Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
File: d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa (raw, json)
Hash identifier: 9J1YlpGzNrwtZBEUbaNALhhGghOJ/QPmlis2dohhx7Y=
Subject key identifier: A6:B8:2E:19:E9:A5:46:8E:9A:BB:05:03:9F:F1:CE:53:FE:A8:7A:89
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 355E7912B1E0E34687ACB4DA32B1EE2DB0D693B7
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
Signing time: Wed 05 Mar 2025 17:01:11 +0000
ROA not before: Wed 05 Mar 2025 17:01:11 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:a040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:5e:79:12:b1:e0:e3:46:87:ac:b4:da:32:b1:ee:2d:b0:d6:93:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:01:11 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:72:8f:5d:36:ea:df:45:28:9e:bd:80:75:e8:
78:0d:bc:1c:05:6b:12:83:dd:fe:a9:7c:4f:33:fe:
77:8a:5b:d4:ba:7f:e2:0c:06:01:b4:9f:86:63:d7:
b4:3c:61:5b:91:69:7f:02:1e:cb:10:10:3f:63:90:
c7:bf:98:99:2d:cf:92:b4:df:04:a8:f4:32:2f:9c:
76:cf:3b:fc:0b:11:4a:e0:53:5e:fc:6c:54:16:8a:
fc:3e:2a:3b:29:23:00:aa:18:47:0f:e5:4e:3f:3c:
49:55:7e:04:1e:39:93:db:ab:7b:a9:17:65:f5:0e:
46:42:47:24:a5:37:ea:fa:31:33:51:c3:9f:7e:95:
c6:58:dd:d1:f6:eb:c2:10:57:64:10:d5:32:03:dc:
c1:60:fd:37:ac:3b:59:fa:e1:d8:eb:ae:c4:f6:17:
f7:24:9e:51:3f:82:a9:82:86:65:67:a2:e8:7d:09:
9f:0f:bf:d1:5d:a4:aa:e5:ec:bf:f0:50:0b:ae:e1:
06:c0:c6:76:20:a9:52:07:9a:90:a8:28:61:6f:79:
55:81:3f:f5:f1:d9:a9:92:6b:2b:2e:c7:6d:4c:2b:
6e:82:45:1d:9d:d4:72:ab:af:e5:db:cb:7a:91:8a:
fd:12:5a:30:33:3c:f5:c9:42:81:ac:c0:f7:c9:f4:
36:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B8:2E:19:E9:A5:46:8E:9A:BB:05:03:9F:F1:CE:53:FE:A8:7A:89
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:a040::/46
Signature Algorithm: sha256WithRSAEncryption
46:08:0c:8f:1e:d6:d0:02:cb:ae:02:bd:43:e3:75:bd:ad:a5:
1e:4e:3f:7b:75:a6:3c:ef:95:ba:6c:a8:3d:9f:4c:15:25:90:
49:d3:41:87:c4:ae:31:7a:44:88:aa:12:37:f7:d7:0e:1a:39:
05:72:b9:8f:33:9c:7b:dc:96:f4:93:f9:c6:df:ca:36:c8:68:
b9:36:e6:38:12:c8:85:f5:9f:f7:bd:bb:63:a7:04:88:e4:00:
d3:54:8d:6b:39:b7:81:28:48:9d:2c:bf:cc:a6:77:06:02:16:
04:95:ec:f6:28:6f:94:b4:3a:8b:1c:02:55:c1:e9:89:eb:7b:
b2:94:9a:45:9d:1a:3e:d1:9d:dd:c4:48:5b:fe:39:f6:41:df:
f3:b1:b1:39:35:38:12:02:94:be:5b:76:94:94:c2:d4:42:b5:
bb:8a:56:86:08:b9:65:fb:c5:a1:60:89:46:94:c4:49:fd:40:
91:06:84:49:25:bd:67:ab:83:b4:67:cd:22:7f:9b:cd:fc:c0:
c7:fd:45:e7:ef:41:37:a0:6d:b4:97:36:51:ee:1d:63:aa:1b:
43:d8:23:6a:62:ba:4a:20:53:63:9f:d0:f7:99:ac:df:3f:43:
06:d7:a0:6b:2b:cf:a0:1f:ca:ea:d1:94:40:fb:64:74:bb:d2:
67:4a:ff:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:25:14 2025 by rpki-client