Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f2d2dfe9-f57a-43e4-8471-748b12e9dda6.roa
File: f2d2dfe9-f57a-43e4-8471-748b12e9dda6.roa (raw, json)
Hash identifier: /coHVsk2ciJ7i3OZDwb6ikJ3F5tBXLsiBvJwwyVER50=
Subject key identifier: 82:D8:A3:FF:11:90:EB:FF:BB:17:53:6C:6E:F2:FC:AD:77:B9:61:F6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 10B05937F24C3C578FED7C7A7506193A129C85A5
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f2d2dfe9-f57a-43e4-8471-748b12e9dda6.roa
Signing time: Wed 05 Mar 2025 16:51:03 +0000
ROA not before: Wed 05 Mar 2025 16:51:03 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:8000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:b0:59:37:f2:4c:3c:57:8f:ed:7c:7a:75:06:19:3a:12:9c:85:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 16:51:03 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:88:5a:c5:b7:7b:9a:46:e6:88:a4:a0:8a:a0:
30:ee:1c:9f:0a:49:66:84:cd:9d:a0:26:97:bc:17:
9d:ec:75:6a:df:0b:5f:47:12:ef:37:dc:d3:2e:92:
45:41:53:24:fd:20:97:f8:96:a9:00:b9:64:4b:b4:
41:60:ba:5a:c2:73:9d:db:63:86:9f:52:dc:fb:dd:
f3:b0:68:a3:f7:36:39:2d:f0:1a:d5:65:ac:55:e9:
06:f6:06:6d:fa:62:bd:e1:0f:67:3a:77:0d:32:16:
50:3a:62:77:05:b6:15:c7:ca:8d:33:d0:19:27:0a:
27:75:98:13:7a:e1:d0:dd:cf:ab:2c:c6:92:c7:85:
25:09:91:51:fe:28:43:aa:d1:6c:75:62:3d:ed:06:
c3:40:00:8e:4f:32:de:bd:71:40:a1:d6:53:b6:54:
d8:60:9c:03:76:68:94:8e:fd:06:1e:22:38:c5:cb:
df:54:b1:2d:d4:b2:3c:17:6e:4e:2d:f8:e9:10:98:
be:43:6c:44:14:ce:0e:fb:b1:83:16:78:de:9d:fb:
7f:41:13:ed:c3:f4:70:56:d2:0e:d6:90:48:e3:ec:
08:7c:1a:8e:45:f9:ab:46:9d:fa:3e:64:44:8f:14:
74:6d:4d:77:5c:2b:6f:95:dc:fb:c3:9a:42:ef:ef:
99:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D8:A3:FF:11:90:EB:FF:BB:17:53:6C:6E:F2:FC:AD:77:B9:61:F6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f2d2dfe9-f57a-43e4-8471-748b12e9dda6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:8000::/40
Signature Algorithm: sha256WithRSAEncryption
0c:e7:78:61:f3:a3:22:8c:4b:02:19:34:29:1c:8d:1a:ca:9d:
0a:c7:2c:58:97:3a:a0:14:67:5b:e5:26:3d:ad:de:70:48:73:
91:55:64:4d:43:58:40:0c:dc:22:2d:ad:e6:12:2a:93:1a:7a:
5a:8e:ce:23:f5:12:17:73:74:10:06:cf:82:98:83:2f:80:b4:
2f:c2:96:52:ee:d7:cc:d4:45:cf:76:c2:4c:42:38:f1:33:70:
b8:9d:16:36:f7:58:93:92:61:e8:12:b4:4e:3d:d7:04:dc:07:
85:b5:e0:67:28:3e:9a:89:37:0d:e1:f3:12:e1:8c:f1:58:e2:
ce:7e:a8:b7:32:e7:dc:02:09:c8:45:d5:66:4b:a1:c8:0d:b3:
fe:2c:a9:16:06:1c:39:69:73:88:c2:c2:ee:f6:f3:a2:0b:21:
20:5b:8d:17:af:1b:c3:9c:59:aa:92:ae:0c:dc:8d:45:8c:e9:
ae:85:12:d1:06:ed:71:8c:56:21:ab:fa:7e:26:1e:54:c2:2d:
3d:0e:37:d2:46:6a:00:5f:e9:d8:cf:40:ad:e1:78:9d:73:64:
82:68:99:45:52:38:75:fe:63:ad:5d:13:3e:b7:7a:8d:fa:1d:
33:d5:7f:16:c5:b5:a3:12:d6:cb:7c:3f:f3:c6:2b:b6:40:00:
f5:5b:77:fa
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUELBZN/JMPFeP7Xx6dQYZOhKchaUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDUxNjUxMDNaFw0yNTA0MDkyMzU5NTlaMHoxSTBHBgNV
BAUTQGE3NjU4ZGUyMjlhZGNmMjM2ZWUxYmMzOThjMjg1YTQ2ZDRlMzc0Mzg3MWYz
N2FjOTU1ODllNzYxYWZhOGQzMzExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKOIWsW3e5pG5oikoIqgMO4cnwpJZoTNnaAml7wXnex1at8LX0cS7zfc0y6S
RUFTJP0gl/iWqQC5ZEu0QWC6WsJzndtjhp9S3Pvd87Boo/c2OS3wGtVlrFXpBvYG
bfpiveEPZzp3DTIWUDpidwW2FcfKjTPQGScKJ3WYE3rh0N3PqyzGkseFJQmRUf4o
Q6rRbHViPe0Gw0AAjk8y3r1xQKHWU7ZU2GCcA3ZolI79Bh4iOMXL31SxLdSyPBdu
Ti346RCYvkNsRBTODvuxgxZ43p37f0ET7cP0cFbSDtaQSOPsCHwajkX5q0ad+j5k
RI8UdG1Nd1wrb5Xc+8OaQu/vmUECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSC2KP/
EZDr/7sXU2xu8vytd7lh9jAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZjJkMmRmZTktZjU3YS00M2U0LTg0NzEtNzQ4YjEyZTlkZGE2LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0HKA
MA0GCSqGSIb3DQEBCwUAA4IBAQAM53hh86MijEsCGTQpHI0ayp0KxyxYlzqgFGdb
5SY9rd5wSHORVWRNQ1hADNwiLa3mEiqTGnpajs4j9RIXc3QQBs+CmIMvgLQvwpZS
7tfM1EXPdsJMQjjxM3C4nRY291iTkmHoErROPdcE3AeFteBnKD6aiTcN4fMS4Yzx
WOLOfqi3MufcAgnIRdVmS6HIDbP+LKkWBhw5aXOIwsLu9vOiCyEgW40XrxvDnFmq
kq4M3I1FjOmuhRLRBu1xjFYhq/p+Jh5Uwi09DjfSRmoAX+nYz0Ct4Xidc2SCaJlF
Ujh1/mOtXRM+t3qN+h0z1X8WxbWjEtbLfD/zxiu2QAD1W3f6
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:37 2025 by rpki-client