Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/af44b98c-fcdc-4a0d-b9ac-dbcbc7685c49.roa
File: af44b98c-fcdc-4a0d-b9ac-dbcbc7685c49.roa (raw, json)
Hash identifier: hHhH5AAJzQknEGFaB7urjLKolf0t1A+2aCnScIed7Ws=
Subject key identifier: 50:BC:F6:54:24:0B:CE:1E:3F:87:04:53:8A:33:DB:5F:5C:6F:63:60
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 052F5CB2507B12900DAD3D3F9FE3FC89CEE8BB82
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/af44b98c-fcdc-4a0d-b9ac-dbcbc7685c49.roa
Signing time: Wed 05 Mar 2025 17:01:13 +0000
ROA not before: Wed 05 Mar 2025 17:01:13 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:c0c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:2f:5c:b2:50:7b:12:90:0d:ad:3d:3f:9f:e3:fc:89:ce:e8:bb:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:01:13 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3d:ed:97:9e:8b:79:ec:03:7a:e8:e2:68:d9:
4c:b4:7d:a3:d0:40:28:11:34:dd:da:8a:39:b3:8b:
bc:96:62:f1:cd:e5:a4:df:38:c0:98:e3:7b:a0:f0:
ea:fc:a3:5d:03:02:e2:c9:32:ac:bc:2d:26:5f:f4:
6c:f2:d8:28:96:4c:31:4e:40:a5:d6:df:09:1d:44:
4b:44:a3:05:79:66:ab:7c:e4:29:f0:b3:36:2b:31:
de:df:01:8e:72:f4:93:65:ce:c6:0d:fd:af:c6:15:
82:d0:1f:c2:fb:86:bd:6a:71:86:73:09:59:e1:94:
93:bc:a8:09:8e:f1:d4:05:8a:00:e1:ef:40:4f:2e:
fd:57:e7:5e:50:a8:3b:6b:ea:c5:d3:cb:9d:bf:3c:
05:29:93:c4:16:bc:cc:e5:56:27:2f:c7:80:d4:b5:
50:04:39:fa:1c:74:b0:95:3c:68:1f:d5:34:06:a7:
12:38:46:9e:f3:1d:71:58:72:40:3a:fe:3d:14:be:
4e:a7:50:6f:80:43:9c:74:2b:5a:85:d5:99:3d:46:
58:65:cc:3c:26:7f:e4:ea:ab:5b:b2:23:62:bc:6e:
79:98:6b:59:8b:71:77:9b:c7:ae:be:e4:e5:47:d0:
a1:40:6e:58:3e:a9:da:97:b9:a2:cd:0d:e2:3a:0b:
5a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BC:F6:54:24:0B:CE:1E:3F:87:04:53:8A:33:DB:5F:5C:6F:63:60
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/af44b98c-fcdc-4a0d-b9ac-dbcbc7685c49.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:c0c0::/46
Signature Algorithm: sha256WithRSAEncryption
7b:42:72:c1:ba:7f:e7:57:dd:fd:c1:91:d6:a2:1c:ba:db:57:
90:fd:83:ae:1a:3c:a0:96:fb:46:76:ac:5b:0c:0b:e6:88:52:
01:58:0a:9f:7e:6b:62:d9:d7:1a:c1:ff:b8:e6:e9:53:97:0e:
b5:a8:b0:84:52:76:92:57:eb:ca:89:e3:d3:f2:1e:95:23:83:
69:38:f9:89:5b:e0:ca:43:40:df:b9:84:5b:73:9c:d9:4f:e3:
59:e5:51:9c:61:f1:a7:e1:66:4a:ec:52:c5:ad:8c:ac:2a:46:
61:f9:1a:de:e1:aa:88:fa:46:de:0c:5f:f4:e0:64:b2:61:b7:
ab:66:6c:4a:09:0a:de:7c:74:08:77:4c:62:2f:ab:95:c4:57:
03:08:6b:56:58:f8:6f:e2:e2:4c:3c:e2:a8:79:dc:aa:63:b5:
a9:03:cb:07:cf:b0:b0:ea:bc:1d:e2:9a:fd:85:ef:6f:19:ff:
ab:35:e7:5f:70:3d:be:b4:aa:bb:7b:21:01:d0:35:b6:a7:65:
94:c0:fc:ba:d5:62:63:be:52:fb:32:60:52:be:6d:32:e4:8e:
c4:93:82:80:82:aa:6c:53:63:fd:d5:54:54:aa:31:00:0f:52:
b3:9f:6f:e5:95:1c:01:92:58:a2:59:c2:b3:e6:91:42:d9:bb:
31:5e:84:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:59 2025 by rpki-client