Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9008efbf-b0b5-4392-9da5-fe8a476db8d8.roa
File: 9008efbf-b0b5-4392-9da5-fe8a476db8d8.roa (raw, json)
Hash identifier: 03cL0np/QyswuDaDaSoOCTWaQTBmKMfeRac+TSs8e/A=
Subject key identifier: CD:3D:99:89:BF:E7:65:18:AB:8E:B1:51:D2:D7:99:99:D4:CD:31:D3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7B36E4CAA52287A57354AF3B69BFBB29053882F9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9008efbf-b0b5-4392-9da5-fe8a476db8d8.roa
Signing time: Fri 07 Mar 2025 15:10:06 +0000
ROA not before: Fri 07 Mar 2025 15:10:06 +0000
ROA not after: Fri 11 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d05b::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:36:e4:ca:a5:22:87:a5:73:54:af:3b:69:bf:bb:29:05:38:82:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 7 15:10:06 2025 GMT
Not After : Apr 11 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:eb:32:c0:50:61:93:d9:1c:45:09:93:00:8d:
cf:96:c5:2b:4d:8f:6a:df:be:72:bd:e5:35:52:3a:
20:3d:b0:e1:4f:75:f0:33:c0:1d:a7:f1:80:81:8f:
64:e9:fe:67:41:1b:bf:ca:94:84:f2:18:2d:bb:a3:
56:93:63:a1:25:0d:fd:c2:89:f7:d0:88:88:73:fa:
7e:b1:5b:8f:2c:3f:7f:55:20:fa:e2:09:f1:88:97:
5e:c0:fe:35:c3:c3:52:e8:0c:e3:e3:7a:97:31:cf:
5c:8c:6c:f2:4f:c9:0f:9f:39:6f:24:44:68:a1:74:
7c:f9:55:0f:0b:de:b0:42:a2:20:5b:29:43:71:c4:
a0:10:d3:9d:14:81:b9:b5:59:cb:36:4d:b0:67:65:
31:7e:4e:9f:a4:fe:47:4c:df:c2:0f:d6:e6:13:e8:
06:5f:f1:ac:37:c5:c9:4f:6c:63:de:19:9f:0d:88:
0e:c4:d7:91:58:06:7b:ea:e6:77:64:f2:61:4d:54:
4d:3c:71:ed:04:bf:30:25:d9:fb:4b:fb:23:8e:59:
4f:e1:f0:6d:09:6d:81:2c:e4:3f:65:2c:e2:4f:88:
0d:08:71:d6:b1:e0:35:71:6d:22:cb:1a:9b:40:60:
00:7b:8e:87:fd:80:a2:95:66:9e:45:05:13:a0:de:
21:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3D:99:89:BF:E7:65:18:AB:8E:B1:51:D2:D7:99:99:D4:CD:31:D3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9008efbf-b0b5-4392-9da5-fe8a476db8d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d05b::/32
Signature Algorithm: sha256WithRSAEncryption
3a:21:72:06:8f:9e:cd:92:4c:49:ed:e8:6b:5c:4e:cc:89:fa:
bc:2c:9c:6c:64:80:ca:ba:d3:71:0d:97:57:1f:c2:08:6a:6f:
90:b5:bf:c9:a2:93:90:2d:cb:59:b4:4c:ec:5b:5c:cf:f3:b0:
e4:37:ea:6c:33:90:0e:28:3a:81:fe:b5:9b:35:92:5b:99:00:
32:48:87:9f:09:49:e6:34:73:ce:1d:67:cf:58:30:3e:e0:94:
95:2f:2e:36:09:ad:8a:a6:f2:92:c5:f4:34:b7:c4:ef:73:41:
8e:df:82:87:e2:fa:53:b0:2b:46:f0:ab:94:32:7f:ba:41:29:
c9:7e:4c:a9:3a:9f:2b:57:00:e5:d5:49:04:4b:cd:a3:f6:51:
97:bf:61:c1:d5:6a:99:99:7a:2e:8a:e9:bc:1e:a7:01:fa:da:
c5:8e:0b:78:91:45:6e:16:f7:a6:a3:00:30:c2:34:ff:f2:dd:
ba:42:bc:12:03:9b:20:85:83:12:77:28:c8:91:59:1f:1e:16:
83:6d:a8:b6:ee:53:69:30:34:47:95:a2:22:7b:24:cd:91:a0:
28:cd:ef:70:a7:07:37:12:cf:1d:c5:07:06:a2:01:9d:fc:7f:
49:ff:83:0c:6a:2d:10:f8:91:78:cf:4a:84:2c:bb:a6:28:fe:
ff:7a:75:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:28 2025 by rpki-client