Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
File: 9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa (raw, json)
Hash identifier: 2JD1hMNqLGSibCNj8B7NfGtAAFGRK2lcegC3O5Db+NA=
Subject key identifier: 2E:88:71:73:35:69:82:28:CC:C5:17:ED:BF:91:A8:FB:26:4F:9E:23
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 56A4EE98E7D8521E6CA2C8508D1341C41A4A47AC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
Signing time: Tue 04 Mar 2025 23:50:08 +0000
ROA not before: Tue 04 Mar 2025 23:50:08 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:9080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:a4:ee:98:e7:d8:52:1e:6c:a2:c8:50:8d:13:41:c4:1a:4a:47:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 4 23:50:08 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8b:75:35:fc:60:1f:73:6e:7d:b5:2e:ee:6a:
14:51:35:31:97:d5:c9:09:03:8f:a6:65:47:95:ba:
6c:3f:c0:26:75:fb:e6:32:f3:07:a2:1d:f1:67:4c:
aa:d0:f7:11:90:ea:a7:6c:af:1d:7d:9e:b6:9a:a1:
f8:86:38:a4:98:23:dc:aa:ff:a9:f9:33:11:85:55:
60:80:6e:06:e1:f4:a3:de:92:4f:8d:d1:38:ed:8c:
bc:f5:d8:c5:c9:5c:b9:4d:d3:56:23:07:86:55:0f:
38:7b:c7:9f:fe:38:a6:33:7a:87:2f:c6:7e:b1:50:
1a:23:76:36:0a:84:30:37:fd:ff:cf:e6:39:43:9f:
34:c6:98:ea:6c:54:55:8d:71:72:a7:96:f8:1b:ae:
58:7a:dd:50:5b:f6:fc:5a:56:94:e6:33:11:85:38:
23:4a:9b:f9:ed:7a:d5:e5:8a:06:95:9a:20:36:c9:
ad:c9:d6:96:22:28:01:98:fd:27:7c:20:40:6f:ef:
51:8c:ec:a3:98:ce:10:57:e7:64:86:cd:ad:a2:cf:
70:23:bb:97:b1:c8:50:8f:4c:75:36:37:e5:08:c8:
0a:9d:b5:d6:c2:ce:4e:b6:d9:70:56:a2:13:63:ac:
f8:d4:27:d4:ab:91:ad:e5:fd:9a:7f:af:80:dd:61:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:88:71:73:35:69:82:28:CC:C5:17:ED:BF:91:A8:FB:26:4F:9E:23
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:9080::/48
Signature Algorithm: sha256WithRSAEncryption
8b:3d:8d:11:14:62:c6:31:9f:a7:ba:b1:2e:bd:43:cf:7f:82:
db:0f:0a:03:9c:f3:d2:59:82:90:ed:7a:50:c4:41:e3:bc:19:
12:45:08:28:70:be:85:0b:3f:37:59:32:69:e4:2a:fb:a9:5c:
3e:36:9c:00:c4:13:08:a5:c2:2d:48:4a:d0:36:3e:56:25:ac:
31:78:04:a0:83:a5:07:8f:cc:83:ac:5a:52:e9:a9:c2:4f:5a:
a9:77:5d:a6:43:5c:00:64:6e:42:d6:1c:37:27:6f:82:6b:7e:
71:9d:9b:88:77:0d:68:05:ec:a6:13:f2:ee:23:b7:5e:16:72:
76:96:90:70:3c:48:2d:1d:ea:1e:7e:a5:6b:09:c2:6e:3b:bc:
32:e2:dc:4a:c2:97:24:a0:da:ed:84:06:d8:a0:c8:f0:18:83:
51:a8:86:d3:27:45:85:60:1d:2c:40:00:14:7f:eb:f0:bd:0f:
7a:cf:42:4a:6e:bf:7b:35:70:8c:bb:9b:40:b6:f1:d4:31:cc:
77:df:ca:eb:2a:0e:d9:ac:6e:6d:42:da:c8:4b:3f:52:d7:fd:
09:e2:77:57:1d:82:f1:2a:e5:53:12:f0:40:87:d3:d1:c1:8c:
d4:00:15:f5:fa:40:50:ff:31:61:b3:6a:f4:e5:cb:3f:f1:a0:
6c:36:40:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:39 2025 by rpki-client