Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/995d4f8d-0bcd-4b30-9dbe-42bcdbeb0464.roa
File: 995d4f8d-0bcd-4b30-9dbe-42bcdbeb0464.roa (raw, json)
Hash identifier: gm+Y1IgVl7dOPcuA0bQms32CsrOLhk2TdWcDM8rwb+4=
Subject key identifier: 69:76:43:BE:2E:73:25:8B:13:70:40:1D:87:8A:02:EA:E7:29:3E:2D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 06E778E071B5C9B55482383F372593B62F3B9894
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/995d4f8d-0bcd-4b30-9dbe-42bcdbeb0464.roa
Signing time: Fri 21 Mar 2025 15:00:59 +0000
ROA not before: Fri 21 Mar 2025 15:00:59 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:e7:78:e0:71:b5:c9:b5:54:82:38:3f:37:25:93:b6:2f:3b:98:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 21 15:00:59 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:69:61:bf:6c:b0:c7:fa:db:88:e2:ce:ad:
05:b4:ac:b0:06:78:11:21:e1:8f:68:ea:55:ab:8f:
0f:7c:7a:b7:aa:c7:73:6e:ac:c7:1b:f3:87:41:94:
bf:a1:c4:57:0d:2f:d2:db:7a:82:ba:9d:46:4c:0f:
d0:51:a4:31:ed:ec:95:e4:64:e3:fc:3f:be:fe:44:
02:c7:66:d7:22:3b:08:0c:54:34:60:20:e2:02:bb:
4f:1c:e7:a0:af:b3:4a:fb:62:f7:28:4f:43:58:8c:
d5:4b:2a:d6:cd:c0:67:b2:19:98:37:9e:fe:5d:77:
36:de:74:58:cd:28:b4:37:3e:89:3b:32:82:b0:92:
74:f3:a1:c8:7a:63:45:30:7c:1d:81:77:7a:71:a8:
3c:4e:18:c2:a6:bb:02:b0:93:80:e6:e7:38:90:ae:
19:91:ab:70:74:0e:7c:11:10:2a:08:97:87:0b:29:
1b:45:af:56:19:62:a3:51:3f:8e:9c:5c:2b:d0:29:
d4:93:f3:ed:21:d2:b4:9a:dd:c5:26:ed:9b:87:8e:
15:55:08:ff:3f:dc:ec:c2:0b:fd:93:a1:01:37:cc:
ee:85:41:b1:d5:49:5d:ba:62:c0:e5:90:b5:2b:3a:
5b:e4:56:c3:50:9f:d4:e0:b0:56:dd:7f:f2:0f:7f:
7f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:76:43:BE:2E:73:25:8B:13:70:40:1D:87:8A:02:EA:E7:29:3E:2D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/995d4f8d-0bcd-4b30-9dbe-42bcdbeb0464.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.16.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:53:17:6d:71:99:c6:87:2b:49:8e:b3:3f:df:b7:92:e9:ac:
3b:c4:8b:5d:d5:5c:e3:9d:98:b3:2c:58:85:32:15:07:4d:ed:
7c:1d:68:8b:18:a2:d8:78:b2:7f:f4:43:15:2b:73:ba:46:61:
ce:ea:33:2f:d8:cd:ac:20:f3:98:4e:3f:5f:c3:b0:96:fd:d4:
d6:9d:83:ed:62:c7:bf:00:4c:8e:52:96:1b:63:92:5e:fa:a5:
9d:59:be:92:ce:df:59:b7:fe:f1:62:7c:d0:da:a2:02:40:6e:
39:e2:4b:76:6c:db:b2:1c:6c:a8:52:3f:31:2d:c8:d8:49:a1:
ef:e2:3c:19:41:39:d9:3f:57:48:be:a0:08:e7:49:14:e0:26:
fe:5f:79:ec:38:8e:39:81:21:70:f0:f3:a0:34:4f:97:32:c4:
57:30:75:d9:f4:a9:9e:57:d4:d0:49:15:bb:8b:6c:f5:aa:cd:
24:da:82:67:30:57:f1:20:7d:85:af:b5:54:7f:a0:b7:eb:47:
f4:ca:a6:24:aa:60:eb:7e:6b:04:3c:4d:eb:be:3a:97:43:05:
82:b5:08:b6:7a:e6:64:8c:75:0c:1b:99:6d:06:c4:ae:9a:95:
36:bd:63:8b:b4:e9:85:59:42:49:58:a6:98:bc:ab:ae:d4:9a:
83:9b:81:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:39 2025 by rpki-client