Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
File: eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa (raw, json)
Hash identifier: fZDxhIT+i5LJJgKHUCJ8caoZ1T+q3A4wllD4y1QryjM=
Subject key identifier: 6F:7B:06:3C:66:7D:E7:E7:45:4E:66:18:E4:FB:40:0B:FA:1F:8B:DB
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1A520B76F9E5BBE22D929E4C595D72A96BD96042
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
Signing time: Fri 21 Mar 2025 15:01:30 +0000
ROA not before: Fri 21 Mar 2025 15:01:30 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 176.34.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:52:0b:76:f9:e5:bb:e2:2d:92:9e:4c:59:5d:72:a9:6b:d9:60:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 21 15:01:30 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e6:9e:b9:3d:3e:ce:41:2c:0b:3a:77:fa:11:
b2:6f:21:f1:c6:5f:f3:b2:60:92:ed:ed:fe:80:b0:
8a:e0:8b:1e:5e:b8:cd:78:f6:18:0b:ed:4f:12:63:
a4:21:46:b4:81:37:6d:10:f2:ef:54:96:d0:42:97:
e7:5e:82:e5:a4:09:d9:4d:0f:2a:7d:1f:54:d5:a5:
1d:5a:68:df:86:a6:c2:b7:2d:c2:e5:ef:7b:da:b7:
ec:c4:1f:08:a7:96:45:85:02:e4:aa:a2:11:e7:87:
9a:a1:0f:7f:c3:0e:b7:4b:16:35:dc:84:7f:60:e0:
c4:f7:ea:ad:27:6c:6c:ab:5a:15:7d:7d:44:5e:9e:
fd:b2:34:ef:76:60:9f:42:0f:2c:26:c8:eb:fe:66:
c7:d0:16:db:1c:b1:6d:57:6a:4c:c5:29:26:cc:3e:
93:11:20:0a:9d:2e:11:fc:b4:25:8d:32:14:df:3e:
1c:34:96:85:3a:f0:d1:36:aa:aa:7f:a0:35:99:50:
ab:a6:34:e7:4b:0a:39:92:ed:5c:fe:ed:e6:d8:e1:
35:77:21:87:1a:47:21:a0:a4:11:2d:c7:54:52:b5:
93:a1:cd:ae:e8:98:75:72:98:b2:b1:d2:e7:cb:b7:
9a:54:f3:3a:c7:f7:c5:ab:ac:41:78:68:ae:92:f3:
2c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7B:06:3C:66:7D:E7:E7:45:4E:66:18:E4:FB:40:0B:FA:1F:8B:DB
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eab8ba62-5934-4c9b-9bd9-10fdd2494662.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.34.0.0/19
Signature Algorithm: sha256WithRSAEncryption
5f:12:00:22:78:3e:82:fd:e1:b5:de:64:c0:fa:25:8f:6a:90:
2f:e8:00:69:73:f0:9a:f8:cc:89:4d:af:d1:56:0d:50:95:dc:
29:9f:7d:27:c3:cf:43:c6:b0:2e:4c:f3:26:64:50:e4:5e:fa:
41:06:b2:87:20:72:a2:8a:4c:df:c4:31:ef:1d:aa:0e:b9:05:
73:3f:d4:d5:33:92:b4:1f:b6:50:62:e0:5c:0f:25:ed:f6:14:
9b:5e:c3:d0:c8:34:e5:b2:57:4d:28:03:d5:78:0f:d9:df:32:
e6:cb:f6:8f:e3:cd:1c:52:3e:2a:82:63:4d:d5:90:e2:a8:18:
2b:78:0b:ee:e2:d2:e4:02:94:7d:35:59:42:83:0f:f3:02:b0:
83:5d:87:38:a6:43:69:0d:87:fa:fb:cd:a2:e7:fa:33:bd:f3:
2d:7a:8f:d2:b2:3b:57:bb:e2:7b:a4:3a:5d:56:5f:01:56:ff:
7e:45:16:91:d6:5b:c4:7c:68:61:fe:91:1e:3d:42:ac:c2:f3:
46:d6:79:e9:7d:e5:e6:4b:3d:03:9c:b7:2b:87:ec:6c:e8:26:
cb:91:e9:72:94:d1:f4:7b:4e:2c:b8:f7:45:66:fc:3c:a1:1b:
95:dc:09:b9:ee:3e:53:a3:51:8f:3c:eb:1e:1a:c7:f0:e7:f0:
85:d2:3d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:09:20 2025 by rpki-client