Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91473fe5-f129-48d9-8d23-63d62cec663a.roa
File: 91473fe5-f129-48d9-8d23-63d62cec663a.roa (raw, json)
Hash identifier: Uo1326Upd4Gv2lFbQpeFbTKq6yN33sCFefmSh05Q6Sw=
Subject key identifier: BD:FC:3E:13:65:CD:6C:5F:78:EA:11:F7:B2:4C:4D:B7:4F:4B:42:59
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 32BA6513C110DDEC3AFC7672A9B6A1D3DD9BCAAC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91473fe5-f129-48d9-8d23-63d62cec663a.roa
Signing time: Wed 26 Mar 2025 19:22:07 +0000
ROA not before: Wed 26 Mar 2025 19:22:07 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:840::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:ba:65:13:c1:10:dd:ec:3a:fc:76:72:a9:b6:a1:d3:dd:9b:ca:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:22:07 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:73:b7:69:6c:6a:15:9d:24:76:4d:50:ea:05:
bd:a2:b6:61:cc:7b:c0:41:47:e0:07:c5:51:8b:47:
2d:9d:f2:5c:0e:68:57:5c:b8:a6:eb:2f:7e:da:1c:
41:88:9e:b7:c7:2b:8c:06:be:7d:0a:f0:c8:06:5d:
bd:5f:84:00:c0:a4:53:e2:ca:c9:ab:ef:01:a2:0b:
55:ec:fa:da:98:fe:74:65:94:5d:52:73:b6:c6:60:
f7:a2:9a:8c:04:38:46:89:12:59:cd:e4:14:0c:6e:
d0:38:1d:5c:fa:84:b3:9a:91:9a:ce:47:cf:70:f5:
93:e6:1e:7d:7e:20:c4:15:d5:3b:dd:1f:b6:cf:83:
b1:c5:57:ec:9d:04:f2:52:d1:b5:61:02:3b:31:ac:
af:c4:41:57:48:ac:18:ed:fa:8c:78:cd:49:e2:a4:
79:d3:b6:4a:76:11:69:52:0c:b1:20:6b:49:a7:f8:
ac:04:d1:0e:3a:ae:c4:65:43:97:c5:ff:80:d6:0b:
e4:86:dc:7b:5b:5b:13:99:27:7b:7a:1a:7a:5f:6c:
cd:f5:aa:43:65:37:38:9f:cc:b3:9d:12:cc:c3:18:
44:d5:9e:00:7c:15:96:4c:57:43:88:c1:82:bc:f7:
1a:c0:55:da:15:7f:3a:1f:fd:7e:7f:aa:15:57:4f:
74:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:FC:3E:13:65:CD:6C:5F:78:EA:11:F7:B2:4C:4D:B7:4F:4B:42:59
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91473fe5-f129-48d9-8d23-63d62cec663a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:840::/48
Signature Algorithm: sha256WithRSAEncryption
a4:79:99:e2:f6:fa:3f:51:ae:5d:30:14:05:f7:72:53:44:a2:
6e:2b:da:dc:a4:45:56:04:ae:61:65:3a:f3:57:e4:cb:f0:23:
7f:8b:0e:48:23:24:32:8a:29:d3:6d:b3:42:16:e8:a2:2e:9f:
4d:ca:82:19:7c:28:43:21:e7:aa:1e:c1:86:be:e8:1a:a4:34:
8a:9b:ea:21:53:12:92:96:f4:66:30:fa:a4:2d:51:1a:f4:5c:
24:27:f5:a2:bf:4f:0e:0b:48:f9:15:d4:bc:b4:b4:c3:6d:47:
21:85:e9:d8:21:77:5f:4c:b2:98:97:77:58:8d:28:ed:94:a4:
45:c4:00:e4:11:f0:86:76:24:8b:69:f6:b5:ad:b3:58:56:43:
55:b2:a9:5b:e2:47:aa:76:7e:8a:c9:4c:2b:c0:84:f5:d8:82:
73:a9:71:76:fc:91:aa:0b:62:5d:41:e5:25:b9:b7:d0:93:41:
f9:14:6f:d3:7e:af:33:29:05:e1:af:00:5e:97:fc:f5:11:cc:
58:d7:32:f3:a7:a7:76:4b:06:49:ee:cc:d7:40:fb:c3:23:ae:
3c:0f:53:6a:6e:f2:19:78:8a:c4:25:92:ca:d9:14:7e:6b:fa:
7c:06:2d:11:f6:21:8a:7a:df:e3:59:b4:f2:dd:b3:57:e7:d8:
0d:a1:48:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:18 2025 by rpki-client