Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa
File: f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa (raw, json)
Hash identifier: AXUtzBOknA7utVEcmKIxbkKQawSUX1sgD4ClXqpZdfw=
Subject key identifier: 4B:43:7D:BC:6A:D0:70:C8:39:E5:DF:A5:84:F5:35:6E:47:79:60:8F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1FEA5BAE00FE4C732BD94DC246D69CE9A26C4B44
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa
Signing time: Wed 05 Mar 2025 15:00:06 +0000
ROA not before: Wed 05 Mar 2025 15:00:06 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:6040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:ea:5b:ae:00:fe:4c:73:2b:d9:4d:c2:46:d6:9c:e9:a2:6c:4b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 5 15:00:06 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:52:b9:d5:a0:16:8b:de:ef:16:d7:74:d1:12:
49:b9:18:fe:01:d0:71:13:a0:9f:3a:ef:6f:c7:e8:
4b:2b:3a:18:c2:5c:8a:4e:80:13:8a:2d:70:ef:ad:
12:3c:76:bb:f0:46:ca:3a:cd:d7:e0:6f:6e:62:37:
2e:6d:fb:ec:21:30:35:c6:d8:a0:fa:e4:e2:bf:a1:
98:52:d6:83:c1:e6:a7:3d:16:05:7f:de:8b:06:67:
2f:85:fc:a9:4d:0c:ce:40:4e:e0:f8:a0:1a:71:ee:
54:c4:bf:99:64:c8:d1:4f:93:e7:a0:79:4d:9c:f9:
ff:cb:b0:3b:2a:a8:e0:1f:3e:94:75:09:9b:3b:c8:
6f:98:23:aa:d6:28:25:01:49:a8:74:3c:cf:fa:d0:
90:ef:5b:17:b0:c6:4b:3f:a4:fb:70:bf:36:b2:cc:
5d:d6:4a:a5:c3:a1:5a:2d:b2:6d:01:2c:4f:d4:13:
95:5b:35:cc:8e:73:3a:32:41:5c:c0:f6:2d:60:6e:
4d:c3:c2:ab:43:2e:9b:c5:da:e0:ba:95:40:a2:a6:
2f:14:cc:16:72:16:99:0d:c3:5c:b9:55:99:71:bd:
b0:9b:dd:91:9f:1e:ac:30:27:f4:3c:32:5f:34:b7:
64:37:0e:54:7b:59:fd:ef:ac:8f:a1:50:25:cb:45:
61:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:43:7D:BC:6A:D0:70:C8:39:E5:DF:A5:84:F5:35:6E:47:79:60:8F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/f5e64938-fc2d-4971-b2da-aabc9fe556fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:6040::/48
Signature Algorithm: sha256WithRSAEncryption
1c:ba:b4:bd:12:39:7d:af:04:bd:cc:79:7e:03:85:08:26:32:
3c:a7:13:ba:78:a9:17:00:2d:e7:45:51:32:43:74:b0:67:cb:
d3:5f:6f:45:9c:87:0c:58:43:7f:c8:4c:4d:b7:d7:b1:1e:b0:
59:0f:a9:c8:c7:92:f6:9d:af:13:d7:23:27:1c:3c:a0:75:13:
18:86:8e:e7:3d:fb:b5:c6:65:71:2a:e5:e0:30:53:0c:25:3c:
56:cb:3c:8b:bd:65:1c:b3:0b:47:de:79:94:5a:77:08:ca:69:
36:cb:07:66:34:f5:b4:d9:f2:63:76:68:50:f6:8a:25:c3:7b:
1f:7b:86:e3:44:e6:55:f0:5e:db:c5:57:0a:32:19:1b:f1:e2:
e9:02:f7:fb:ae:57:9e:3c:63:cf:41:a0:6f:31:7d:46:d9:87:
36:5b:ec:e9:85:eb:52:b5:29:48:e0:8b:93:df:52:fb:6d:c4:
b2:b9:5a:f8:92:e2:dd:ec:d1:24:e7:f7:67:4c:67:eb:15:c6:
8a:2f:a6:f6:61:83:e6:41:1d:11:1d:39:5f:e7:14:2a:80:8b:
e0:af:8e:0f:db:40:97:c3:6b:7e:94:5e:e9:88:d9:cd:c5:f6:
cf:12:bd:cb:96:81:f8:b1:30:5c:09:e1:35:e1:d3:e0:6d:a5:
58:9a:55:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:30 2025 by rpki-client