Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
File: 182e091e-259f-44bd-bb67-c5e36fa6958b.roa (raw, json)
Hash identifier: cr//me5T5cKpXlb9PWHtMcP1Y1N8OSNE7qPb1WMle5o=
Subject key identifier: 27:5C:E7:C4:B7:78:56:B3:16:8F:C9:85:34:94:2D:3E:F3:94:45:53
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3AF6661A8C12B7DE716D8D2CFE3EF64FA655221A
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d01c:400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:f6:66:1a:8c:12:b7:de:71:6d:8d:2c:fe:3e:f6:4f:a6:55:22:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=a1a02abbe55c14a6e86c2cbca71eb6c047b88dbb679a5918ddd4da480a6edcc7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:84:e6:3f:38:65:18:5e:58:2d:87:95:00:5f:
07:fd:be:70:f8:22:b8:ed:20:e9:de:b6:61:4b:26:
d4:a6:62:81:e2:50:83:c8:bc:88:1b:9f:3c:27:01:
ad:c1:80:8b:9f:33:53:1d:2d:6f:3a:41:d0:20:d6:
bb:c6:73:8a:7d:f8:f6:7c:0e:55:fe:6d:c1:c2:e1:
63:5b:75:c8:8c:77:5e:ce:56:60:f7:e4:4b:ba:4f:
25:8d:b8:8e:0e:f6:e1:e9:4b:f6:62:68:1f:9c:58:
32:af:64:ba:98:81:e9:65:9b:a8:71:a2:d9:bf:6f:
cf:b2:0d:65:c4:ba:44:78:ed:26:af:d0:91:f3:00:
5e:38:18:f9:fb:45:89:31:77:31:25:04:01:38:d7:
69:fe:4a:ed:46:20:d0:61:a8:c8:3c:82:5a:15:80:
87:6d:cf:56:a0:32:21:d4:f9:dc:5a:2a:c7:bf:30:
fe:2d:8b:24:54:0c:75:8e:b4:16:e3:62:c6:9a:ff:
9e:8b:ea:aa:f7:2b:c4:f9:e8:e1:58:35:32:d6:f9:
65:cd:00:b4:40:64:45:5b:e5:ab:c1:d2:51:6e:41:
a4:79:7f:42:84:c3:c3:42:43:67:a2:32:b8:7c:58:
63:14:bd:52:8f:83:8d:fb:92:05:67:d6:4f:23:81:
25:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:5C:E7:C4:B7:78:56:B3:16:8F:C9:85:34:94:2D:3E:F3:94:45:53
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/182e091e-259f-44bd-bb67-c5e36fa6958b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d01c:400::/38
Signature Algorithm: sha256WithRSAEncryption
8b:99:4a:19:30:a2:42:65:30:e3:25:c5:d2:11:5c:7a:c8:02:
9e:06:4f:7d:b0:7c:5f:b2:be:df:a4:dc:54:50:56:68:5e:d8:
a2:e1:2f:e7:22:32:ea:47:61:ff:d1:4b:77:83:38:70:53:19:
1a:3d:96:78:0c:94:c0:8b:8b:8b:9c:9a:b8:6f:75:41:3f:63:
64:a3:d5:e3:c9:e5:96:29:02:86:83:0a:57:3a:76:7b:6d:0c:
68:75:49:91:1e:fc:5a:ea:00:c9:c7:62:39:98:c4:a4:00:e4:
09:26:4e:de:40:77:75:70:0c:ce:7f:61:81:f9:b3:70:7d:0a:
57:1c:bc:8d:85:0d:88:a1:e3:3f:7b:54:43:db:66:2b:8f:16:
2a:0b:64:56:33:a0:a4:d6:a8:87:d2:1d:bd:84:92:b7:43:d4:
e6:e1:a9:32:eb:9c:44:39:d7:df:ef:af:17:2c:59:bf:cb:e0:
3f:85:79:0f:7e:1d:97:e7:14:90:11:71:2b:60:51:26:80:ba:
e0:6e:f7:4a:c5:33:87:f1:6b:ee:a8:86:2a:5d:36:36:29:4b:
39:be:c9:a7:55:13:c1:dd:95:7a:4b:74:49:84:fa:a8:98:0a:
7a:68:91:43:69:63:3a:e6:d6:db:84:0d:57:59:1b:30:18:27:
ea:65:b7:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:35 2025 by rpki-client