ce:23:a7:87:04:fb:cc:bd:
b1:4f:20:94:2d:e5:9e:37:e6:8b:a7:22:6b:71:5d:96:df:ab:
df:e8:a2:db:c0:55:53:6b:be:ed:a1:d0:ca:ac:d1:d8:f3:73:
e2:29:cf:53:9e:d9:5f:0a:a0:e5:c2:42:f1:53:35:39:be:c2:
a8:2a:94:3c:16:f2:7f:f7:27:d4:9b:16:ff:bc:1f:df:33:7d:
eb:6d:c0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:11 2025 by rpki-client