Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
File: 91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa (raw, json)
Hash identifier: 2B+pQZv8pq17ag4E18FPnA56VBUKxbw+Kjcg5pk1EpU=
Subject key identifier: 52:9A:10:8E:EE:90:47:B4:71:F2:3F:51:C4:ED:29:A3:B4:B6:F3:3E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7AC724FB05F8865EA3D0D3D42E465F455BC9970F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
Signing time: Wed 05 Mar 2025 15:10:02 +0000
ROA not before: Wed 05 Mar 2025 15:10:02 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:8080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:c7:24:fb:05:f8:86:5e:a3:d0:d3:d4:2e:46:5f:45:5b:c9:97:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:10:02 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:79:2a:f5:0b:96:da:7a:07:6e:b6:3a:b7:80:
53:56:70:c9:8a:dd:b1:ba:44:fd:ec:a9:1c:34:ea:
fd:71:25:5a:94:56:bb:61:b5:9b:fb:19:26:01:ae:
87:b5:d0:23:fe:83:72:b5:55:61:5a:28:80:8d:c7:
a7:f0:41:f0:e0:cc:49:4c:f0:73:e6:6a:1d:0e:40:
61:37:a1:fb:b1:4f:c4:2d:8e:16:e1:f5:be:5a:fa:
96:78:f7:a0:74:c8:52:5d:9b:31:bb:8b:1e:1c:5b:
35:62:73:64:40:08:b9:fc:4e:1a:94:33:33:51:3f:
08:5f:e2:2f:a8:1f:9b:75:ee:72:38:ff:32:79:bb:
0e:51:31:e7:1b:76:96:2a:f5:9d:f1:a1:52:a0:3f:
32:20:14:56:8e:5d:49:47:31:26:ca:05:21:fb:7e:
9f:6d:e1:ae:f6:36:e1:d8:7f:38:ed:ed:ea:c3:3a:
28:63:ad:fa:61:cd:3b:fb:84:91:50:99:6a:8d:fe:
c2:6d:f6:a4:68:71:4d:f0:30:15:7a:32:d0:63:6d:
c3:52:d2:e0:dc:27:7e:72:71:44:11:c1:12:3f:f3:
c3:31:1d:bf:fb:35:09:e1:d7:47:3a:f2:aa:9a:28:
78:e5:28:39:14:cd:14:44:0f:26:ef:be:ac:76:80:
b9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:9A:10:8E:EE:90:47:B4:71:F2:3F:51:C4:ED:29:A3:B4:B6:F3:3E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:8080::/48
Signature Algorithm: sha256WithRSAEncryption
4d:86:24:23:4e:42:4d:ba:f7:67:e2:b7:8a:5a:bb:c8:15:42:
9a:6f:f3:ff:d0:ec:83:bc:89:70:db:ee:43:18:4d:19:3d:75:
76:5b:2c:62:cd:1d:8f:3f:22:03:00:4e:da:30:85:98:6f:39:
80:3e:3e:d5:63:ae:bf:64:fa:bb:1c:3d:ec:24:ec:88:de:38:
11:6f:ab:89:b8:bd:1a:f7:c8:9b:40:27:58:e7:89:97:e8:30:
21:f0:ce:96:ed:33:89:35:4f:15:d4:3f:23:30:79:7d:33:02:
63:ff:37:6b:4d:8f:66:79:0d:0b:0e:9d:c8:a8:1d:42:ac:86:
56:93:ac:d2:f5:20:30:86:01:25:19:c9:48:3b:6a:21:44:35:
03:e0:2a:e2:df:b9:45:96:11:64:8a:53:b8:33:cb:81:46:ea:
b6:a3:9e:3c:42:8e:e5:20:c8:ed:8d:65:a3:1c:fa:60:a2:a6:
5a:e8:9e:62:52:80:8d:f0:47:d0:2e:2e:65:8d:70:7e:60:4f:
1b:49:15:95:47:6f:e9:e0:94:35:ad:8b:d3:5e:50:d1:9c:1c:
bb:f3:3a:25:91:5b:8b:fc:17:5a:ba:5f:a7:90:f1:8e:4d:70:
bd:5c:49:65:d5:80:0d:66:81:be:a5:cc:20:df:9d:2d:38:33:
c7:e4:d0:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:33:21 2025 by rpki-client