Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa
File: 7d5bbe6e-da67-4af0-af12-c86f93a16721.roa (raw, json)
Hash identifier: Xsows+XlsRqc/s+Yx2h5HIO+CVp1R1JxX00M0qfp2ws=
Subject key identifier: 30:2D:0D:BA:C2:AE:37:F6:3B:F6:87:6B:38:76:37:F4:E4:53:54:93
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 724C3CCE9C819A49ED20B47B90BB254180C90680
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa
Signing time: Sat 08 Mar 2025 00:30:47 +0000
ROA not before: Sat 08 Mar 2025 00:30:47 +0000
ROA not after: Sat 12 Apr 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2a05:d06f:6000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:4c:3c:ce:9c:81:9a:49:ed:20:b4:7b:90:bb:25:41:80:c9:06:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 8 00:30:47 2025 GMT
Not After : Apr 12 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e9:6f:d9:7b:95:20:03:20:ba:51:1b:66:09:
5e:41:dc:4b:b2:ff:6b:3e:c7:ee:22:92:e9:62:6d:
a3:bb:20:51:70:0e:32:a8:07:fc:21:b7:48:17:af:
9e:d2:4e:cb:3b:0d:81:04:22:63:a2:a9:29:f0:04:
c3:b5:41:69:36:62:36:a8:ad:17:f8:7c:6b:08:2f:
f1:d3:b8:da:d5:99:4a:69:f6:52:2b:b1:20:53:79:
f1:53:f1:53:47:ae:37:19:96:71:68:44:66:3f:05:
16:1f:43:3f:21:84:4f:12:22:9b:7c:64:f6:d1:e2:
20:e7:7c:3d:09:5e:09:35:e2:f1:f0:7e:60:45:73:
17:88:23:d1:ed:e1:13:6f:ad:75:80:ad:54:56:ba:
93:a3:b9:95:f1:97:98:44:1d:ef:a0:d6:38:13:d7:
ef:06:03:72:1f:24:00:81:a3:26:85:cd:b7:ff:50:
c1:50:b9:18:38:54:a0:c1:d4:0e:1e:37:0f:e6:23:
ec:db:4d:af:d7:59:28:25:f6:c7:30:22:ee:6a:3e:
8f:e1:4c:d1:e4:78:9d:2c:b5:47:b5:c5:05:18:76:
aa:52:3b:ea:5f:a5:74:bb:94:d0:d2:2a:18:ec:5a:
ef:83:e7:5b:7b:f4:66:65:42:bd:ef:65:db:6d:81:
b7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2D:0D:BA:C2:AE:37:F6:3B:F6:87:6B:38:76:37:F4:E4:53:54:93
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7d5bbe6e-da67-4af0-af12-c86f93a16721.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d06f:6000::/40
Signature Algorithm: sha256WithRSAEncryption
99:57:7d:f9:dc:2e:76:b9:66:53:f2:27:e4:d7:6b:74:33:48:
c7:81:d5:f0:41:18:37:73:cb:65:29:9c:15:12:ea:87:3e:a4:
0c:0e:40:9d:6a:84:72:62:04:8b:9c:02:b1:de:8a:8f:bf:84:
7f:dc:0b:2b:78:3d:a4:73:8f:60:07:71:5a:ad:20:d3:09:47:
7d:69:30:a9:33:81:7e:5c:f9:f5:2e:8f:e5:b7:0e:7b:ed:86:
44:94:8d:29:f3:56:4c:26:41:e2:01:d4:7a:00:66:21:a2:ca:
0b:a7:32:d1:db:cf:0e:aa:47:48:49:ba:cb:5f:f0:cc:54:3a:
65:fc:b0:20:98:a3:7e:2a:11:f0:35:5c:b4:6d:88:af:59:93:
27:73:e8:5d:05:14:bf:e3:00:50:ac:db:84:c3:c5:1e:8e:a5:
48:2e:bd:70:f3:89:15:bc:ff:70:82:d9:93:be:4d:a9:38:43:
a5:62:9d:71:d1:19:34:95:a1:ea:df:90:f3:c6:d1:76:13:08:
0d:87:57:d0:f3:8a:de:58:2f:e8:ea:90:d7:da:f2:b9:d3:d7:
76:72:56:d9:ca:98:8c:9a:8e:3d:1d:39:7b:c7:74:c4:29:d4:
88:41:e2:27:73:89:35:10:74:b8:bc:ac:c0:92:16:6c:c3:67:
59:77:cd:c3
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUckw8zpyBmkntILR7kLslQYDJBoAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMDgwMDMwNDdaFw0yNTA0MTIyMzU5NTlaMHoxSTBHBgNV
BAUTQDUwZTc4MTYzNTJkMGY4OGUxYjRlZDAzNWRlMmFkZGRkZWZiZWY2MDBmNzkz
ZWJmMDNlOWU5MGQ5OWU1NmM1ZDIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAIrpb9l7lSADILpRG2YJXkHcS7L/az7H7iKS6WJto7sgUXAOMqgH/CG3SBev
ntJOyzsNgQQiY6KpKfAEw7VBaTZiNqitF/h8awgv8dO42tWZSmn2UiuxIFN58VPx
U0euNxmWcWhEZj8FFh9DPyGETxIim3xk9tHiIOd8PQleCTXi8fB+YEVzF4gj0e3h
E2+tdYCtVFa6k6O5lfGXmEQd76DWOBPX7wYDch8kAIGjJoXNt/9QwVC5GDhUoMHU
Dh43D+Yj7NtNr9dZKCX2xzAi7mo+j+FM0eR4nSy1R7XFBRh2qlI76l+ldLuU0NIq
GOxa74PnW3v0ZmVCve9l222Bt5cCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQwLQ26
wq439jv2h2s4djf05FNUkzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
N2Q1YmJlNmUtZGE2Ny00YWYwLWFmMTItYzg2ZjkzYTE2NzIxLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0G9g
MA0GCSqGSIb3DQEBCwUAA4IBAQCZV3353C52uWZT8ifk12t0M0jHgdXwQRg3c8tl
KZwVEuqHPqQMDkCdaoRyYgSLnAKx3oqPv4R/3AsreD2kc49gB3FarSDTCUd9aTCp
M4F+XPn1Lo/ltw577YZElI0p81ZMJkHiAdR6AGYhosoLpzLR288OqkdISbrLX/DM
VDpl/LAgmKN+KhHwNVy0bYivWZMnc+hdBRS/4wBQrNuEw8UejqVILr1w84kVvP9w
gtmTvk2pOEOlYp1x0Rk0laHq35DzxtF2EwgNh1fQ84reWC/o6pDX2vK509d2clbZ
ypiMmo49HTl7x3TEKdSIQeInc4k1EHS4vKzAkhZsw2dZd83D
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:21:34 2025 by rpki-client