Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c3f4b0e0-df6d-481a-8d75-7709e545d1e8.roa
File: c3f4b0e0-df6d-481a-8d75-7709e545d1e8.roa (raw, json)
Hash identifier: swYURhJ7IkUKttnv1TVnqY7cUcqrdbn6iFKntZaL1bk=
Subject key identifier: 52:55:E2:BE:7D:E7:06:FF:8C:49:49:38:C2:C8:69:D0:E8:11:05:D8
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 43DE6E343A6FED4B089C7A771CD9929312AF0119
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c3f4b0e0-df6d-481a-8d75-7709e545d1e8.roa
Signing time: Wed 05 Mar 2025 16:50:51 +0000
ROA not before: Wed 05 Mar 2025 16:50:51 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:2000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:de:6e:34:3a:6f:ed:4b:08:9c:7a:77:1c:d9:92:93:12:af:01:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:50:51 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:06:07:35:b8:40:7a:39:d7:c1:ae:d6:ed:f1:
0d:a6:e6:75:14:f6:4c:d1:d3:c5:67:48:a3:d6:17:
dd:88:aa:4a:e5:4c:83:2e:9b:a8:29:84:3c:42:5d:
bf:10:2e:0e:21:0d:29:86:5f:81:72:47:57:85:df:
a6:18:dc:e2:74:f1:75:e7:26:90:37:7f:5b:15:70:
37:28:75:08:fe:a2:f0:36:77:35:89:87:3e:1f:3f:
48:58:a7:56:a4:67:4f:d2:d7:f4:ee:7d:3f:1b:6a:
51:3d:7d:f9:a7:8b:5e:c0:4e:43:8f:74:43:d9:4e:
39:81:4a:89:11:96:35:bb:da:fc:fe:93:14:2a:2e:
9a:62:06:9f:d3:75:48:73:44:7d:04:24:34:fe:e0:
fe:98:06:4e:75:28:47:5c:5f:c3:f6:4b:84:fb:64:
6d:36:79:af:ac:4b:ae:ad:b3:6e:e6:fb:91:2b:de:
64:7f:84:9b:5e:26:d9:92:87:61:58:09:2a:a8:2e:
a3:55:8c:b8:88:d1:d1:2f:6d:cc:87:5f:e4:2c:7d:
a0:9c:68:01:8f:a6:80:68:fc:ae:75:60:e9:3b:22:
42:28:6b:72:0a:5b:57:13:36:b2:d5:13:5c:d6:23:
c2:3f:21:98:4f:59:ba:7a:66:4d:35:de:2a:ea:f1:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:55:E2:BE:7D:E7:06:FF:8C:49:49:38:C2:C8:69:D0:E8:11:05:D8
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c3f4b0e0-df6d-481a-8d75-7709e545d1e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:2000::/40
Signature Algorithm: sha256WithRSAEncryption
7a:3b:57:6c:a8:6f:d4:bf:55:3e:3a:f0:e5:fe:ef:82:2b:56:
80:ca:4a:d9:eb:ef:b8:fe:57:bf:e0:d5:b7:1d:12:2e:50:26:
72:f4:63:ab:15:d7:ff:74:00:f8:28:5b:2b:ed:40:7b:84:b0:
ee:2d:06:33:f4:b9:34:64:f3:a4:be:aa:0b:11:e3:bc:68:d7:
40:c9:b4:46:a0:c0:41:a9:64:f0:01:54:bb:27:d8:11:c6:be:
29:f3:94:cb:cd:9c:1c:f4:1f:ab:fd:87:05:7d:7f:01:03:a1:
fe:97:02:a8:8f:83:18:ea:5c:99:4f:78:0b:72:95:d9:ab:27:
1c:ff:01:b2:b0:21:64:21:e3:df:2e:c8:f8:14:d9:9d:91:40:
99:43:32:8a:7d:be:11:49:7a:08:37:1e:16:bf:38:0a:23:b6:
dd:b3:f6:f4:1a:1b:c8:32:b2:7f:53:43:b1:21:9d:8c:34:f7:
b3:20:7a:28:4d:f8:3b:44:71:dc:87:b6:3c:08:1f:55:a1:c5:
8b:b5:72:f0:7c:1c:34:cc:31:37:b4:f0:84:f9:91:d1:db:7e:
ca:67:35:24:4e:4b:a0:cd:82:77:03:51:d8:d4:e7:06:dc:fd:
de:47:f1:75:7c:ca:09:b2:22:c1:40:c8:f3:26:3c:9f:13:37:
df:e2:13:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:41 2025 by rpki-client