Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bf1db0f3-6cad-4fcc-96c5-ddde700e6264.roa
File: bf1db0f3-6cad-4fcc-96c5-ddde700e6264.roa (raw, json)
Hash identifier: Fmxw7Sa6/dm+1YeoxB23/TJ219ZDQZa3OdE24fXcnfM=
Subject key identifier: 0A:0B:64:C4:F9:79:66:71:C1:BC:D1:29:2A:18:2A:8A:1A:5A:4A:2D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6E6F7F7644B83F44425DCC7DAEB6B201951E11B8
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bf1db0f3-6cad-4fcc-96c5-ddde700e6264.roa
Signing time: Wed 05 Mar 2025 17:30:27 +0000
ROA not before: Wed 05 Mar 2025 17:30:27 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d075:b000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:6f:7f:76:44:b8:3f:44:42:5d:cc:7d:ae:b6:b2:01:95:1e:11:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:30:27 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:5d:f0:a3:17:0f:72:ab:45:ba:15:c2:96:53:
ce:b5:76:52:16:06:a2:32:de:43:9b:ac:a5:63:33:
3e:12:96:ae:0f:a8:71:e8:0a:71:d9:2a:c9:3c:32:
8d:0f:15:21:b4:cf:45:6a:c5:1f:2e:f7:12:97:ab:
fa:a3:28:0c:50:17:05:f7:69:1d:47:56:7f:50:af:
6d:56:0a:17:1b:dd:ec:ef:bb:b9:4d:e9:a5:a6:b8:
bf:8b:54:4e:8e:60:42:12:a4:7a:9f:dc:de:94:32:
9d:2b:19:cf:54:99:e9:1d:80:3b:e4:c0:7a:2b:76:
94:dd:65:b7:f3:47:dc:36:e8:e5:fd:30:86:46:43:
b2:68:a5:6b:52:80:06:13:ed:88:af:7a:68:8e:f1:
5f:3a:93:29:1c:e5:a0:f7:05:5c:6a:f3:64:0d:bb:
a7:df:00:15:26:0b:8a:22:23:03:32:c6:77:03:77:
05:2c:8f:81:52:09:44:03:e1:e1:3e:d7:a1:2c:1f:
21:86:10:4b:9c:54:dc:c1:d8:06:5d:5e:90:24:70:
30:e6:c4:f5:c2:11:09:a9:b8:59:ce:81:39:68:8b:
cb:97:3f:27:5f:c8:ff:70:44:47:a8:4d:a8:7f:38:
83:e5:52:55:d1:17:de:59:80:54:60:ff:b5:3e:df:
d5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0B:64:C4:F9:79:66:71:C1:BC:D1:29:2A:18:2A:8A:1A:5A:4A:2D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/bf1db0f3-6cad-4fcc-96c5-ddde700e6264.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d075:b000::/40
Signature Algorithm: sha256WithRSAEncryption
4d:1b:d2:fa:ea:a2:d5:95:5a:cc:6f:a8:9b:17:41:a3:3c:5c:
6f:d0:9b:93:65:2d:10:12:7f:eb:0e:16:d4:e2:16:54:6f:5a:
68:f1:f2:6f:bb:8e:0c:3a:18:90:94:28:48:b0:be:82:71:8b:
3f:c8:67:2c:a1:c4:ed:62:0f:3c:3b:06:19:8d:f3:46:ce:9d:
95:ed:2b:fe:fe:38:59:c5:ef:25:7b:7d:fc:aa:b3:19:4c:51:
0c:fe:3a:5b:44:af:67:6c:b1:1a:03:83:ed:8a:20:8e:ac:7b:
d1:fe:f3:ce:b0:27:ef:dc:71:a6:da:3c:73:be:91:dd:2f:50:
5a:a6:e4:94:62:a6:af:5a:9b:1c:47:17:4d:ba:20:25:89:1d:
6d:6d:03:ff:dc:58:8f:6c:fc:a9:b4:1e:8b:b1:ec:b7:0a:49:
e7:59:81:40:5c:12:17:f9:0c:7b:e4:99:6e:f4:dc:6c:b8:1a:
4b:82:7d:74:44:93:21:48:4f:43:d4:ea:ee:c5:58:bf:47:0f:
e0:3e:ea:8f:ee:35:b0:7d:0e:e1:f2:2a:67:8b:1e:ad:2a:55:
f5:68:60:17:ed:15:0b:87:ca:84:f3:cb:42:f8:38:2a:da:ce:
20:2c:f6:28:54:48:33:b6:94:c8:25:68:26:18:ef:17:ef:4b:
bc:e8:08:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:14 2025 by rpki-client