Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edcc9789-1388-4a5f-a1ae-1bb58c4cb319.roa
File: edcc9789-1388-4a5f-a1ae-1bb58c4cb319.roa (raw, json)
Hash identifier: igkcUYSzMALT2Qzu13DQTiZbypGVGTHqmvzwhSCZucI=
Subject key identifier: 58:D3:D9:8F:D6:06:59:F8:97:84:8B:96:5A:CE:10:84:EF:E6:BB:4C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1EF148F91067360B6E94C0B1BD6731A5AE7DAC69
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edcc9789-1388-4a5f-a1ae-1bb58c4cb319.roa
Signing time: Wed 05 Mar 2025 17:41:17 +0000
ROA not before: Wed 05 Mar 2025 17:41:17 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d014::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:f1:48:f9:10:67:36:0b:6e:94:c0:b1:bd:67:31:a5:ae:7d:ac:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:41:17 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:75:da:31:b0:96:8f:da:54:0b:57:17:54:fa:
d0:42:50:d7:2c:57:29:eb:f5:37:c5:1a:79:11:29:
bc:d6:df:24:9a:b8:d1:f2:ec:20:3d:9d:ef:cf:25:
54:0b:11:c6:59:8d:e9:96:14:6a:ea:df:d8:ff:fd:
a0:88:71:14:53:83:67:97:d5:10:c9:6b:70:c5:f9:
ca:fd:42:47:1f:92:f8:3f:15:69:c2:06:1c:ac:48:
69:a2:0d:21:dc:ac:df:6e:5f:92:93:69:c9:50:56:
00:c3:7c:50:e3:b4:d0:cc:22:f0:18:e4:15:ba:26:
c3:7b:f8:84:e4:c0:aa:79:f6:2e:d4:2d:0c:57:67:
98:73:c3:ce:b3:cf:62:2d:54:a8:b1:43:9b:7c:00:
af:8b:bb:79:0e:63:46:39:a1:f4:e9:50:e5:8a:17:
de:bd:90:43:03:10:b2:20:29:a0:e8:72:58:06:d3:
e8:e9:c0:e6:e6:17:d3:80:e3:eb:0d:e4:3f:28:f3:
a6:01:4f:5a:9a:dd:bc:96:ad:bb:82:1a:fb:1b:17:
b3:af:0c:9b:5c:7f:7a:91:2a:cd:03:86:4d:b4:b8:
4c:ab:24:ea:da:5d:65:e6:95:fe:39:6f:ad:d0:55:
56:75:b2:17:1a:16:2c:fb:ec:a7:0b:28:a2:aa:9b:
50:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D3:D9:8F:D6:06:59:F8:97:84:8B:96:5A:CE:10:84:EF:E6:BB:4C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edcc9789-1388-4a5f-a1ae-1bb58c4cb319.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d014::/38
Signature Algorithm: sha256WithRSAEncryption
0a:cb:b3:70:3e:54:b9:22:da:bc:58:97:ff:d3:65:56:14:8c:
78:8c:a9:bf:f5:0a:c1:ba:4a:ed:1d:2e:c1:6a:54:5c:8e:9b:
2e:26:d0:ea:d1:72:4d:48:fc:b2:cc:c2:f1:ae:40:23:9b:28:
3b:6b:44:90:24:c3:47:20:30:78:02:e1:cd:57:23:97:89:c4:
cc:74:1a:89:6c:65:dc:04:26:a6:aa:ee:88:54:5d:32:16:95:
40:e2:8e:6a:2b:e2:84:19:08:33:88:ce:02:4c:52:78:14:e5:
da:d2:49:1e:2c:6f:2e:2d:8c:65:58:4d:ce:d3:a8:e9:22:b6:
19:e1:61:40:d7:c0:02:dd:92:24:b2:fa:78:7f:f7:01:bb:2f:
19:4a:40:7b:c6:3c:0f:97:72:d3:a6:bb:77:6b:e1:cb:8e:ba:
92:22:82:79:86:09:9d:04:54:ad:37:ee:3c:6d:a9:cc:31:5e:
9a:a4:72:0d:1f:21:27:44:45:5c:61:fb:c3:b3:80:ff:79:8d:
9e:4f:f2:42:65:3d:79:c3:53:ff:c7:b1:e7:e1:0b:cb:fb:05:
25:d6:78:28:50:e8:f8:c9:4f:7e:8b:ce:22:9b:79:8f:e1:48:
8f:77:91:9e:33:0f:15:b3:e9:43:59:76:71:6d:2d:6b:10:4f:
96:46:63:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:22 2025 by rpki-client