Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b5d84c54-c2c8-424e-8ae9-879a4fa44dbd.roa
File: b5d84c54-c2c8-424e-8ae9-879a4fa44dbd.roa (raw, json)
Hash identifier: NlgTtQCH3nRWhYtFPuuqBXALlyiBt646Hb+bO6ICPYo=
Subject key identifier: 15:FC:A7:3D:43:B8:AF:0C:71:A8:B6:DA:ED:B9:45:40:EC:A9:9E:99
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 39D3E44A18AE77C549DD478F0B20C71F02D9FB96
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b5d84c54-c2c8-424e-8ae9-879a4fa44dbd.roa
Signing time: Wed 05 Mar 2025 16:30:12 +0000
ROA not before: Wed 05 Mar 2025 16:30:12 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:5040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:d3:e4:4a:18:ae:77:c5:49:dd:47:8f:0b:20:c7:1f:02:d9:fb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:30:12 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:8d:de:29:c5:c8:c1:7d:31:fd:d8:4f:13:
cf:7b:23:54:96:ec:59:10:3c:5c:22:20:cc:4f:9a:
f0:be:62:9f:fd:41:64:c2:56:45:2d:4d:78:1d:fe:
d3:e8:ff:3e:de:b0:37:94:b1:ee:5f:2e:b7:30:65:
3b:3a:ee:ad:aa:c5:59:70:22:f3:67:3e:01:a0:85:
3c:8e:37:2c:a2:42:1c:44:26:24:36:be:9f:ff:3c:
33:f7:d8:53:ab:51:b5:36:06:18:b6:5d:f3:3c:fa:
e6:56:0c:a5:7d:19:0c:72:52:17:86:49:74:da:40:
37:f3:1c:5f:de:f0:54:1a:58:35:fa:2d:09:2d:59:
18:ec:76:2e:eb:19:48:02:88:01:8f:70:8f:9e:10:
83:86:ad:a4:a3:3c:2f:71:69:a6:30:10:5f:f8:23:
fd:92:6a:ed:4d:66:7c:9e:65:84:14:b8:d8:ae:bb:
94:01:5e:c0:09:6a:74:fb:40:64:a1:25:3d:84:5c:
18:71:4e:6e:f4:d1:2b:a8:2d:d2:ac:29:c3:d2:16:
d4:0e:df:20:f9:e9:22:68:7b:a7:db:44:a3:6b:c1:
bd:a5:76:97:9d:de:a8:ca:65:6f:bc:78:63:4f:d5:
e1:ee:c4:af:72:43:c8:9d:4a:25:b8:dc:80:2c:ce:
92:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:FC:A7:3D:43:B8:AF:0C:71:A8:B6:DA:ED:B9:45:40:EC:A9:9E:99
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b5d84c54-c2c8-424e-8ae9-879a4fa44dbd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:5040::/48
Signature Algorithm: sha256WithRSAEncryption
87:33:14:52:6f:9c:e7:61:71:7d:71:23:cb:a7:b1:17:24:09:
66:e5:96:16:e3:a6:b3:0b:41:3f:e6:4c:9a:48:8a:eb:08:28:
6f:78:3e:6c:bb:9a:ba:7f:c6:44:2a:a9:32:22:c6:1e:15:71:
42:98:59:82:39:28:78:3d:e8:6c:03:af:7c:73:0a:1e:1e:ae:
a2:93:81:c1:40:2c:5e:84:58:9c:11:b1:d4:4c:9b:fa:72:18:
dd:88:59:85:46:19:0a:64:ec:b0:6a:9d:f3:b0:f7:43:b2:65:
f8:8b:5d:b0:70:be:81:73:ff:55:13:88:23:cf:33:d3:c4:a3:
66:c9:6d:09:f3:ac:c8:52:03:91:da:64:a7:46:76:e7:bb:7b:
93:97:6f:a5:5b:1b:f1:71:9f:79:3f:cb:e9:18:10:0f:57:10:
7b:9a:20:ad:a1:1a:fd:9e:e7:8c:9e:8a:26:a0:4c:af:f2:84:
9e:00:54:26:7f:ea:84:b9:c0:c6:00:14:5b:93:f4:02:ab:33:
a4:d5:84:f6:8b:c4:2b:d3:a9:48:a8:a3:f4:91:5d:95:d0:90:
d0:4f:a0:4a:e7:8e:c8:50:00:89:52:32:80:a2:3e:ad:da:e4:
54:0a:ec:94:40:52:0d:48:19:cd:37:67:e3:c7:fb:f8:1b:f4:
5b:32:f8:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:43 2025 by rpki-client