Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3b5c1d2-4d20-429e-93f6-4d1f30e8b964.roa
File: d3b5c1d2-4d20-429e-93f6-4d1f30e8b964.roa (raw, json)
Hash identifier: i22P7RLymF84tDRV3V1KsEfUrDOigREprDhH+/I5UaE=
Subject key identifier: 3E:93:B7:C5:0D:55:EC:39:BC:4C:F0:8C:95:1C:98:8D:FE:19:D4:4C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 703243890729F6228EF704BF393685058F4A613F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3b5c1d2-4d20-429e-93f6-4d1f30e8b964.roa
Signing time: Wed 05 Mar 2025 17:10:19 +0000
ROA not before: Wed 05 Mar 2025 17:10:19 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:a040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:32:43:89:07:29:f6:22:8e:f7:04:bf:39:36:85:05:8f:4a:61:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:10:19 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d9:bf:7e:fa:39:d3:2f:0d:1b:84:3b:63:5b:
d5:63:b8:f5:3b:28:db:a8:4d:fc:10:db:80:61:67:
e2:b7:ee:ed:60:4e:38:ef:cc:56:86:88:46:75:28:
66:de:d5:08:e8:3d:ab:73:8e:b5:4e:29:61:71:26:
90:38:5e:b0:f8:c0:78:80:c9:ff:97:90:be:50:67:
cc:d7:7e:86:75:db:70:b2:e9:46:b4:63:8a:4d:ec:
cc:ab:95:6e:d7:9b:ff:1b:b2:27:b8:b4:ca:3a:f9:
82:23:fd:5a:19:0b:4e:ac:42:82:f7:5e:14:ab:1e:
1b:67:f5:25:69:52:e9:2c:d6:97:b6:e2:b5:3e:2f:
ef:30:19:c6:0f:75:2a:3c:d0:a4:13:67:77:2b:15:
47:1d:a2:82:e7:e6:55:09:58:1f:9f:84:ec:8e:38:
6d:53:3a:f1:86:fa:f1:98:26:10:37:46:48:ee:72:
2c:42:46:d8:26:08:1d:5c:9d:be:19:e9:55:d2:ff:
65:40:57:0e:7a:16:7d:5a:48:95:56:d9:f0:8d:b1:
3d:9c:c6:5c:2f:ab:18:bb:5f:7e:2b:0a:f1:ed:35:
c5:2e:52:35:23:69:32:ea:d8:aa:5e:2d:03:e4:b7:
6b:f7:fb:f2:1f:fe:31:71:09:39:5f:67:60:4e:7e:
aa:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:93:B7:C5:0D:55:EC:39:BC:4C:F0:8C:95:1C:98:8D:FE:19:D4:4C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3b5c1d2-4d20-429e-93f6-4d1f30e8b964.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:a040::/46
Signature Algorithm: sha256WithRSAEncryption
b5:0a:c0:6f:21:b1:86:c3:94:0b:6b:99:5e:a1:be:bc:e5:89:
36:6c:3a:7d:6e:86:1c:90:7f:a8:9c:9e:5c:be:4e:4b:f3:03:
b8:d4:27:1f:13:f6:7a:1b:d1:38:f9:8a:11:58:0e:ec:f4:de:
57:47:45:dd:62:21:be:be:83:df:c9:c0:dd:a0:b9:90:53:cc:
ba:15:96:30:e3:01:67:23:09:c3:2a:87:db:65:a1:26:02:95:
9d:ba:e7:17:a6:88:c9:35:6c:1b:89:8a:5e:16:5a:c8:2b:37:
94:f8:45:ea:01:c3:00:8e:b3:f6:93:c6:a0:c1:69:2d:67:4c:
29:ac:26:4b:cb:f2:f2:06:dd:cf:3e:5f:1b:0c:74:c3:18:e1:
0f:c9:c6:89:20:f4:a8:a1:bc:e7:d4:9f:90:d1:5a:a7:a2:12:
2d:75:2d:f6:9b:4a:58:94:90:e2:be:c6:bb:e2:2c:48:6b:91:
bc:ad:b7:36:d4:85:f1:bd:54:7d:ae:6c:47:da:8f:4a:fb:bc:
47:1c:c6:2c:a0:5a:a9:f0:fa:9d:1b:b5:0f:b3:6e:fc:56:92:
13:56:1d:22:4e:9f:f0:d6:b7:bb:1e:43:20:71:39:3f:cd:81:
7d:95:ad:35:75:6c:c6:ee:bd:cc:ea:fa:f0:d0:e9:87:f4:e3:
7b:5c:53:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:52 2025 by rpki-client