Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b360e2c-382b-4420-8550-330a58e946ee.roa
File: 0b360e2c-382b-4420-8550-330a58e946ee.roa (raw, json)
Hash identifier: bMuyE5CnLC82dEp3Yfq5liCx3KSKCqJsO3YaTx7vNGc=
Subject key identifier: 48:CD:70:7D:16:95:AC:53:CB:8B:A7:9F:89:62:2B:A8:14:67:43:E6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 07F6410D196127B8EDFD90CAF03FE6F74C1E7590
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b360e2c-382b-4420-8550-330a58e946ee.roa
Signing time: Fri 10 Jan 2025 00:00:00 +0000
ROA not before: Fri 10 Jan 2025 00:00:00 +0000
ROA not after: Fri 14 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:6000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:f6:41:0d:19:61:27:b8:ed:fd:90:ca:f0:3f:e6:f7:4c:1e:75:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 10 00:00:00 2025 GMT
Not After : Feb 14 23:59:59 2025 GMT
Subject: serialNumber=aeac7977911c3d72837a6d36a1580c5c4b1b9cb38ec2f2d8d65f43e5f17922ac, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1c:03:05:93:12:91:e6:40:a8:60:55:7e:50:
76:33:e0:80:e4:bc:7b:20:f0:48:be:19:b6:ab:e1:
fb:5a:90:10:5d:d2:f5:0c:e2:97:ad:90:29:8b:cf:
05:cb:29:b7:5d:fc:33:e8:f2:ab:0d:c9:6c:eb:e9:
1a:54:5c:2e:c6:ac:62:28:f0:46:75:07:29:43:8e:
64:d0:bd:05:bb:82:cd:85:b3:8f:05:93:7e:78:71:
17:e2:ec:1e:f2:12:67:a7:78:46:fd:20:f8:36:5a:
b0:d2:bc:55:68:a5:1a:2c:4f:ea:c1:ba:2c:98:90:
28:51:be:cc:09:2b:fa:71:a3:ae:70:0c:d1:ff:14:
c7:31:04:56:c2:6f:2a:77:71:dc:c1:bb:7d:99:3e:
2f:47:1e:4b:d2:5c:e5:b4:cf:ea:10:21:a8:ed:18:
ee:b6:d7:72:47:65:f3:32:76:83:87:7d:9c:fd:65:
ea:97:55:55:e6:5c:78:bc:b0:99:be:47:5b:42:25:
2e:e9:2e:c1:ad:d6:43:57:32:81:d4:3b:50:39:49:
be:37:c0:34:b6:94:1e:be:a0:8b:43:e8:d6:13:62:
4a:3f:46:6a:6f:b8:e3:13:a3:b6:6c:d7:e6:91:4f:
2c:74:52:48:f4:83:d9:57:37:9d:f6:53:01:af:34:
e9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CD:70:7D:16:95:AC:53:CB:8B:A7:9F:89:62:2B:A8:14:67:43:E6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0b360e2c-382b-4420-8550-330a58e946ee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:6000::/40
Signature Algorithm: sha256WithRSAEncryption
0d:d5:7f:cf:af:fa:b4:c7:d3:56:c4:f0:be:9c:66:2d:ec:85:
e0:62:6a:a4:43:9f:81:09:8e:4b:a7:20:0d:97:27:7f:c0:fa:
ac:c2:d7:0a:89:f7:1b:bf:77:15:d3:60:9e:ce:e8:d5:1b:f7:
06:4f:22:75:1a:2e:34:42:57:1b:92:5a:ec:1c:36:81:d5:10:
5c:fc:7e:d6:3a:12:c9:eb:6a:04:ff:07:ae:15:e5:75:74:93:
cf:10:83:de:f2:64:8c:4f:43:1e:4c:c6:04:b7:b0:51:76:97:
c8:63:93:42:68:8e:4e:04:e0:33:36:f1:3a:07:95:d7:fa:17:
fd:ac:56:97:da:d2:7d:66:c3:1c:a9:00:33:76:f4:bf:5c:7a:
25:2d:2c:e4:86:f8:f4:30:a2:90:33:55:c7:e2:37:cd:d7:ed:
07:b6:6d:ec:5b:42:14:f7:b4:b2:79:35:ab:26:12:a7:8f:54:
e7:b3:5d:c3:a7:98:eb:b6:03:89:27:9c:e2:f0:f1:8f:6c:d3:
5b:a7:57:22:b8:2c:31:4c:e6:56:3c:20:60:3e:2c:64:ca:6d:
50:88:2a:42:87:ff:29:ee:58:93:be:c0:c0:c6:6e:ab:6f:aa:
72:1a:06:48:c2:9d:fb:1e:c8:b7:3b:b0:17:9e:06:a8:f2:83:
a8:e9:ff:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:28 2025 by rpki-client