Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5848fa6-ac6d-40a4-82b6-9f25776b23df.roa
File: f5848fa6-ac6d-40a4-82b6-9f25776b23df.roa (raw, json)
Hash identifier: BGtq9dCvUkUUrATk8idjk3gx19KIvYo8BTwfpvIBirw=
Subject key identifier: F0:C8:09:00:52:6D:D0:03:26:1C:1C:C7:FF:5D:E1:38:31:FC:07:EB
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0C460F303399CB92B89F585E94D8BDF1754C4E0A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5848fa6-ac6d-40a4-82b6-9f25776b23df.roa
Signing time: Wed 05 Mar 2025 17:12:10 +0000
ROA not before: Wed 05 Mar 2025 17:12:10 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:4040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:46:0f:30:33:99:cb:92:b8:9f:58:5e:94:d8:bd:f1:75:4c:4e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 17:12:10 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:82:df:77:22:ad:b7:0d:40:95:89:40:a7:45:
21:da:c1:88:87:51:23:06:db:ba:ae:bb:2b:f9:18:
d7:32:b6:d6:d6:bf:f8:92:16:b4:ed:55:02:94:7a:
1e:74:3a:61:b2:8f:4f:f9:ff:ea:09:d1:a9:8a:11:
35:62:fe:f0:1c:1c:f8:6e:57:1a:26:f5:b7:eb:27:
2d:08:a3:79:30:23:c4:d8:24:e4:cf:78:ce:6a:ea:
e0:43:fb:db:13:b5:cb:15:a6:1d:8b:d1:91:d3:68:
cc:6e:88:c1:0a:83:a3:12:ee:6d:ec:bf:a5:24:95:
02:04:52:16:8c:f2:8a:9c:94:43:bd:3b:9e:25:2a:
a3:49:50:87:5a:fd:79:35:8c:4f:17:f4:95:1a:10:
d9:5b:22:b3:1f:3c:3e:8b:b6:22:e9:5f:16:5b:53:
59:2d:d5:7c:fc:ed:aa:1c:6c:d0:90:22:6b:44:f1:
1a:cd:05:f8:52:0f:84:fa:0d:a2:0a:a2:05:6a:c0:
56:5a:7f:d4:c4:90:c1:dc:95:b7:7b:2c:cd:d5:06:
3c:a1:c1:17:2c:a8:d3:10:83:d2:c7:fa:16:63:e9:
04:65:ff:55:38:a7:7f:0f:b4:99:5a:e8:39:c3:3d:
32:a6:d0:89:4e:83:37:cc:70:49:0d:37:5f:85:06:
88:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C8:09:00:52:6D:D0:03:26:1C:1C:C7:FF:5D:E1:38:31:FC:07:EB
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5848fa6-ac6d-40a4-82b6-9f25776b23df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:4040::/46
Signature Algorithm: sha256WithRSAEncryption
37:82:f3:10:bb:32:7d:91:fe:28:b8:0e:11:96:23:47:12:18:
87:f8:16:3d:a6:ba:f9:d5:c5:37:aa:15:fb:4f:77:7a:fb:0c:
4c:f1:73:d1:4b:93:30:07:53:54:ca:79:31:35:60:58:fb:3f:
fb:a0:c7:6e:b0:00:ec:d6:7b:da:32:70:10:ad:71:09:44:56:
42:a5:4b:26:ba:00:a4:e0:ef:68:4d:8a:98:84:90:94:a1:77:
6d:84:fd:db:97:05:93:c3:b0:f3:56:e7:64:c9:6e:a4:27:fc:
2b:c2:dc:c5:4d:28:6d:90:d5:e6:a2:8a:74:e8:e6:24:89:51:
0e:74:72:6a:8a:32:c6:6a:65:20:ee:b2:1f:e1:28:19:4a:9c:
c6:9b:a9:5a:f5:83:59:1b:40:de:02:bf:de:29:1a:4f:cb:f7:
af:d0:7b:dc:ab:be:62:fe:e2:28:99:33:5d:f1:68:c4:54:3d:
99:bb:e6:70:1d:2e:cb:53:0e:93:89:60:21:2e:71:ff:19:7e:
f0:aa:4c:33:c8:e1:aa:54:a5:bd:7f:bf:95:7c:b3:fc:8d:c3:
5a:80:12:b7:c3:a9:15:e8:00:86:fc:fd:4e:04:5c:d0:9e:05:
b1:a4:8d:80:c6:a6:63:34:df:60:01:f4:dd:36:dd:c6:3b:2b:
dd:15:1b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:33:26 2025 by rpki-client