Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edf7f775-4d15-46aa-a77e-d8dd11f7f3e2.roa
File: edf7f775-4d15-46aa-a77e-d8dd11f7f3e2.roa (raw, json)
Hash identifier: Yww6TxwJiVFvyF+DNsusG+CBGTaZXoEF46BA1SBufsM=
Subject key identifier: 88:47:7F:BF:DC:3C:10:14:0F:25:63:95:67:75:01:45:07:4A:71:60
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 251B829094B4D03DFB638148F64622166201E3BD
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edf7f775-4d15-46aa-a77e-d8dd11f7f3e2.roa
Signing time: Wed 26 Mar 2025 19:22:05 +0000
ROA not before: Wed 26 Mar 2025 19:22:05 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:880::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:1b:82:90:94:b4:d0:3d:fb:63:81:48:f6:46:22:16:62:01:e3:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:22:05 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bc:17:77:df:b6:cd:20:9c:a7:83:07:09:21:
9d:da:16:ea:d3:33:43:44:91:2a:ad:b2:aa:4e:0c:
14:28:d8:b9:25:a7:49:38:36:37:46:7e:c0:4f:68:
94:f1:c7:fa:89:88:49:51:c3:44:34:19:80:ee:ae:
0f:6d:18:15:96:69:c3:9f:81:2c:e5:9c:74:54:91:
dc:a4:4b:e8:e7:6d:55:60:ef:5e:7d:05:be:fc:96:
91:94:b6:18:06:f2:55:cb:df:c7:8c:82:b7:05:ae:
41:af:bf:39:f7:cb:ca:a8:2c:99:dc:7e:a9:c0:48:
15:28:8d:91:68:c2:b6:d1:da:a8:a6:9f:32:50:d7:
f3:3f:13:34:f1:4d:b5:4f:fe:7d:4d:fa:22:e4:a0:
84:5b:c9:ae:0a:92:eb:90:b1:31:53:e5:21:3c:c5:
d9:65:fe:87:78:9d:01:23:3c:bc:32:35:4e:50:89:
e3:71:ab:9e:f6:f6:48:a7:72:3b:b6:a9:2c:f4:da:
38:89:cd:1d:9c:bd:5d:6a:18:ad:0f:b3:0a:e2:f7:
cc:12:4a:a3:cd:c6:0c:26:e5:72:9b:be:5a:c4:0c:
7c:e9:04:cc:2a:1b:4c:eb:92:a0:30:19:a3:a2:5d:
c4:a0:c5:6b:cc:17:a6:30:36:27:86:bf:e6:c9:b4:
c2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:47:7F:BF:DC:3C:10:14:0F:25:63:95:67:75:01:45:07:4A:71:60
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edf7f775-4d15-46aa-a77e-d8dd11f7f3e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:880::/48
Signature Algorithm: sha256WithRSAEncryption
2e:d1:dd:66:f9:c0:46:0b:26:39:e1:87:97:a4:a7:d3:a1:18:
35:77:1e:eb:1a:b6:2d:ee:ce:04:45:65:b2:18:38:e2:60:53:
b3:65:10:ec:e3:dd:b2:d7:d5:1a:68:05:ab:ee:42:d7:69:3b:
c4:9a:89:c0:70:8c:ab:dd:c1:5f:34:49:47:e8:9c:75:48:8f:
b7:3b:79:6f:1d:f9:a5:6a:bc:ab:37:3f:85:71:cb:ba:53:fe:
6c:02:42:be:c1:ca:1d:6f:37:ad:42:45:84:22:17:91:fe:87:
65:b5:ca:e3:c4:38:c1:11:a7:8f:cc:6a:07:fd:8a:8c:a5:e0:
2d:be:d5:f2:85:5a:4c:9b:56:15:af:3f:e7:90:26:0d:cc:77:
10:ad:fe:f8:b7:7a:d9:6e:5d:bd:55:d5:5b:f3:34:2e:03:39:
a4:e9:05:c6:42:b8:8a:d8:18:91:69:d2:88:17:48:4e:ac:8a:
7c:e9:7b:5e:b9:cd:68:16:52:d5:e0:75:c2:96:b1:0a:66:f5:
63:d8:11:e9:96:19:a7:83:0e:3a:84:ee:ae:a7:4e:0a:9b:1f:
e8:41:f8:a9:d3:ee:9d:f1:08:db:de:cd:e7:2f:ee:b9:ce:de:
1c:15:94:c0:0d:95:f6:da:fb:fc:43:09:57:cb:eb:ec:c5:e6:
2d:ad:cb:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:33:23 2025 by rpki-client