Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
File: eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa (raw, json)
Hash identifier: 8A8se/Q/qCpVpp1gAGhZtuUPQ2ol46bfppJl0zCFRHg=
Subject key identifier: D4:9E:B3:02:FE:35:2A:45:23:A2:A4:6B:21:32:90:5F:82:31:68:7F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 61C945A03140FB42C2F772504540F6E2A610DB3C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
Signing time: Wed 05 Mar 2025 17:10:23 +0000
ROA not before: Wed 05 Mar 2025 17:10:23 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:4040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:c9:45:a0:31:40:fb:42:c2:f7:72:50:45:40:f6:e2:a6:10:db:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:10:23 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5e:03:c9:b7:14:86:3f:ba:e0:e9:f2:01:01:
95:d2:37:71:80:e4:c9:45:9a:74:54:a7:e8:0a:35:
8e:41:dc:01:3c:2e:d0:62:9c:01:e9:73:71:ec:36:
ea:26:a1:a4:5a:0a:fa:c5:60:ba:47:14:44:00:4a:
6b:7b:fa:41:15:11:98:74:14:52:67:80:e5:a9:37:
a7:f5:a2:b7:26:b3:2c:7c:2c:75:3e:ca:b2:c9:25:
ee:a8:a6:12:64:7b:73:91:6c:49:de:05:b4:30:cb:
c6:96:75:cd:cd:9a:05:94:4c:fe:ef:85:0d:35:16:
54:88:13:38:49:a3:d6:c8:ec:19:7d:3d:3b:5b:44:
08:12:9b:55:60:60:d2:f0:e1:58:5f:94:5d:75:98:
cb:db:21:9e:47:60:20:59:22:43:68:c7:9f:3a:f9:
ee:1f:e1:1e:af:f8:7f:80:8d:13:f0:6a:48:04:b5:
5d:dd:1e:65:cb:b6:70:3c:e9:f1:cb:63:9a:68:02:
20:f3:0d:a1:42:5a:c9:a4:7c:ca:a5:85:6f:75:9f:
dc:1a:15:60:72:06:29:7d:70:4a:47:c5:aa:5d:8f:
0c:b1:2f:a0:55:fe:42:a0:ad:23:d3:58:7f:4f:f1:
62:02:0a:06:38:c1:e4:fa:53:9e:03:06:6e:76:91:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9E:B3:02:FE:35:2A:45:23:A2:A4:6B:21:32:90:5F:82:31:68:7F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:4040::/46
Signature Algorithm: sha256WithRSAEncryption
0b:10:38:05:de:33:3f:84:7b:0d:2e:c2:12:b7:6c:39:9c:02:
76:48:5f:31:aa:cc:e0:ce:cb:53:49:8f:c8:a0:2a:28:b1:91:
eb:17:26:3b:aa:9d:04:81:de:53:5c:9e:92:d5:55:dd:f3:88:
3b:f5:05:d6:d5:ce:3f:42:b4:4e:8f:bb:6e:8f:a6:9b:fc:9f:
29:55:70:4a:1c:aa:a6:58:57:d3:b5:80:03:19:b4:68:94:69:
91:99:db:54:68:d5:85:42:20:f7:29:e7:44:12:af:0d:78:1d:
87:95:e5:e3:56:83:dc:a4:89:3d:23:e2:26:36:2e:33:a5:35:
be:dc:c3:b5:4a:47:ad:ac:f4:80:df:17:09:64:0a:2c:fe:ec:
cd:52:28:7f:2b:91:02:ab:3e:be:f9:e9:2b:10:c8:e1:58:c4:
96:36:7d:46:55:68:b3:b7:26:da:05:1b:b4:93:55:c4:90:54:
41:ea:e3:05:90:c5:fe:a6:31:66:57:36:9e:00:fe:6a:54:a2:
60:59:4d:e2:05:73:b6:29:08:23:b8:2b:37:d5:0f:34:7e:3d:
8d:43:bd:e1:fa:3e:39:c5:90:4c:00:d1:06:68:e2:55:d5:69:
a7:34:59:06:36:26:73:16:25:5e:da:2c:ba:11:c0:f0:29:9c:
42:a8:3e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:12 2025 by rpki-client