Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
File: 2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa (raw, json)
Hash identifier: UtoXEy17SeFZ7U3rqHC1ZgpaVXvVp8ReiJxpdmwYIBg=
Subject key identifier: 05:EA:1E:C4:42:59:D9:89:84:17:C1:6E:AB:0E:E7:AD:99:88:38:D8
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6D21821A9677CC90064C87983B056ED5563646D6
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:b000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:21:82:1a:96:77:cc:90:06:4c:87:98:3b:05:6e:d5:56:36:46:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=8bd12e69aba367577a1849934b5de150122f0d8c0c000f3971e24e8afb8e4b16, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c7:b4:5f:9d:0e:aa:04:b6:2c:e6:a3:ca:5f:
2f:1c:26:5c:b0:85:5a:ff:63:ca:4d:fc:5b:65:d7:
09:e0:e7:73:59:5c:e3:21:59:a2:64:96:e6:87:f3:
99:9d:db:6a:ce:ca:9b:f0:29:bd:72:90:f9:27:82:
1e:fa:21:64:b1:99:13:8a:50:ca:33:70:bf:e2:97:
cc:1b:9a:07:dd:34:b1:18:a9:09:83:b2:b7:2a:20:
a7:57:70:77:14:a3:ed:c0:98:fc:3f:a6:62:e7:05:
ca:b6:0f:4e:80:86:7d:27:42:a0:8f:6f:f1:66:7f:
21:45:2b:f8:85:2c:f5:01:eb:b4:e6:f6:da:33:12:
fa:bf:3a:b5:e9:27:2a:32:bd:47:42:16:d4:50:d4:
68:43:be:2f:8d:2f:d4:ce:df:18:19:9f:fa:99:08:
50:0b:32:f9:ad:9a:dd:60:b8:29:54:be:16:d1:96:
a9:25:84:94:ef:f0:af:4f:93:49:ee:c2:87:cd:ca:
d9:cc:9b:c7:dc:42:17:6c:25:1b:71:7e:47:23:fd:
6d:31:23:b1:f6:1b:87:47:e6:13:c4:cf:db:2a:ef:
5d:85:7f:89:88:a0:3c:6d:06:da:e1:02:d5:92:78:
f8:64:14:35:e9:59:93:85:e3:06:2d:ec:ce:0b:db:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:EA:1E:C4:42:59:D9:89:84:17:C1:6E:AB:0E:E7:AD:99:88:38:D8
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2e377775-7db2-4fae-bcbc-22d3b84a24f5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:b000::/40
Signature Algorithm: sha256WithRSAEncryption
c2:23:12:9a:89:36:c2:ec:4d:18:ad:3e:10:d7:5e:37:be:5f:
1b:ec:88:e1:c7:c1:53:9d:89:36:88:43:e0:9a:7a:30:2f:4f:
0e:34:18:fe:43:43:70:de:3e:73:8b:58:72:a8:75:47:fe:57:
06:27:90:e6:8c:c3:7e:50:b1:aa:37:f4:99:f5:9e:26:76:f2:
a1:e8:3c:56:31:63:7d:85:21:8d:94:a2:1b:0f:6e:70:31:4d:
20:3b:0c:fb:fb:24:50:f6:f8:ce:b9:d4:6c:37:fe:1e:b1:71:
9e:b8:f1:1c:cd:83:87:ae:85:09:db:b2:e8:c4:1d:ce:a6:a3:
05:33:77:18:94:38:5b:ac:e5:96:78:32:af:93:72:23:4d:4c:
56:82:51:f8:ad:33:0c:d4:be:b5:2e:17:c1:29:d8:55:4e:c0:
82:58:96:a7:fd:81:98:33:47:3b:a6:93:32:0d:39:87:24:26:
9d:23:39:dd:1f:2e:cd:7a:20:c1:61:56:9b:65:89:28:b5:5e:
de:15:35:ea:2a:f1:03:1f:5f:e4:b9:d6:f6:52:e5:ab:11:e0:
b3:80:d4:93:5d:67:29:7d:9e:7a:ce:6e:ba:a0:bd:22:00:5e:
de:57:33:4b:0e:f8:c7:1e:98:d3:9e:84:5e:03:e3:50:b8:b0:
3a:d7:74:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:45 2025 by rpki-client