Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f231f7ae-7dbf-4dbb-8f7a-91b4103218aa.roa
File: f231f7ae-7dbf-4dbb-8f7a-91b4103218aa.roa (raw, json)
Hash identifier: NoPJZKq/hZJ+qv6P3frgGtlhdTGa9pEE5pGZPfJJ5gI=
Subject key identifier: 8E:19:B2:2E:E8:DD:5F:FE:84:47:C2:1A:29:81:3C:5D:DD:51:5A:E2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2A8B5B0DE2A1182DA986670EFCB9325333136BC2
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f231f7ae-7dbf-4dbb-8f7a-91b4103218aa.roa
Signing time: Wed 26 Mar 2025 19:23:27 +0000
ROA not before: Wed 26 Mar 2025 19:23:27 +0000
ROA not after: Wed 30 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:8c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:8b:5b:0d:e2:a1:18:2d:a9:86:67:0e:fc:b9:32:53:33:13:6b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 26 19:23:27 2025 GMT
Not After : Apr 30 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:fc:43:63:90:53:5e:2e:d7:79:05:1c:b8:60:
09:31:1e:a8:d1:cb:f5:48:d7:d1:a0:c4:88:5d:99:
9f:69:32:12:3a:1c:bc:e9:93:66:8f:9f:bd:8b:2f:
f2:d1:6a:64:53:00:56:6b:0a:c2:52:32:7c:71:b7:
73:68:3f:59:37:6a:e5:93:d3:22:6a:32:43:d5:5e:
0f:60:cb:de:db:e4:d2:a3:23:e1:1c:11:5e:d7:d3:
b5:95:e9:d3:df:6c:fa:a2:af:e5:c1:41:3c:82:4c:
74:13:88:84:60:e5:a0:2c:b1:35:44:99:3f:4f:2f:
ac:fb:3a:3c:a4:fb:aa:4f:1f:a3:6e:ef:ea:a8:cf:
d4:22:b4:35:e2:d8:16:bf:da:d0:09:54:ca:cb:40:
45:d6:cb:bd:26:9f:d5:10:17:00:94:b0:7d:9a:fb:
f9:24:07:62:f6:5c:fa:de:bd:23:31:23:cb:ca:60:
c2:8d:ce:b1:95:22:5c:16:f5:ab:b8:2e:83:77:68:
bd:19:7b:60:8c:8e:7b:16:68:8e:2a:54:54:42:fb:
bc:cf:6e:62:65:79:26:a6:8e:91:f8:31:fc:cd:f0:
a9:fd:10:65:65:b8:49:e8:15:42:2c:6b:e7:94:af:
23:68:32:85:02:93:ff:e3:13:53:24:74:13:03:d2:
87:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:19:B2:2E:E8:DD:5F:FE:84:47:C2:1A:29:81:3C:5D:DD:51:5A:E2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f231f7ae-7dbf-4dbb-8f7a-91b4103218aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:8c0::/48
Signature Algorithm: sha256WithRSAEncryption
7c:76:97:a7:43:2f:9e:2f:ed:a4:21:fa:6d:42:18:74:f6:56:
33:c9:57:c0:88:4a:49:db:08:e4:1e:de:82:7c:bd:4f:72:b6:
e0:5f:88:3f:ac:ef:45:31:9a:e4:7a:cf:6f:d1:48:80:c0:22:
7d:20:32:da:af:92:7c:7b:59:c3:da:74:37:a2:49:39:1a:25:
23:96:80:17:a9:f2:a3:4e:79:0e:93:2e:0e:af:8c:69:60:c4:
8c:ab:8c:6b:12:47:75:5b:8d:48:6b:60:b0:1a:e4:47:3a:99:
21:4e:db:dd:a4:a1:ea:9e:f8:99:1c:1b:eb:d4:00:a3:38:75:
6a:c5:0b:4d:76:b8:7d:05:02:e2:b2:b5:19:16:d4:86:4d:84:
ba:db:b0:96:57:05:d3:3f:18:53:fb:ac:36:59:87:7a:77:1c:
c9:d4:63:59:26:62:5c:0e:1b:73:56:25:1d:51:03:e8:da:56:
ef:87:01:47:81:ba:7d:4a:76:b4:a3:42:74:86:5e:4b:e0:89:
c7:7d:1e:c6:6b:e2:cb:3e:9b:c5:32:74:de:df:c9:69:ad:8a:
cc:af:fa:ef:09:54:7e:3d:ab:f6:6d:4e:bf:23:0f:df:3e:60:
d4:5c:e0:fc:fe:eb:bc:b6:89:59:13:c3:ca:bf:02:23:29:8e:
ba:c8:b9:4b
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUKotbDeKhGC2phmcO/LkyUzMTa8IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMjYxOTIzMjdaFw0yNTA0MzAyMzU5NTlaMHoxSTBHBgNV
BAUTQDE5MTViYTdkZGM1Yzc5ZWQ1YzU4OTM3YjNmZDUyYzljOGNiYTQ2MjFiYWFj
ZTliYzM1NDc3ZDhjMTYyN2Y5YzkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANL8Q2OQU14u13kFHLhgCTEeqNHL9UjX0aDEiF2Zn2kyEjocvOmTZo+fvYsv
8tFqZFMAVmsKwlIyfHG3c2g/WTdq5ZPTImoyQ9VeD2DL3tvk0qMj4RwRXtfTtZXp
099s+qKv5cFBPIJMdBOIhGDloCyxNUSZP08vrPs6PKT7qk8fo27v6qjP1CK0NeLY
Fr/a0AlUystARdbLvSaf1RAXAJSwfZr7+SQHYvZc+t69IzEjy8pgwo3OsZUiXBb1
q7gug3dovRl7YIyOexZojipUVEL7vM9uYmV5JqaOkfgx/M3wqf0QZWW4SegVQixr
55SvI2gyhQKT/+MTUyR0EwPSh8sCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSOGbIu
6N1f/oRHwhopgTxd3VFa4jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZjIzMWY3YWUtN2RiZi00ZGJiLThmN2EtOTFiNDEwMzIxOGFhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HII
wDANBgkqhkiG9w0BAQsFAAOCAQEAfHaXp0Mvni/tpCH6bUIYdPZWM8lXwIhKSdsI
5B7egny9T3K24F+IP6zvRTGa5HrPb9FIgMAifSAy2q+SfHtZw9p0N6JJORolI5aA
F6nyo055DpMuDq+MaWDEjKuMaxJHdVuNSGtgsBrkRzqZIU7b3aSh6p74mRwb69QA
ozh1asULTXa4fQUC4rK1GRbUhk2EutuwllcF0z8YU/usNlmHenccydRjWSZiXA4b
c1YlHVED6NpW74cBR4G6fUp2tKNCdIZeS+CJx30exmviyz6bxTJ03t/Jaa2KzK/6
7wlUfj2r9m1OvyMP3z5g1Fzg/P7rvLaJWRPDyr8CIymOusi5Sw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:49:58 2025 by rpki-client