Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3db66c88-0bb0-44d6-b6a0-ad7dd0873c56.roa
File: 3db66c88-0bb0-44d6-b6a0-ad7dd0873c56.roa (raw, json)
Hash identifier: 7VjoJxpexCC5ko2sNxzUByJOkQZFeq6lmqMEy+owPjg=
Subject key identifier: B4:2A:BC:6A:49:CA:2F:A3:6B:A4:DD:47:5D:EE:C4:60:6C:AA:8C:E0
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 13335E63C00256726B8BBBEAC93F4F515B5DAC90
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3db66c88-0bb0-44d6-b6a0-ad7dd0873c56.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:40a0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:33:5e:63:c0:02:56:72:6b:8b:bb:ea:c9:3f:4f:51:5b:5d:ac:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=2f068d3e2d8c83c466f4c3c4a1958eae019c06193cd2adb9e2dee68ade10b9a0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e6:30:10:11:c4:ba:aa:f5:d1:53:05:0f:be:
d1:f1:5d:f5:47:ab:6a:c8:50:3b:69:41:89:20:8a:
d1:8c:d4:85:3c:b2:11:f3:06:2e:bd:ac:05:ac:cf:
59:5e:43:94:00:5a:1f:1b:62:88:d1:5c:e0:a6:4c:
e7:f1:04:3f:68:4e:6f:19:f1:99:db:23:9b:cd:90:
26:e9:53:6b:10:4c:1a:a0:8d:ec:9d:08:b0:2e:0d:
18:59:5d:47:93:24:b5:77:c9:09:7f:87:f8:d3:b8:
97:84:72:82:a2:8c:f2:16:97:06:19:2b:bf:8c:09:
d5:6b:3b:aa:39:d9:bc:aa:6d:35:8a:5e:19:48:13:
d2:75:71:76:9b:8a:bd:3a:ba:85:22:ae:c1:62:fd:
52:da:a1:3a:5d:f5:76:0e:54:e0:8f:18:f2:8e:68:
d5:61:59:c0:cd:c0:90:82:de:e6:ee:8f:d5:d8:8a:
89:9b:b5:e6:e0:6f:c1:06:f6:d4:02:25:92:a3:64:
06:8f:5d:b6:e2:a4:b3:05:89:59:62:b5:62:e1:f9:
cd:82:d7:43:6d:a9:e3:73:66:d6:4a:32:4b:fd:fb:
21:e8:cf:63:f3:be:4d:79:c4:72:5f:d1:39:fd:f6:
0c:11:86:45:1a:7b:cd:1a:99:92:5e:d2:bc:9e:9a:
e8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:2A:BC:6A:49:CA:2F:A3:6B:A4:DD:47:5D:EE:C4:60:6C:AA:8C:E0
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/3db66c88-0bb0-44d6-b6a0-ad7dd0873c56.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:40a0::/48
Signature Algorithm: sha256WithRSAEncryption
bb:2e:67:3f:a8:b0:59:c2:fe:b5:5b:82:93:fd:c6:ba:50:62:
d7:7b:03:40:2d:68:59:2c:0c:9b:7e:fb:7b:04:57:51:c9:35:
e3:e8:c1:7d:17:f1:22:16:92:33:dc:af:5e:ce:22:26:dd:9c:
ff:44:6e:e4:7a:10:f0:d1:f0:b0:87:09:a1:61:94:8a:74:7d:
47:8e:dc:c1:8a:e1:7f:ac:8b:03:26:30:01:22:6b:01:98:2c:
54:79:26:a8:cb:c9:28:91:ea:55:5a:d8:82:09:4c:31:20:54:
e0:4f:d0:17:df:4e:0e:a5:ee:54:93:aa:92:c6:de:c9:72:40:
c9:3d:dd:16:ba:45:23:6b:b4:0a:20:6c:e6:3e:aa:08:2d:83:
07:b8:16:91:06:0e:a5:ed:af:80:8a:dc:b3:c9:2a:8b:eb:01:
dd:f1:31:f3:c1:42:cc:65:ae:97:97:09:4c:97:ec:50:ed:03:
84:15:89:80:d9:44:eb:60:18:f5:28:ce:35:4b:fe:18:a9:9f:
4f:dd:7d:7d:29:fe:ff:27:8e:a5:59:be:77:ad:cd:19:5f:66:
44:7b:ee:e4:4d:2b:41:1d:1b:b4:f7:81:2b:71:52:5f:72:8a:
5a:db:9a:6b:7c:cd:41:7c:df:78:a3:02:64:9b:db:07:1c:b1:
d9:d0:fa:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:23:50 2025 by rpki-client