Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa
File: b7d242ad-482b-4700-888a-b677a178a4bf.roa (raw, json)
Hash identifier: G155xEDwZpufJ+9NfFriteu4mzb87T/71VcCtfyxH/E=
Subject key identifier: 5A:2D:CC:B9:A6:DC:CE:F9:A5:7F:38:61:88:A2:55:40:E4:EE:3A:3C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6EF8774AE6E08027DA5C71FCF2A0927F9B5BF9EE
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa
Signing time: Wed 05 Mar 2025 16:30:22 +0000
ROA not before: Wed 05 Mar 2025 16:30:22 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:6080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:f8:77:4a:e6:e0:80:27:da:5c:71:fc:f2:a0:92:7f:9b:5b:f9:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:30:22 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:5d:f6:db:de:2d:f6:36:82:91:b0:88:02:06:
54:17:4b:6d:b9:5d:24:9d:6e:d7:02:23:69:5c:b3:
2e:cd:cc:78:fa:43:43:f1:2b:0e:99:03:1a:ff:49:
43:e1:c0:ed:97:ac:ca:58:4c:1c:cb:c6:37:30:7a:
c9:60:f1:e9:33:df:b6:5c:70:42:8e:8e:d0:89:f4:
55:b0:d1:a3:0a:ea:9f:72:3c:d0:94:e5:4c:98:8d:
23:8f:db:16:3a:c4:24:79:cf:a9:e4:05:6a:f6:12:
cd:f7:f7:35:80:6a:19:06:14:fd:85:bc:4d:ae:70:
1f:d6:0a:c5:b3:68:ef:84:28:c1:2b:df:08:6f:3d:
89:99:12:22:76:0a:a7:3b:84:62:49:c2:98:4c:e3:
8e:3e:58:be:0d:b0:ab:78:49:a4:74:59:9d:53:ba:
d1:b7:8e:2b:37:7f:3a:c9:0e:06:0f:33:7d:f0:de:
92:84:e4:2d:69:fd:4f:6e:8b:e9:d1:b2:37:28:23:
70:90:dc:af:6a:f8:97:74:a3:a0:c5:81:1f:ed:77:
b0:c5:52:d9:ea:51:02:e5:f4:85:fb:78:e6:ad:56:
06:f7:3c:07:ef:dd:af:29:5d:69:ce:4b:b7:15:f1:
ab:15:11:bf:32:e3:c7:4d:a7:e3:9c:0b:18:ee:f3:
1d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2D:CC:B9:A6:DC:CE:F9:A5:7F:38:61:88:A2:55:40:E4:EE:3A:3C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b7d242ad-482b-4700-888a-b677a178a4bf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:6080::/48
Signature Algorithm: sha256WithRSAEncryption
67:6b:02:57:2b:ea:9e:ea:b5:26:02:d6:a4:e1:e7:b6:ce:23:
d7:72:12:09:cd:48:a0:64:30:65:04:3c:27:10:e4:8d:42:ac:
12:00:e3:fd:fb:90:99:12:4f:da:07:73:55:2f:ba:7d:a9:59:
47:f4:ab:ad:2c:d3:ac:42:96:f6:d5:83:45:66:95:99:0d:b2:
fa:ec:57:3c:27:d1:a8:36:be:6f:89:f3:68:9f:71:ef:d5:91:
f9:bc:2d:4a:bd:d7:26:a3:45:9e:35:e9:97:7b:2c:b4:11:5f:
e6:62:bc:ad:9b:62:02:4a:bd:c4:0e:e7:7d:96:1c:c8:7c:d8:
23:91:a5:6b:db:e3:8e:cf:da:72:b6:2b:a3:15:b7:48:a2:24:
79:91:f5:80:f9:43:f9:7e:2e:54:51:86:ab:65:10:73:21:fc:
39:80:ed:6a:7a:51:19:27:1a:5c:4f:cf:9c:7e:36:31:e4:ac:
12:75:fe:8a:d7:45:ba:c0:ba:c5:a4:0f:ae:1e:cd:12:e9:4b:
68:2d:57:d7:e8:c0:2e:77:ff:27:72:fa:8b:13:32:f1:bf:0d:
2e:f0:ce:37:1f:5a:b8:52:80:72:02:ce:e6:29:dd:5e:0d:35:
2f:a1:76:5f:b2:9f:c8:c2:05:9f:af:77:2b:b1:9d:88:c1:89:
a6:b0:35:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:31 2025 by rpki-client