Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9256536-0e9a-4175-8ac7-a0fb991ebff9.roa
File: c9256536-0e9a-4175-8ac7-a0fb991ebff9.roa (raw, json)
Hash identifier: hDnd2xDv10w8gOs3IC+erEncsGCpFhhsBxvnlOJeBMs=
Subject key identifier: 97:22:14:05:99:40:B5:55:56:9B:97:0F:C3:7E:4E:D8:79:6E:D5:02
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1FB075427202EB2F01B17773834730AD9649FF34
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9256536-0e9a-4175-8ac7-a0fb991ebff9.roa
Signing time: Wed 05 Mar 2025 16:11:14 +0000
ROA not before: Wed 05 Mar 2025 16:11:14 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d076:c000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:b0:75:42:72:02:eb:2f:01:b1:77:73:83:47:30:ad:96:49:ff:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:11:14 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6c:86:26:9b:30:e4:2c:f4:17:e0:f2:e7:1b:
a6:6e:cc:21:c7:a1:d8:46:a6:01:73:08:c6:8a:37:
37:ee:05:90:ed:c5:81:30:d6:3c:97:fa:dc:12:fa:
e5:49:a3:55:84:16:71:bd:46:73:5b:3b:55:b1:49:
d8:0b:75:c9:0e:97:66:c3:71:28:12:28:4d:7a:a0:
67:21:2b:68:cf:9d:b6:93:23:50:91:fa:70:fd:ff:
47:ee:63:64:df:24:d0:09:fe:45:7c:b7:02:b5:81:
2b:22:30:d4:e7:a3:5f:56:9a:19:45:a0:22:86:2b:
f8:1f:ff:75:1a:28:10:2e:61:93:ef:bb:7b:4f:2e:
d7:81:24:c4:87:4f:7d:18:0b:db:2f:23:e5:5b:c3:
1b:39:1a:44:7c:18:72:f7:cd:91:8f:8f:43:29:34:
d7:88:07:8a:10:5c:ba:ef:2f:6e:b2:69:5f:a9:b2:
bd:30:e6:a3:e6:d2:b6:54:01:3f:d8:ba:fd:7f:a9:
a0:b8:a4:74:03:1f:0a:6e:81:3e:d2:6b:bb:b6:4d:
c7:c1:65:38:c0:09:3a:b3:c9:45:da:f3:81:7a:3f:
c0:fe:41:41:c0:d2:f5:8c:be:3c:ef:45:22:d5:91:
1c:8e:75:1d:fa:c1:59:e1:41:93:e0:a9:57:72:f5:
0b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:22:14:05:99:40:B5:55:56:9B:97:0F:C3:7E:4E:D8:79:6E:D5:02
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9256536-0e9a-4175-8ac7-a0fb991ebff9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d076:c000::/40
Signature Algorithm: sha256WithRSAEncryption
59:7b:f3:ff:81:fe:50:cf:01:31:e2:6f:49:30:43:89:9e:3e:
e1:02:de:3e:b5:5f:b1:27:3f:35:8d:67:6b:0a:5b:05:00:3a:
c8:34:1d:0b:b7:85:df:49:04:88:b2:86:e3:d7:f4:89:57:17:
1b:05:95:0e:97:73:60:4e:78:06:58:53:30:56:e3:f3:f0:80:
58:e7:6b:b7:ba:09:18:84:48:30:48:60:74:c9:90:99:25:bf:
03:a3:b7:4e:c5:6f:4a:70:26:66:ce:f1:81:a1:ad:80:e3:2f:
63:89:ac:e1:ec:16:1c:ac:48:14:73:b1:e7:dc:e7:d2:0d:87:
40:a6:aa:04:ab:c6:cf:97:e8:d2:92:81:2a:44:00:8b:dd:0b:
31:59:0e:b8:ef:52:5c:d7:1e:08:3f:da:9e:f1:93:dd:ec:47:
8e:28:fb:d9:2a:1d:48:31:39:01:7f:66:e3:f5:c9:8e:a3:c1:
d8:50:90:ca:fb:bd:f3:50:d3:e4:10:08:7e:0e:95:f8:8b:c3:
b0:69:18:48:2b:55:49:6e:3b:bc:d3:f6:bb:3c:c3:e4:c5:13:
93:14:b0:72:eb:95:5c:fe:a4:6c:af:1f:1a:78:e7:71:61:03:
8d:ea:80:04:5c:ab:08:c1:3d:d9:a8:f6:b9:17:51:4f:9f:8f:
59:45:27:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:13 2025 by rpki-client