Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa
File: 2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa (raw, json)
Hash identifier: KPiz7JwcJrBBOKlw/TsfxAmwYfCmjTeMZwvsUpayHz4=
Subject key identifier: 99:CA:8F:53:86:C7:DF:43:EF:2F:57:AC:9C:6D:CB:7D:68:A9:7D:2E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7914E7E282161B32AECB61A5D6F01BFD2E38969D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:1080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:14:e7:e2:82:16:1b:32:ae:cb:61:a5:d6:f0:1b:fd:2e:38:96:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=09e63aa57639352ab47377deedeadbcd1579300c2eb127ba8fd85d4780240a6d, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:96:47:21:f3:3f:15:e2:67:12:6d:d3:b8:d2:
25:5b:59:c3:b1:3f:63:f6:ab:09:62:8a:e6:af:74:
05:c7:93:ff:cd:87:3c:93:79:01:b1:54:c9:86:d2:
d1:ac:ef:07:8d:97:34:84:92:bb:d4:56:2e:53:3c:
03:0d:0b:08:81:2d:47:a1:0f:3d:ab:ee:4b:00:69:
23:ba:e9:c4:bd:07:da:21:b8:74:7d:01:3a:e7:fe:
bf:8a:52:dd:6c:a5:a0:d7:03:a5:70:06:25:e3:c4:
dd:a2:6f:cc:6b:1b:4b:11:fd:f4:88:14:95:b3:24:
e4:69:b7:07:28:52:38:d0:88:7d:8d:78:86:e2:75:
d6:d7:51:83:43:38:44:f6:7b:26:ae:7c:3e:91:2d:
30:dc:41:bd:81:fa:71:b1:3c:da:90:47:5e:6d:30:
e9:f2:1a:51:e0:f6:86:a1:26:cf:09:b2:ca:96:d8:
98:6f:a1:33:ac:75:cf:e9:14:ef:31:35:e4:bd:fb:
30:71:ec:06:a1:c0:b2:9c:ad:c9:76:e1:05:d5:a2:
11:f1:a4:36:64:aa:a4:de:bc:74:b4:8b:69:e8:e5:
eb:de:04:4b:c5:b6:4a:26:62:20:89:00:86:b7:57:
25:04:ce:7b:16:4d:8a:c7:03:e2:7f:43:b9:1a:cf:
0d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CA:8F:53:86:C7:DF:43:EF:2F:57:AC:9C:6D:CB:7D:68:A9:7D:2E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2a93bdc2-823c-416a-ac40-6f6c823bcef9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:1080::/48
Signature Algorithm: sha256WithRSAEncryption
57:c8:fc:e4:03:ea:76:c7:c9:e6:14:b7:cc:d2:ca:82:ba:e4:
96:b6:18:e2:ad:de:f5:9f:3e:f0:5e:dd:63:74:a5:53:73:b2:
e0:6b:61:f6:4d:70:5c:12:39:6b:1c:a5:28:fa:2f:d0:4b:34:
bd:b3:2f:39:03:e7:bb:d9:49:16:1f:8b:b9:38:3f:aa:94:ed:
bb:a7:ae:96:76:04:76:2d:04:16:bb:2b:a0:e3:91:66:c1:8d:
94:5c:a5:51:e9:af:51:fe:ad:4c:dc:25:6d:78:8f:8f:ea:12:
66:8a:fe:d7:68:86:9f:ef:4d:67:a1:65:07:7d:d2:c9:66:77:
98:f8:0b:74:24:31:d6:1a:2e:bc:4f:c5:e6:d1:87:7f:43:43:
b9:7c:7a:7a:33:61:59:02:ba:ba:d3:cf:3a:6e:08:59:72:bb:
a4:7c:43:56:3d:2e:48:5b:cf:34:d3:1b:77:30:7f:5a:d3:43:
17:72:2e:24:1d:36:9f:7d:70:e9:19:66:41:ef:c1:32:1a:e6:
68:95:53:c5:12:8f:0b:02:2e:e3:b7:8c:ce:1c:d6:37:52:17:
63:a8:18:1e:7b:ba:9e:f6:d2:b7:f2:b0:0c:ab:34:90:2e:63:
07:b6:65:d2:05:a6:a3:c2:59:91:90:8a:95:52:c6:1a:00:6a:
3e:f6:a2:a4
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUeRTn4oIWGzKuy2Gl1vAb/S44lp0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAxMDgwMDAwMDBaFw0yNTAyMTIyMzU5NTlaMHoxSTBHBgNV
BAUTQDA5ZTYzYWE1NzYzOTM1MmFiNDczNzdkZWVkZWFkYmNkMTU3OTMwMGMyZWIx
MjdiYThmZDg1ZDQ3ODAyNDBhNmQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALiWRyHzPxXiZxJt07jSJVtZw7E/Y/arCWKK5q90BceT/82HPJN5AbFUyYbS
0azvB42XNISSu9RWLlM8Aw0LCIEtR6EPPavuSwBpI7rpxL0H2iG4dH0BOuf+v4pS
3WyloNcDpXAGJePE3aJvzGsbSxH99IgUlbMk5Gm3ByhSONCIfY14huJ11tdRg0M4
RPZ7Jq58PpEtMNxBvYH6cbE82pBHXm0w6fIaUeD2hqEmzwmyypbYmG+hM6x1z+kU
7zE15L37MHHsBqHAspytyXbhBdWiEfGkNmSqpN68dLSLaejl694ES8W2SiZiIIkA
hrdXJQTOexZNiscD4n9DuRrPDQsCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBSZyo9T
hsffQ+8vV6ycbct9aKl9LjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MmE5M2JkYzItODIzYy00MTZhLWFjNDAtNmY2YzgyM2JjZWY5LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DEQ
gDANBgkqhkiG9w0BAQsFAAOCAQEAV8j85APqdsfJ5hS3zNLKgrrklrYY4q3e9Z8+
8F7dY3SlU3Oy4Gth9k1wXBI5axylKPov0Es0vbMvOQPnu9lJFh+LuTg/qpTtu6eu
lnYEdi0EFrsroOORZsGNlFylUemvUf6tTNwlbXiPj+oSZor+12iGn+9NZ6FlB33S
yWZ3mPgLdCQx1houvE/F5tGHf0NDuXx6ejNhWQK6utPPOm4IWXK7pHxDVj0uSFvP
NNMbdzB/WtNDF3IuJB02n31w6RlmQe/BMhrmaJVTxRKPCwIu47eMzhzWN1IXY6gY
Hnu6nvbSt/KwDKs0kC5jB7Zl0gWmo8JZkZCKlVLGGgBqPvaipA==
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:02:03 2025 by rpki-client