Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a51d6038-bb41-47b2-a883-07e17ac04d63.roa
File: a51d6038-bb41-47b2-a883-07e17ac04d63.roa (raw, json)
Hash identifier: anCvFoKHGs91VyHUpkWnC0zV805ZNJ3dBHitT6zaERA=
Subject key identifier: A2:67:B4:DC:FA:20:9B:C0:8C:53:6F:0F:3C:2A:EA:60:71:AB:08:E9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 097B28E46A245EBE0B445FD6426E82B10F2D7A69
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a51d6038-bb41-47b2-a883-07e17ac04d63.roa
Signing time: Wed 05 Mar 2025 17:01:58 +0000
ROA not before: Wed 05 Mar 2025 17:01:58 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:2040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:7b:28:e4:6a:24:5e:be:0b:44:5f:d6:42:6e:82:b1:0f:2d:7a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:01:58 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:75:4d:7c:1b:ef:93:d3:b0:62:fa:3b:46:09:
a2:59:10:a0:f7:34:f8:a9:eb:fc:e9:0b:b6:f7:02:
e8:48:02:7d:7c:ba:3b:b8:ac:d6:53:4e:58:27:61:
bb:e8:24:0d:92:d6:87:44:09:64:bc:35:8b:86:89:
7b:8a:9b:b5:fe:f7:93:b6:c6:e4:9a:cd:b7:f7:d3:
75:12:73:1c:ea:5d:23:97:be:bc:38:5d:06:25:7d:
8a:f4:ce:a6:e6:f4:13:a3:47:a6:9e:1d:a9:7e:f6:
df:58:9c:81:86:72:98:e7:38:75:76:04:34:81:1d:
a0:42:2c:b7:fa:84:b4:63:3f:ee:a0:12:9f:5a:9b:
50:cd:2c:11:8f:17:6e:d2:50:61:12:07:f8:a6:a3:
fd:0f:fa:0b:a1:3a:d9:ba:17:03:f9:8c:44:b4:c5:
ec:b3:e1:a9:c2:d5:af:a2:7c:0a:d8:ba:27:00:ef:
5a:1d:2c:82:ed:36:c1:2f:a5:cc:56:36:a6:64:33:
0c:8e:f1:57:9d:5d:56:87:3e:55:5b:8f:f4:b8:68:
68:43:ec:af:10:62:de:4f:8d:5a:9c:31:11:a8:3b:
32:12:6e:29:6f:31:b6:72:a4:73:0a:87:6a:a2:ba:
df:b3:61:06:3a:1a:2c:ca:62:50:65:21:00:b0:10:
2a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:67:B4:DC:FA:20:9B:C0:8C:53:6F:0F:3C:2A:EA:60:71:AB:08:E9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a51d6038-bb41-47b2-a883-07e17ac04d63.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:2040::/46
Signature Algorithm: sha256WithRSAEncryption
1d:f2:0c:38:3c:55:f1:78:3a:0f:9e:4b:02:a5:91:1b:8b:a9:
04:13:19:eb:4d:a9:d2:48:3a:10:38:25:c6:ac:a2:5e:32:69:
f6:12:38:47:10:e4:cc:a9:0f:43:d4:15:2f:90:15:27:7b:29:
8c:b8:5e:b2:91:bc:d8:88:57:e3:e4:06:13:fc:62:34:17:7d:
45:69:f3:dc:73:60:21:14:09:20:08:1c:26:09:65:86:1c:3e:
50:e5:46:ea:55:a9:bb:b1:57:57:d2:2b:41:08:6e:8f:98:87:
2f:41:63:ba:0c:63:40:0f:ca:13:21:23:f8:cf:99:75:78:ee:
50:90:c8:f3:dd:66:6e:72:1e:62:49:36:c5:bd:a4:a2:5d:f8:
b4:ef:3a:5a:f7:bc:21:f1:6d:04:49:ae:7d:78:01:4e:ea:5d:
59:94:ab:57:ba:2f:5e:0c:dd:25:c3:44:53:a5:f2:57:68:c9:
8d:a2:d2:05:a6:0c:10:77:ae:74:6e:72:0b:13:69:7f:c5:2e:
b4:10:f3:ee:fe:c2:0f:6e:01:d9:36:6e:d0:cb:4c:32:82:c7:
f2:61:ac:56:9e:65:bc:eb:3c:fe:64:51:a3:37:aa:e5:5c:22:
45:7e:65:21:2e:c8:d7:17:d9:2f:6a:4e:00:59:de:1b:a0:70:
9c:59:75:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:02 2025 by rpki-client