Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1cce4de7-2873-45f2-8bca-ceae18748090.roa
File: 1cce4de7-2873-45f2-8bca-ceae18748090.roa (raw, json)
Hash identifier: 2zaHfNvYDJYx6YQQ2d73JGuSw2eAWjJhG+uZ784JjY4=
Subject key identifier: 3D:B6:F2:E2:70:64:FA:1C:78:35:71:30:E5:77:69:3D:5C:A7:9E:E4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6EC7AB9C44D4E0FB234FC4C1C6D92EE50D15BADC
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1cce4de7-2873-45f2-8bca-ceae18748090.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:2040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:c7:ab:9c:44:d4:e0:fb:23:4f:c4:c1:c6:d9:2e:e5:0d:15:ba:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=755235cee205626c69ed2afdd508174b70506cda13cd48284b49166c8ddcdd28, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:92:77:13:c7:59:dc:0b:e9:ae:7c:9c:6a:b0:
6f:39:cf:72:d5:bf:1d:bb:fb:57:b3:b5:27:fa:40:
bc:91:95:76:e7:da:e4:8b:1f:3c:ca:9c:df:80:fe:
01:d1:c5:b1:46:56:18:de:29:6f:4a:66:fc:a2:d2:
61:d1:0c:82:43:6f:96:4c:0e:3c:d5:b3:f1:be:ac:
ab:ad:06:80:7e:b7:af:b6:5b:0d:03:d4:85:b6:24:
55:e0:d7:61:94:c7:66:06:25:f6:59:07:1b:3e:69:
db:c7:90:76:c7:b7:39:eb:8a:fc:7d:4b:1a:ad:a5:
99:28:1b:26:1c:16:3f:71:61:f2:5d:d5:b7:85:cf:
c5:d9:70:3b:3c:2c:b7:fb:63:36:2a:33:ae:b3:45:
fa:72:df:65:73:80:9c:28:db:7d:29:5d:8f:56:ca:
04:68:ef:85:f8:0e:a9:7b:27:a7:ce:a1:7d:85:6a:
5f:80:bf:f8:c0:f9:6a:86:70:fb:ec:6a:d2:86:73:
e1:21:5e:1a:51:2f:41:dd:ea:fe:70:53:70:16:70:
03:10:95:fa:a2:71:8e:68:af:f7:dd:5a:22:81:0e:
4e:7f:48:85:7d:bf:cb:11:3e:8a:91:97:ab:64:90:
5d:77:dd:4d:72:8c:4a:11:ec:ad:41:01:e3:34:45:
ad:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B6:F2:E2:70:64:FA:1C:78:35:71:30:E5:77:69:3D:5C:A7:9E:E4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1cce4de7-2873-45f2-8bca-ceae18748090.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:2040::/46
Signature Algorithm: sha256WithRSAEncryption
3e:4d:93:f1:6a:67:9b:6f:9f:05:da:a9:a9:07:12:e0:95:04:
4a:6e:0c:7e:56:df:4c:96:b5:21:5f:67:fc:26:4d:ba:08:aa:
06:52:93:b1:fb:3b:84:b8:6d:0a:22:d2:84:2a:96:fc:72:f8:
a1:01:49:b2:7d:26:8c:52:5b:81:87:78:46:75:04:b4:94:f2:
d7:88:8d:dd:4d:5d:ec:3f:02:5f:ff:e4:6c:a7:b3:5f:75:96:
cf:60:0f:47:f0:f3:8d:98:e7:ca:08:ee:74:ae:33:10:d5:03:
8a:37:25:47:0f:f0:20:f2:c6:a8:3d:12:39:dd:14:d4:fb:d1:
25:91:9d:ea:57:5c:fb:28:53:99:0a:67:b2:33:2b:a7:02:e7:
af:93:fe:14:89:54:cb:95:16:86:a9:75:a1:ff:70:fd:4a:6c:
6d:53:54:16:d0:0e:c1:cd:84:5e:72:5d:63:8a:6a:5c:04:09:
7b:90:4f:5d:c3:9a:89:8c:f5:64:17:3f:84:3a:dd:ee:58:df:
62:b5:50:c0:3a:c5:c5:b4:60:65:2a:ae:7a:90:fd:aa:23:86:
51:79:8e:b7:0e:c2:61:fc:4d:35:08:65:74:a0:f0:61:11:1f:
4c:0f:32:6c:3d:4e:21:84:7b:43:c5:02:e9:11:f5:e6:d5:98:
6e:1e:6c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:03:02 2025 by rpki-client