Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
File: 7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa (raw, json)
Hash identifier: CInFEic6tz0LYwegY2r5IqMFemeYiYl9jY36IMyZYXs=
Subject key identifier: 94:84:FB:17:28:50:7B:83:D5:7E:C4:8A:06:16:C0:C7:D8:3D:E2:BF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 28EB2F75014FFFA9BEDF56FF7CD2019A54DCC65F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
Signing time: Wed 05 Mar 2025 17:41:50 +0000
ROA not before: Wed 05 Mar 2025 17:41:50 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d012::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:eb:2f:75:01:4f:ff:a9:be:df:56:ff:7c:d2:01:9a:54:dc:c6:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:41:50 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:27:4c:0d:fc:35:22:83:f3:46:bf:ae:57:d0:
9a:a1:7d:71:da:02:c2:3e:e2:2a:65:2a:77:37:0e:
d6:2e:bb:6b:b3:03:84:0a:ea:ef:4d:45:65:ef:d8:
06:1e:40:00:b7:9f:b0:d0:6c:47:cf:c0:3d:77:1d:
26:27:32:a2:7c:eb:e9:b9:45:e2:5b:24:c3:32:18:
08:e2:0b:6b:96:2a:57:50:ed:fb:68:69:fc:54:57:
b1:09:3b:14:bd:61:d1:d8:a0:ab:ee:ed:87:7c:e7:
44:67:6e:09:ad:45:57:d9:f5:cf:26:41:74:ab:f5:
60:c8:54:94:34:4c:70:d5:50:1b:cb:15:40:28:ff:
a1:39:8f:cb:65:9d:29:b7:6e:6f:1f:28:66:cc:af:
e4:98:19:49:6c:41:4d:b2:7d:a7:88:97:e8:fa:36:
00:91:7a:15:92:38:99:31:f8:dc:6d:d5:e2:48:ed:
42:8c:2e:00:e1:ba:ef:2f:8c:7b:c5:53:a3:c5:b7:
11:ba:c8:62:bd:7f:fe:7f:37:ac:eb:21:34:26:8b:
c6:ab:30:37:bb:4f:2b:c3:4e:6d:80:00:93:a8:c5:
5f:c5:26:3a:84:fd:d0:f6:0d:cb:a7:d0:35:85:7a:
32:c8:f2:96:80:41:61:a8:4f:c4:3c:8a:d0:d5:01:
c5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:84:FB:17:28:50:7B:83:D5:7E:C4:8A:06:16:C0:C7:D8:3D:E2:BF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d012::/36
Signature Algorithm: sha256WithRSAEncryption
2b:23:3a:0a:65:14:94:c9:40:67:1e:de:18:67:d4:7b:12:c7:
91:0c:55:39:cc:c7:a7:61:fd:9d:80:e6:6c:af:72:4d:10:71:
62:f6:2a:48:c5:43:45:c1:59:91:cd:6c:0b:f7:c7:70:37:df:
38:aa:d4:f3:ae:16:0f:1b:a0:76:49:f0:1c:b1:26:33:39:8e:
28:6f:8f:3b:91:43:ed:c1:61:c1:46:be:c1:a4:5d:11:91:08:
ff:bc:d6:61:37:0e:ec:c5:f6:b7:7f:92:a7:bd:52:46:e5:78:
5f:40:bf:3c:37:e3:91:f9:3c:3a:ce:78:7f:8f:44:e1:20:2f:
91:bb:c0:73:1a:a0:03:ce:2b:cd:a0:76:ab:17:34:2e:3f:bb:
af:4e:0b:af:b7:ef:e1:73:b6:e5:0f:15:cd:c7:69:1a:13:3f:
6a:eb:fb:86:15:5a:52:07:7f:50:fc:11:dc:ef:8b:b5:2d:aa:
13:9a:1e:bf:1a:6b:25:9f:40:14:3b:a4:8d:37:7b:53:aa:01:
d8:60:39:ef:82:76:4e:3c:71:48:9d:a4:82:05:d8:4d:52:e7:
ad:a9:51:b5:2e:e1:7e:26:d0:bb:b4:1a:65:9a:64:2b:e3:5e:
e7:ce:d1:1c:a4:40:34:bc:c6:74:84:8c:40:57:47:48:3b:61:
85:eb:23:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:43 2025 by rpki-client