Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bed4158d-91b8-4ba5-81d9-75a65b550b92.roa
File: bed4158d-91b8-4ba5-81d9-75a65b550b92.roa (raw, json)
Hash identifier: v1T5VEqbSI+lMNxqRbQMu5bcjCIjfhkz/8AMJu4Kt6c=
Subject key identifier: 05:9C:F8:61:59:AD:66:C4:C1:3F:98:8A:9C:5F:09:FF:72:53:E4:0E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1966E59CF68809C131F00911329902B9404CC5DA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bed4158d-91b8-4ba5-81d9-75a65b550b92.roa
Signing time: Tue 04 Mar 2025 23:50:14 +0000
ROA not before: Tue 04 Mar 2025 23:50:14 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:60c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:66:e5:9c:f6:88:09:c1:31:f0:09:11:32:99:02:b9:40:4c:c5:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 4 23:50:14 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e2:77:48:95:6c:dc:c5:2e:e7:c6:3d:22:cc:
2d:73:c8:0e:44:ce:fa:e9:17:62:c4:d2:c0:9d:d8:
7b:34:78:7b:08:43:52:28:b1:85:cf:98:70:a4:5a:
7d:ee:97:75:cf:e9:59:75:40:1c:d7:b2:ee:4e:cb:
ae:2e:d2:f9:94:0a:2f:bb:b1:75:24:d3:af:99:40:
a5:38:bd:58:ea:96:d4:45:dd:76:e7:32:f1:b4:22:
01:22:6b:d5:71:14:84:c7:f0:65:fb:86:fa:25:38:
31:16:74:ff:fe:5e:27:b9:b9:19:5b:6e:67:a0:7a:
5f:b3:ce:b6:e2:70:17:dd:69:f5:1e:59:42:a3:99:
24:90:a6:c4:e2:16:86:6b:61:f5:fc:7a:12:18:29:
45:7d:58:07:02:ed:f1:2d:ef:46:0b:dc:3b:8e:c7:
1f:e3:cb:ef:02:0f:ed:26:de:f3:63:20:a9:76:a6:
52:71:13:fe:b6:41:9d:f0:e1:f0:cd:e0:60:26:32:
02:51:12:5a:8e:dc:59:73:16:d7:08:11:11:9e:b5:
0f:5f:48:2e:35:ba:b9:80:5f:f9:6e:26:e5:2d:ab:
4b:77:38:98:db:03:a3:e7:b8:1b:92:9c:43:ab:78:
d6:49:ee:42:2a:3f:22:3f:f3:84:df:67:1b:8d:f1:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9C:F8:61:59:AD:66:C4:C1:3F:98:8A:9C:5F:09:FF:72:53:E4:0E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bed4158d-91b8-4ba5-81d9-75a65b550b92.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:60c0::/48
Signature Algorithm: sha256WithRSAEncryption
5c:68:4d:3b:1d:b5:44:13:ac:32:44:94:bf:13:ce:1e:8f:22:
11:b6:1b:9e:e4:7f:ce:81:90:b8:6c:15:04:0c:df:98:ed:16:
f6:09:c2:d6:9c:5c:7c:d4:e2:62:0c:af:61:a5:12:56:11:db:
48:2e:7c:e4:fd:c0:59:25:b8:88:90:bf:27:71:44:05:ea:c8:
b2:0c:2c:41:21:8b:c7:ea:5e:38:3e:ab:03:30:50:01:00:ac:
8d:b9:b1:4a:cb:30:cd:9f:7d:92:d9:b6:26:53:67:e2:ec:56:
da:b1:3b:af:03:fc:0d:cb:5a:7a:a9:a7:5d:e0:0d:c1:5d:97:
ba:00:0d:45:64:1b:f1:2d:4f:67:7a:40:3b:c9:80:16:80:53:
01:f4:2f:ac:8d:81:ac:df:6c:2c:0a:06:72:95:13:1c:44:5f:
e3:67:ec:ff:07:c7:3c:90:d8:60:4f:5a:ac:e9:9b:c6:f1:51:
cc:11:db:81:6c:5c:fa:30:f4:54:66:ba:e1:d9:0d:19:32:03:
5d:95:b1:9c:30:70:42:e3:2c:95:3f:13:c9:61:0d:28:f7:f8:
70:27:20:46:c5:6f:2b:1c:f1:95:6b:2c:c4:0d:50:92:7d:6e:
08:2c:92:3f:09:a2:6c:15:37:36:fa:14:f0:75:bb:31:c5:1f:
a7:66:09:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:18 2025 by rpki-client