Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd2e1e8c-032c-4ce2-be27-6b9391bd9722.roa
File: bd2e1e8c-032c-4ce2-be27-6b9391bd9722.roa (raw, json)
Hash identifier: 67VazzSELyj1wd0QE9eoU59YhLuh7M6ATrfdydHWerA=
Subject key identifier: 74:26:D4:E7:60:42:68:77:FF:AB:DE:05:BF:5B:73:D6:E0:D1:FA:B4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 78C280A4C9166CF574313276E702C1B0CE240312
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd2e1e8c-032c-4ce2-be27-6b9391bd9722.roa
Signing time: Wed 05 Mar 2025 17:11:25 +0000
ROA not before: Wed 05 Mar 2025 17:11:25 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:c0c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:c2:80:a4:c9:16:6c:f5:74:31:32:76:e7:02:c1:b0:ce:24:03:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:11:25 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ae:03:5d:cb:5a:e7:41:38:78:8d:90:30:eb:
70:92:8b:9b:d1:6b:d9:13:36:82:a2:21:f8:ff:d6:
30:9c:db:77:88:cb:2a:b7:f4:eb:2f:28:8d:3a:d0:
1f:43:be:ea:b2:bf:c2:96:81:a0:0a:9d:c2:ef:74:
6c:b7:ad:73:0a:79:52:02:3f:ac:c2:73:9f:f0:b2:
2b:cc:af:fa:2e:ed:8b:06:96:ff:a1:f0:d2:72:c5:
47:87:58:02:51:35:27:b0:86:ec:52:de:f7:b9:a6:
80:0d:e4:a6:8d:43:5d:1f:0b:b8:0b:7b:31:5d:b8:
85:d8:d2:f0:c5:e6:19:83:9d:b5:7b:87:89:bc:39:
23:aa:55:72:6e:52:91:0a:03:63:6d:5c:f1:e4:2b:
7b:d8:50:a7:a2:37:ed:97:b9:8b:ec:4d:77:50:87:
6a:f4:96:82:23:cd:a0:d7:7e:e8:bd:c7:7b:82:64:
1f:59:6e:15:11:43:b9:92:0f:8f:81:5c:2c:c2:ea:
73:c8:75:f9:1c:67:0d:d7:45:cd:bd:38:ff:37:a6:
b3:33:e0:6d:33:0d:29:88:67:df:a1:54:c1:c7:b9:
28:9c:fa:86:88:56:ff:1a:2a:1a:84:91:5c:63:8b:
ca:28:0f:1a:61:8c:24:72:b0:33:c1:64:b1:43:9f:
26:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:26:D4:E7:60:42:68:77:FF:AB:DE:05:BF:5B:73:D6:E0:D1:FA:B4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bd2e1e8c-032c-4ce2-be27-6b9391bd9722.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:c0c0::/46
Signature Algorithm: sha256WithRSAEncryption
63:0b:64:bf:78:50:00:0b:c2:cb:4b:b1:d2:50:56:3f:71:5e:
bc:a9:5f:0e:e6:94:9e:b2:18:d1:14:1d:83:82:47:0c:02:ca:
8d:da:fb:c2:1f:5d:26:2c:07:c7:aa:54:b4:25:fa:d8:59:e4:
dc:f8:4c:80:86:95:4f:24:2d:24:6a:cc:e1:b4:a2:b0:df:85:
56:57:da:f6:72:43:fc:ae:76:30:c4:af:bd:d4:bf:60:f6:a7:
3d:57:ee:2c:1a:61:01:4e:ba:bf:5b:28:3c:6c:0d:9a:cf:78:
d1:3c:c3:67:ea:40:47:61:2f:53:14:52:7b:d7:88:08:4f:43:
5a:e6:a9:1c:c3:40:39:8f:81:14:0b:58:2a:4f:d1:a5:b6:37:
ad:dd:95:fa:44:c2:7d:42:c0:13:2e:5a:a5:87:9b:ff:c7:17:
55:dc:e3:4e:af:5f:67:c4:b7:a7:8f:d5:6c:40:49:6b:e1:6a:
d8:51:08:be:38:a9:a7:13:fe:54:f3:06:22:5c:ea:ad:fe:06:
98:14:da:59:70:19:fe:87:57:8d:74:12:64:35:0d:0f:e0:f7:
c8:cc:67:c2:48:9b:b0:c7:68:40:c0:45:67:1f:a8:af:18:73:
ef:ce:4a:63:64:eb:66:91:20:ab:d8:aa:61:59:6f:69:22:be:
81:5e:87:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:55 2025 by rpki-client