Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ebcfa3d0-0fee-4dc1-aa5d-0061f89669ab.roa
File: ebcfa3d0-0fee-4dc1-aa5d-0061f89669ab.roa (raw, json)
Hash identifier: XDnfkoAc1aVYcG6RddJT9U/UtKd6DizzHQl0SMEK8Yg=
Subject key identifier: AC:A2:BE:16:6B:97:B9:5C:29:D3:A0:C5:A6:FE:6E:AD:BB:1C:78:CA
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 59CF928D9138844E91F18632E5C492AAF174A6D2
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ebcfa3d0-0fee-4dc1-aa5d-0061f89669ab.roa
Signing time: Wed 05 Mar 2025 17:01:23 +0000
ROA not before: Wed 05 Mar 2025 17:01:23 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:9080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:cf:92:8d:91:38:84:4e:91:f1:86:32:e5:c4:92:aa:f1:74:a6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:01:23 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c9:8d:36:3e:67:89:8d:c7:a6:c5:ab:a2:a0:
d8:3a:c6:82:02:05:68:af:3d:cb:f5:31:0b:19:d8:
1d:7f:f7:a5:44:25:64:c6:46:a9:af:7e:f6:cd:a5:
01:55:64:11:b9:36:cc:b3:17:a8:7e:f2:5e:a8:ce:
d0:6b:9f:b6:89:23:ae:9b:2f:44:38:48:3e:3a:09:
2e:5e:f1:b0:25:f5:51:fd:2e:2b:0a:cf:de:68:52:
d9:b8:d7:ae:e9:f5:b8:dc:41:98:ff:f8:bc:2e:db:
f4:0f:11:42:35:70:6f:75:aa:3f:0b:57:d0:50:89:
2e:72:4c:0a:ef:c2:bc:b2:8f:e0:a7:9d:65:c5:08:
66:2a:13:92:1f:2f:39:00:33:a0:ff:90:f7:54:55:
5c:59:ee:d6:47:a0:61:7b:09:6a:c2:18:ff:7c:01:
9d:6a:14:b3:f0:ba:dd:b6:49:ef:73:37:dd:e0:5a:
79:4c:c2:df:b4:74:54:97:96:66:2e:2c:68:14:9c:
72:a2:31:c0:63:1a:61:bb:e2:0d:a5:3c:01:7e:c3:
90:fa:83:bd:f5:43:48:d8:c8:3c:30:d9:f0:63:82:
d1:38:fe:db:d3:c3:66:e2:20:62:d6:cd:00:4f:62:
cc:46:b2:3c:71:30:d3:5f:c4:0f:bb:4f:f7:1c:fa:
f1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A2:BE:16:6B:97:B9:5C:29:D3:A0:C5:A6:FE:6E:AD:BB:1C:78:CA
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ebcfa3d0-0fee-4dc1-aa5d-0061f89669ab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:9080::/46
Signature Algorithm: sha256WithRSAEncryption
48:ff:29:e0:b2:ba:1e:19:34:1e:cc:f9:c8:03:bb:a6:b8:6f:
1b:fa:ef:c8:f9:84:dc:62:78:33:f6:51:3c:ca:28:64:2f:18:
74:16:33:6f:33:ce:ec:b6:b5:94:58:87:7f:bf:41:3b:4a:52:
84:3c:3f:a8:4b:2a:c2:6d:13:5a:57:3c:d9:03:a5:39:cb:1c:
b2:a2:88:d9:f7:de:cf:35:66:52:80:50:7b:5d:5b:d7:72:c8:
7b:6f:d6:41:f2:40:b3:30:78:16:a7:70:61:c7:86:30:6a:1b:
62:f6:54:4e:81:eb:5c:ef:11:43:71:b4:83:dd:74:fb:5a:19:
57:84:33:41:c8:4b:f9:4b:55:52:5d:ec:6f:76:d7:cd:48:a1:
f6:ff:44:7e:bc:08:4a:e1:8e:33:73:77:ff:1d:11:c5:52:f1:
0f:5b:c6:f0:33:48:a7:79:e2:56:71:5a:3e:1c:8b:da:76:f5:
30:b5:fa:fb:1f:89:89:d1:dd:1e:d2:4f:88:ed:ce:ae:ca:d2:
a8:c4:a6:88:55:8e:4a:6e:d1:fa:a6:f2:1a:a7:d8:25:c5:69:
e8:cb:17:01:f8:6f:7e:10:fa:47:ae:81:86:3a:d4:af:5f:c8:
49:fc:36:56:74:06:39:32:65:cb:e8:18:53:aa:b9:c5:ab:31:
c6:3f:22:0d
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUWc+SjZE4hE6R8YYy5cSSqvF0ptIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDUxNzAxMjNaFw0yNTA0MDkyMzU5NTlaMHoxSTBHBgNV
BAUTQDI4NmRmZWY3OTdhOTA1NjBiMGFhNTUyOTgwOWE2NDhlNzM4NGVkNzkwMzJh
ZTdiZjc2Y2I5ZTRlNTFkZTRiMzYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKTJjTY+Z4mNx6bFq6Kg2DrGggIFaK89y/UxCxnYHX/3pUQlZMZGqa9+9s2l
AVVkEbk2zLMXqH7yXqjO0GuftokjrpsvRDhIPjoJLl7xsCX1Uf0uKwrP3mhS2bjX
run1uNxBmP/4vC7b9A8RQjVwb3WqPwtX0FCJLnJMCu/CvLKP4KedZcUIZioTkh8v
OQAzoP+Q91RVXFnu1kegYXsJasIY/3wBnWoUs/C63bZJ73M33eBaeUzC37R0VJeW
Zi4saBSccqIxwGMaYbviDaU8AX7DkPqDvfVDSNjIPDDZ8GOC0Tj+29PDZuIgYtbN
AE9izEayPHEw01/ED7tP9xz68WkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSsor4W
a5e5XCnToMWm/m6tuxx4yjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZWJjZmEzZDAtMGZlZS00ZGMxLWFhNWQtMDA2MWY4OTY2OWFiLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HuQ
gDANBgkqhkiG9w0BAQsFAAOCAQEASP8p4LK6Hhk0Hsz5yAO7prhvG/rvyPmE3GJ4
M/ZRPMooZC8YdBYzbzPO7La1lFiHf79BO0pShDw/qEsqwm0TWlc82QOlOcscsqKI
2ffezzVmUoBQe11b13LIe2/WQfJAszB4FqdwYceGMGobYvZUToHrXO8RQ3G0g910
+1oZV4QzQchL+UtVUl3sb3bXzUih9v9EfrwISuGOM3N3/x0RxVLxD1vG8DNIp3ni
VnFaPhyL2nb1MLX6+x+JidHdHtJPiO3OrsrSqMSmiFWOSm7R+qbyGqfYJcVp6MsX
AfhvfhD6R66BhjrUr1/ISfw2VnQGOTJly+gYU6q5xasxxj8iDQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:54 2025 by rpki-client