Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
File: b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa (raw, json)
Hash identifier: MC2xhE72G1M32uXkzsDdei6t2TXIPvluNWr1fIXpNF4=
Subject key identifier: 42:F8:76:70:E0:99:20:65:06:6E:C6:93:F1:22:F6:A2:2C:50:F3:DE
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 45EC811FB42D1FC45B2D771DFC23ECFCDC8B0C9A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
Signing time: Wed 05 Mar 2025 17:11:49 +0000
ROA not before: Wed 05 Mar 2025 17:11:49 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:50c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:ec:81:1f:b4:2d:1f:c4:5b:2d:77:1d:fc:23:ec:fc:dc:8b:0c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:11:49 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:55:2b:ce:18:89:e5:b1:1c:03:ed:aa:60:04:
39:55:7f:98:54:33:7d:03:02:56:81:b4:6e:25:ff:
06:34:76:3b:92:1d:33:3d:a8:bd:ef:f6:bb:d1:0c:
62:b3:23:6d:6e:85:7d:6b:79:09:96:a3:ac:d5:47:
86:b0:7d:e6:f3:cb:aa:32:2e:9c:ab:2f:d3:f5:03:
cf:ea:fb:af:62:c7:08:aa:a3:0c:c9:c0:74:bc:72:
3e:b2:d1:30:eb:bb:ff:4c:83:26:d3:1f:ef:2c:4c:
9e:ab:19:ae:e6:10:4a:08:3f:86:cd:4e:13:fc:58:
7e:22:27:ea:ba:43:1c:38:5f:11:1e:4c:67:89:34:
d2:55:dc:81:5e:c1:05:b9:4e:7a:f4:59:13:55:6b:
c5:d7:2b:21:4d:cb:08:0c:8a:0e:f5:ab:78:c1:2b:
46:69:dc:f1:c4:55:4e:3e:16:20:99:0d:53:41:16:
4b:5c:a1:e9:b2:1b:c8:e0:dd:fa:d0:f3:f3:ae:38:
d7:69:ff:ef:8a:44:3a:7a:a2:39:79:b2:af:ed:dc:
f3:f6:04:85:e3:4b:36:10:33:8b:2d:48:dd:bc:ac:
53:2b:30:0a:a8:b0:5a:70:81:d9:56:75:34:fd:12:
3e:6f:28:d5:79:bb:8a:4c:9e:d6:42:0f:fa:e6:fe:
8b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F8:76:70:E0:99:20:65:06:6E:C6:93:F1:22:F6:A2:2C:50:F3:DE
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:50c0::/46
Signature Algorithm: sha256WithRSAEncryption
59:95:ca:8b:65:09:8d:0b:0e:45:41:52:0c:68:87:40:36:88:
60:75:ac:9e:6f:8f:b8:03:96:a8:94:7c:7f:67:54:31:14:23:
ac:4f:5b:d1:53:36:a1:18:b1:a7:5c:70:ae:b5:f1:92:0b:a5:
3d:e0:58:3c:12:43:f9:32:99:33:1c:d8:a9:1a:12:b6:ba:47:
79:80:5a:48:fe:3d:4c:65:cd:d9:3c:31:cf:07:bf:20:db:ed:
25:33:87:58:2b:57:47:6d:93:b4:ff:9c:f9:ed:2a:50:44:77:
68:3e:5d:ac:c6:e9:b7:d6:8f:e9:50:8c:60:50:46:be:9a:a2:
37:e6:73:86:02:9a:6f:c4:95:8b:25:f2:52:93:91:9f:15:ef:
2b:ac:1f:d9:b0:58:01:65:86:8c:38:95:01:35:ac:b0:e9:13:
be:68:5b:63:cd:cd:a0:10:b4:7a:f4:7a:c3:92:5b:3c:1d:4d:
e5:2f:b8:f7:ac:98:c5:a5:14:15:c2:61:5f:d7:db:c3:b9:f4:
b8:48:b3:4a:6a:75:e6:1c:a1:2d:4c:2a:1d:9a:c2:e2:a6:a8:
8f:a5:cb:fe:32:b2:46:87:bf:05:22:85:be:50:58:14:48:89:
50:80:47:a9:f3:a5:6a:49:ba:98:fd:89:56:f9:60:55:46:1d:
64:60:94:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:23 2025 by rpki-client