Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/915ccef6-b06f-4e11-be9a-8b9a229ff52b.roa
File: 915ccef6-b06f-4e11-be9a-8b9a229ff52b.roa (raw, json)
Hash identifier: guDy2QjGG/uzDkr3reK/+TQkEJX9A2hMqFSHyX8QCbM=
Subject key identifier: 88:0B:E9:10:F5:89:42:AC:2D:C4:30:31:F3:80:A7:CF:C0:78:9E:B7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 79E07C0D7139F26836F36F5AFA1A82DC949D9809
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/915ccef6-b06f-4e11-be9a-8b9a229ff52b.roa
Signing time: Tue 25 Mar 2025 16:37:02 +0000
ROA not before: Tue 25 Mar 2025 16:37:02 +0000
ROA not after: Tue 29 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d010:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:e0:7c:0d:71:39:f2:68:36:f3:6f:5a:fa:1a:82:dc:94:9d:98:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 25 16:37:02 2025 GMT
Not After : Apr 29 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b9:98:4d:8e:dd:df:37:42:c7:87:bd:d3:97:
42:fc:cb:88:a5:75:a9:71:55:49:3c:d4:6d:99:12:
12:c1:fe:a4:d6:f6:6c:e0:df:b6:74:c1:41:8d:fb:
08:33:bd:8c:93:d0:da:d7:7c:df:74:26:b8:ce:2c:
a3:6a:69:13:f0:a5:e0:4f:8e:53:11:4a:e3:f3:c8:
91:7d:3f:a1:4e:88:4e:44:a2:87:5b:50:8b:a4:95:
f6:78:92:9c:db:6a:d9:2c:1c:2f:ec:9b:5d:40:64:
14:4f:64:aa:2e:a6:a5:73:5f:4b:0b:ad:12:d2:60:
e4:c8:4a:53:bc:72:6b:97:f6:3f:13:22:07:01:16:
df:b4:d5:e4:0b:58:14:ed:02:0c:07:75:89:6b:90:
02:35:4c:4c:2d:ab:16:e8:45:6d:f3:cf:c7:f3:61:
c4:ff:2a:90:03:d8:bb:3e:b5:c1:5c:09:9a:07:1b:
6d:a3:da:1c:58:ed:df:3b:ef:96:17:eb:42:db:a1:
0d:4e:a1:58:77:15:2f:ef:f5:42:cc:42:dc:fd:5d:
a6:bb:b4:e9:a7:bb:e5:19:44:44:a7:ea:4e:42:a9:
89:67:1d:7d:34:25:59:d3:42:3e:86:51:cf:e1:4a:
6a:ca:3a:28:8b:f8:7c:c9:09:23:b0:02:ce:5c:05:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0B:E9:10:F5:89:42:AC:2D:C4:30:31:F3:80:A7:CF:C0:78:9E:B7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/915ccef6-b06f-4e11-be9a-8b9a229ff52b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d010:8000::/36
Signature Algorithm: sha256WithRSAEncryption
17:89:3d:15:2c:0c:72:d4:4b:a7:a2:ae:b1:85:7c:36:83:27:
0d:03:cf:06:97:1e:a8:26:96:ab:ae:46:a7:d4:da:30:64:c7:
bb:0d:23:20:5e:f8:00:a6:f6:98:a1:6a:1e:d5:c3:0f:87:49:
bd:38:32:a6:25:3e:f7:da:04:9d:33:a1:8f:a1:ec:51:a6:ee:
88:21:82:bc:2f:02:21:72:36:d2:3e:2a:36:24:39:1a:65:4c:
c6:bc:07:d3:36:db:94:c0:fe:57:e9:ef:94:16:50:44:95:11:
45:b1:9f:9d:2f:00:c1:cc:fc:d4:7a:a4:bc:d6:9e:16:0d:fb:
ae:38:2a:8a:8d:51:dd:49:dd:8c:df:74:8b:e3:02:7d:8c:5c:
31:9a:6e:b4:f3:be:88:bf:cc:31:6a:cf:bc:58:55:93:15:b1:
45:cb:d4:a9:07:21:c6:7b:f0:ef:0c:7b:26:43:06:35:67:d2:
b7:f1:fb:d9:ad:b2:24:f9:da:af:b0:8f:bf:03:b1:dc:6b:14:
e6:79:b8:16:32:71:c8:c9:01:eb:5e:54:8b:cf:56:b7:1d:6d:
fc:97:31:2f:ef:f7:21:6e:c1:ba:bb:3c:64:f9:cc:6c:f6:62:
36:88:0a:97:13:72:46:de:4c:c6:9d:b5:dd:82:96:2a:46:8c:
f1:d6:ee:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:19 2025 by rpki-client