Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa
File: 9a0196e5-a789-4daf-912c-37aa6951f379.roa (raw, json)
Hash identifier: JxhxA31msgDjZxu7mpryNxTdPBfF7XSjDAmu6+Zfqis=
Subject key identifier: 98:F7:82:28:2F:25:D8:98:0D:CE:E9:FB:63:6B:B8:6C:4F:28:39:49
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 39F1215D91CA0D6B2C1E5F71C76FAA4894ED0E07
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa
Signing time: Fri 21 Mar 2025 15:10:05 +0000
ROA not before: Fri 21 Mar 2025 15:10:05 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2a05:d030:a000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:f1:21:5d:91:ca:0d:6b:2c:1e:5f:71:c7:6f:aa:48:94:ed:0e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 21 15:10:05 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0c:81:ac:84:61:25:34:5e:b5:d7:7a:82:7b:
bf:08:f8:32:a7:88:2c:e0:f5:e5:3e:92:62:29:99:
64:14:7e:1b:3c:73:99:cf:b2:d2:b1:76:88:4c:52:
a5:13:c3:5a:91:b8:ce:ec:df:1e:38:b7:46:c4:ac:
de:1f:7a:61:ce:b6:cb:eb:0d:ed:5f:82:b2:7b:c0:
ca:17:cc:d3:44:8e:ff:fc:f3:96:7d:01:d4:63:22:
d4:d4:46:49:4d:20:99:cb:70:9c:34:f6:04:06:75:
71:86:60:d8:95:5f:7f:27:98:8f:b3:f8:96:b3:d0:
5a:2b:22:1d:ec:11:29:17:80:4a:9e:09:47:ce:a2:
b3:47:27:27:52:ff:bb:1d:10:ac:68:4f:c8:84:65:
61:14:fd:05:49:cf:07:7f:c1:0a:d7:d4:3e:4b:47:
6a:c8:f2:f0:2c:4b:c4:1a:b8:11:95:88:75:0e:71:
14:5e:e0:3b:85:7d:d9:77:83:96:c2:90:e0:cc:b2:
93:09:a4:b5:a4:bd:de:55:38:71:a0:31:8c:40:fd:
a9:1f:29:3a:98:b1:3d:67:fe:45:fd:58:66:01:5b:
f3:88:43:dd:21:26:5e:89:e3:07:02:19:7a:7c:9a:
6d:03:9d:6e:6b:b7:06:5e:1d:7a:73:63:9d:61:3c:
cf:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F7:82:28:2F:25:D8:98:0D:CE:E9:FB:63:6B:B8:6C:4F:28:39:49
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9a0196e5-a789-4daf-912c-37aa6951f379.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:a000::/40
Signature Algorithm: sha256WithRSAEncryption
14:26:1e:49:40:94:9c:f9:08:be:92:54:fb:3a:27:7f:a3:27:
89:d2:f1:59:37:a8:d2:d9:49:4f:99:2c:ad:50:7c:db:8d:75:
23:98:cc:3c:13:77:87:35:75:8b:ba:d2:ed:e6:ec:ca:93:e1:
0e:65:84:f5:94:32:87:2e:c6:ec:d6:43:db:19:6b:09:54:06:
b1:6c:5d:54:4d:b1:51:c1:51:2f:c0:c9:ce:e0:ab:54:1a:32:
69:a8:81:e6:76:05:ec:b5:5a:fd:c5:55:65:df:da:07:bc:98:
bd:cc:ae:a9:52:cf:0c:81:b5:c7:a7:84:1b:f1:f7:b3:5b:80:
b2:32:a3:26:3b:fd:a0:78:54:9b:00:62:8b:f7:55:76:6a:49:
64:91:c2:b1:da:a8:44:c5:eb:ae:d4:f0:7e:da:23:83:74:ac:
20:bf:79:0c:b1:53:5d:8a:13:c4:c6:4a:c4:1f:5c:c4:24:4d:
01:53:73:a8:98:dd:4a:5d:f5:9f:1b:d2:9b:83:e4:7a:40:db:
e3:8a:e3:3e:ad:ae:b0:aa:ee:9a:bc:81:a0:37:2a:7b:98:76:
c6:ff:86:a3:90:bc:b9:cc:d5:bd:09:db:84:41:0c:67:a4:85:
c0:e1:44:d6:c0:c1:96:2b:7f:49:77:9d:b0:56:b9:a9:fc:cf:
75:6c:94:7f
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUOfEhXZHKDWssHl9xx2+qSJTtDgcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMjExNTEwMDVaFw0yNTA0MjUyMzU5NTlaMHoxSTBHBgNV
BAUTQDUyZDJlZWU0NGJjNjIzZDk1YzI1ZGU3OTVjZGY4MzU1MzA4ZGI3OGFiMTc0
M2NjMzcyYzgzYTQwZjFjNmY5NzgxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMwMgayEYSU0XrXXeoJ7vwj4MqeILOD15T6SYimZZBR+Gzxzmc+y0rF2iExS
pRPDWpG4zuzfHji3RsSs3h96Yc62y+sN7V+CsnvAyhfM00SO//zzln0B1GMi1NRG
SU0gmctwnDT2BAZ1cYZg2JVffyeYj7P4lrPQWisiHewRKReASp4JR86is0cnJ1L/
ux0QrGhPyIRlYRT9BUnPB3/BCtfUPktHasjy8CxLxBq4EZWIdQ5xFF7gO4V92XeD
lsKQ4MyykwmktaS93lU4caAxjED9qR8pOpixPWf+Rf1YZgFb84hD3SEmXonjBwIZ
enyabQOdbmu3Bl4denNjnWE8zzUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBSY94Io
LyXYmA3O6ftja7hsTyg5STAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
OWEwMTk2ZTUtYTc4OS00ZGFmLTkxMmMtMzdhYTY5NTFmMzc5LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DCg
MA0GCSqGSIb3DQEBCwUAA4IBAQAUJh5JQJSc+Qi+klT7Oid/oyeJ0vFZN6jS2UlP
mSytUHzbjXUjmMw8E3eHNXWLutLt5uzKk+EOZYT1lDKHLsbs1kPbGWsJVAaxbF1U
TbFRwVEvwMnO4KtUGjJpqIHmdgXstVr9xVVl39oHvJi9zK6pUs8MgbXHp4Qb8fez
W4CyMqMmO/2geFSbAGKL91V2aklkkcKx2qhExeuu1PB+2iODdKwgv3kMsVNdihPE
xkrEH1zEJE0BU3OomN1KXfWfG9Kbg+R6QNvjiuM+ra6wqu6avIGgNyp7mHbG/4aj
kLy5zNW9CduEQQxnpIXA4UTWwMGWK39Jd52wVrmp/M91bJR/
-----END CERTIFICATE-----
Generated at Tue Apr 8 08:32:48 2025 by rpki-client