Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
File: 05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa (raw, json)
Hash identifier: w34gtKVbk0KADE1f3MuJ5O7zpG0yzXUTCABFjXfzbto=
Subject key identifier: 27:A1:5F:D0:5B:C6:2C:4B:F1:A1:DD:5D:32:6A:D7:F3:19:84:CB:87
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 627BEAD746ECA9A91D4C1F1F3938CDB14EE07D62
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:8050::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:7b:ea:d7:46:ec:a9:a9:1d:4c:1f:1f:39:38:cd:b1:4e:e0:7d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=7b4ea3505221798705716cde0c237a4689aa37e9708cad73a0ff2f666feff448, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fa:64:f0:a0:3f:d3:f0:cd:0a:54:73:a8:b3:
2e:b9:47:f0:86:8f:c9:7b:51:7f:7b:52:e5:8a:2d:
a7:ff:e0:af:d9:c5:3b:40:69:b8:0d:31:b1:1a:50:
87:d9:5f:5f:95:42:82:92:2c:43:ad:20:1b:b6:2d:
8c:ec:79:ab:ff:06:02:81:00:13:63:df:34:92:d3:
3b:ef:35:bb:af:5f:8b:1a:90:0e:b1:8d:50:91:01:
a5:40:7d:51:52:c8:fc:78:9e:8a:0c:19:2c:22:81:
67:94:7f:54:ea:d5:4b:c8:97:11:cd:39:21:df:dd:
5e:80:d6:6b:8e:f5:ac:bd:13:3d:bd:1d:7a:b3:96:
c7:8b:00:44:c7:15:0b:53:db:85:bf:bc:2c:0c:1d:
f0:14:22:41:57:d6:5d:5e:60:7d:58:44:8a:58:1c:
af:c6:b4:3a:e0:b9:bc:3a:b1:40:52:f4:7d:94:9a:
f1:12:85:60:59:c0:57:5a:d9:86:a4:ab:0c:44:42:
f8:3e:6a:71:14:a6:de:dc:7e:eb:44:63:8e:01:67:
34:78:3e:ea:5a:37:d2:74:3e:b0:aa:53:83:0e:7c:
b2:86:de:1a:c3:ce:4f:ad:bd:0b:b6:f2:0f:d8:3d:
ad:99:19:7f:3f:05:85:bb:8e:5d:dc:7f:55:78:8f:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A1:5F:D0:5B:C6:2C:4B:F1:A1:DD:5D:32:6A:D7:F3:19:84:CB:87
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:8050::/48
Signature Algorithm: sha256WithRSAEncryption
a6:8a:17:35:f3:0f:33:96:92:e4:be:e3:16:b6:64:f4:a4:76:
ba:16:56:e5:2e:e4:ce:4e:36:3a:fa:5f:3b:d1:24:64:12:7f:
3e:09:6d:1e:3b:cc:07:4d:3c:18:2b:d3:13:a9:05:a9:b9:46:
61:d9:2a:4f:f1:ae:68:a1:6c:74:0b:95:33:51:d8:ed:fa:12:
44:0f:52:a5:ab:7d:6e:d0:34:60:35:e2:53:bc:c4:8c:e3:46:
c8:db:61:1f:31:88:db:96:f6:64:98:2e:44:06:ac:c4:1a:91:
22:5b:43:3f:d8:08:d5:67:6b:79:4d:5e:02:44:ad:9d:d2:1d:
fc:3f:92:81:76:43:c8:f0:b4:50:61:b9:0a:b3:87:5e:98:ff:
09:11:c4:fb:ab:ea:a9:4c:b3:08:de:a2:9d:b2:23:38:99:ac:
a1:c0:29:d9:81:39:9c:4a:54:16:fc:a4:69:48:d5:4d:fc:04:
16:0d:c7:8c:01:b9:b1:94:93:54:5d:8a:da:48:5d:50:a7:8e:
ac:c3:a0:8e:1b:90:6a:f1:6f:3c:d3:ce:21:70:a4:df:5c:8d:
36:8f:41:26:7b:b0:42:70:fc:8a:16:db:e5:4d:16:d3:d8:c7:
7c:12:2c:da:ef:42:1a:c4:3b:09:d8:71:90:19:ab:0f:a2:d2:
60:f7:3b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:32 2025 by rpki-client