Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a84526d7-5029-439b-9e16-14cd601eb5a1.roa
File: a84526d7-5029-439b-9e16-14cd601eb5a1.roa (raw, json)
Hash identifier: 2g8JS17bJcYKxvPU5ZVTY1YsCWbPXao9/OOtNlr1PKM=
Subject key identifier: 27:E5:1D:80:C1:28:04:13:30:A4:D4:D0:5F:98:D6:5A:E2:7C:EA:15
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 07650F13BA5E8E4B7F7B59146863DC98BF4707F6
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a84526d7-5029-439b-9e16-14cd601eb5a1.roa
Signing time: Wed 05 Mar 2025 17:00:29 +0000
ROA not before: Wed 05 Mar 2025 17:00:29 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:6080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:65:0f:13:ba:5e:8e:4b:7f:7b:59:14:68:63:dc:98:bf:47:07:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:00:29 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:95:dd:21:9f:22:94:e0:42:27:2c:5a:f2:
e3:ea:58:6e:43:8a:9b:76:7d:bd:2c:93:65:07:a4:
4b:7b:8a:2d:5d:7a:a5:09:b3:3a:a3:82:68:b4:39:
45:bc:fa:08:1e:46:23:58:06:b8:14:69:4f:74:a5:
cf:c8:e3:3f:68:80:f2:d7:07:bb:6a:4f:f2:5a:7f:
e7:30:6e:b3:f2:83:04:47:74:d3:43:c6:dc:b2:d3:
79:70:b0:d0:bc:df:08:ed:c2:eb:87:13:63:6f:02:
ea:f2:d7:8d:55:f7:ea:26:cb:f1:48:66:f2:16:a3:
d3:25:f9:49:ee:fe:e2:ca:94:7f:6a:bd:0a:0d:ac:
55:c4:3f:da:ae:43:21:5e:a9:62:11:75:8f:b2:22:
10:16:f1:b7:60:2a:d2:30:fa:92:0e:47:96:20:df:
df:0c:6d:ce:21:b2:a0:ce:2f:41:e2:1c:09:f1:80:
d7:15:3f:1b:4b:04:58:6a:d7:78:8d:ea:fc:d5:08:
b1:b3:0c:00:a0:71:0c:2a:db:50:c4:1c:fa:f2:2f:
f3:df:48:9b:d5:8f:2c:75:8c:5b:9c:ed:da:67:20:
61:ff:3b:7e:c5:26:79:15:70:24:53:86:3a:c8:d9:
f4:e0:ce:33:6d:fb:d2:18:6b:fc:a7:5e:af:36:c7:
d3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E5:1D:80:C1:28:04:13:30:A4:D4:D0:5F:98:D6:5A:E2:7C:EA:15
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/a84526d7-5029-439b-9e16-14cd601eb5a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:6080::/48
Signature Algorithm: sha256WithRSAEncryption
3c:fb:d0:b7:84:9f:a1:37:4a:b9:3d:0c:67:11:06:4f:74:e2:
9b:b3:7c:1f:df:12:cc:57:b6:0b:20:6b:eb:22:a2:47:fc:f1:
a0:c5:9d:e4:97:1e:2c:8e:5d:2b:30:bd:1b:71:d9:cc:32:e2:
18:8f:d0:fa:0f:64:7b:c5:82:67:65:95:28:e6:62:65:32:19:
a5:65:65:be:a1:db:d1:11:e2:2f:b7:25:a6:71:05:51:7a:35:
99:d8:e7:e1:1c:e3:5e:d8:64:99:52:92:71:67:60:b2:1e:a4:
92:1e:11:5b:9a:a0:40:2f:26:fb:a9:03:79:69:a2:48:ca:58:
a9:1f:7b:ea:15:ef:e6:9b:76:19:6e:63:52:c6:07:e9:ab:6a:
df:99:c7:24:21:e1:23:8e:43:dc:1e:9e:37:9b:2c:d9:79:ec:
49:0a:91:09:3c:d8:28:a8:91:b0:b7:f4:27:6b:24:fd:6e:62:
42:b2:4d:2c:5b:92:f0:6c:c5:98:ce:45:87:02:ca:b2:77:86:
41:69:90:d1:c5:53:29:77:e5:a6:1f:41:cb:59:10:80:26:35:
d7:39:62:26:5e:20:0e:d7:2a:c4:f6:8a:58:43:5e:09:ea:02:
fc:c2:d9:34:f1:fc:60:0f:89:26:28:0c:70:b2:b4:66:21:11:
6b:70:83:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:14 2025 by rpki-client