Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a077699-48cb-42a1-9f1b-1e7c9a3ae808.roa
File: 4a077699-48cb-42a1-9f1b-1e7c9a3ae808.roa (raw, json)
Hash identifier: Txeoegs5ikLZoSn5D5/u0tHsiTE8Gbc9WkKOVi7cMfk=
Subject key identifier: 15:B9:40:48:3D:A5:51:8D:A9:C9:9C:05:58:E7:35:E8:92:4C:35:85
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 369D4643E2E5F223D8ABB4486FF1E1B4E2EA1BDB
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a077699-48cb-42a1-9f1b-1e7c9a3ae808.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d014:400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:9d:46:43:e2:e5:f2:23:d8:ab:b4:48:6f:f1:e1:b4:e2:ea:1b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=6775b6c4536ae7dc4ce94db804fb3c3deabbeeb3f9c3f1c3c8ee2ef898dee2a3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:10:b6:08:cb:db:92:cf:f1:06:fc:f9:68:6d:
86:39:37:4b:6d:fa:fd:2b:8c:8a:1b:b4:fd:7d:d7:
88:dc:25:2f:ce:98:7a:20:03:92:df:53:7f:5a:77:
34:d3:21:56:33:27:ba:7c:b1:6a:d5:b1:c8:ee:8c:
64:1c:ba:8f:e4:6c:f2:08:df:b9:67:27:26:bb:ce:
13:e3:ed:da:d2:f5:21:0c:ef:a0:2e:3c:e7:81:29:
ce:a9:bc:82:0b:e2:ec:1f:84:b1:f1:25:f7:aa:de:
0c:8e:da:9f:6a:49:55:eb:4d:1a:0a:b5:ad:3a:00:
b1:d2:d5:d5:35:37:7a:2e:83:20:fb:f6:11:f1:9c:
3a:b5:e1:b0:06:50:99:5a:a0:4d:f7:8d:90:e2:90:
dd:cc:98:c0:46:73:f7:81:6d:3e:fd:03:e1:2d:28:
31:40:c1:86:9c:6d:a9:d0:de:aa:69:2c:aa:d1:0a:
01:46:0a:78:42:8e:37:ce:14:01:87:d7:a6:09:d8:
df:cb:eb:f7:0a:38:ef:f7:df:2a:a2:cc:c8:ab:79:
e7:d6:9c:60:48:cb:7c:5b:0f:66:43:12:7f:9f:8a:
c3:48:9a:2d:8a:90:b6:68:44:78:63:9b:20:0c:9d:
30:0c:b5:77:32:76:5e:8c:9f:72:be:47:27:ad:c2:
7a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B9:40:48:3D:A5:51:8D:A9:C9:9C:05:58:E7:35:E8:92:4C:35:85
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4a077699-48cb-42a1-9f1b-1e7c9a3ae808.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d014:400::/38
Signature Algorithm: sha256WithRSAEncryption
2c:7a:88:af:03:86:5c:54:39:34:79:55:cd:1d:57:af:9c:f0:
db:c1:5b:3e:96:38:8e:d5:d8:71:4e:0e:e6:dc:d2:75:5d:66:
0e:c4:80:58:9d:27:8e:73:d8:ce:29:06:4b:f5:64:3b:65:d0:
53:e0:3a:67:be:e8:be:51:4f:dc:66:26:d9:f1:e1:1b:7d:81:
5c:58:d6:ab:1e:bd:96:d6:8c:3f:2e:df:fd:24:76:fb:39:ae:
4f:2d:b1:0f:f9:54:75:0f:47:05:2f:5e:fa:45:53:83:e6:b2:
06:56:8c:9d:dc:6d:e4:2f:d5:b7:31:1e:04:3f:34:6d:e2:54:
5f:ef:f3:03:13:ee:1d:22:c5:05:64:c5:80:cd:66:3d:2c:1e:
be:e1:44:01:59:b6:d5:2a:5a:15:af:68:f1:df:dc:78:98:eb:
43:f8:c4:a8:cb:31:2c:ec:c5:8b:e5:ab:69:48:73:9d:a4:2f:
54:38:16:1d:fe:e3:24:df:31:a7:a3:b3:bb:72:6c:b1:2a:47:
7e:ef:80:a4:2a:8a:9e:50:28:81:81:34:32:de:3e:93:97:b4:
4c:d3:b9:d1:8b:62:26:3d:c5:52:40:84:6c:a0:7b:08:07:de:
c4:24:cf:00:da:3f:cd:19:d6:1e:35:b0:5a:8e:5c:0a:e2:90:
52:2b:07:b7
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUNp1GQ+Ll8iPYq7RIb/HhtOLqG9swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAxMDgwMDAwMDBaFw0yNTAyMTIyMzU5NTlaMHoxSTBHBgNV
BAUTQDY3NzViNmM0NTM2YWU3ZGM0Y2U5NGRiODA0ZmIzYzNkZWFiYmVlYjNmOWMz
ZjFjM2M4ZWUyZWY4OThkZWUyYTMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN8QtgjL25LP8Qb8+Whthjk3S236/SuMihu0/X3XiNwlL86YeiADkt9Tf1p3
NNMhVjMnunyxatWxyO6MZBy6j+Rs8gjfuWcnJrvOE+Pt2tL1IQzvoC4854Epzqm8
ggvi7B+EsfEl96reDI7an2pJVetNGgq1rToAsdLV1TU3ei6DIPv2EfGcOrXhsAZQ
mVqgTfeNkOKQ3cyYwEZz94FtPv0D4S0oMUDBhpxtqdDeqmksqtEKAUYKeEKON84U
AYfXpgnY38vr9wo47/ffKqLMyKt559acYEjLfFsPZkMSf5+Kw0iaLYqQtmhEeGOb
IAydMAy1dzJ2Xoyfcr5HJ63CeoUCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBQVuUBI
PaVRjanJnAVY5zXokkw1hTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NGEwNzc2OTktNDhjYi00MmExLTlmMWItMWU3YzlhM2FlODA4LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAioF0BQE
MA0GCSqGSIb3DQEBCwUAA4IBAQAseoivA4ZcVDk0eVXNHVevnPDbwVs+ljiO1dhx
Tg7m3NJ1XWYOxIBYnSeOc9jOKQZL9WQ7ZdBT4Dpnvui+UU/cZibZ8eEbfYFcWNar
Hr2W1ow/Lt/9JHb7Oa5PLbEP+VR1D0cFL176RVOD5rIGVoyd3G3kL9W3MR4EPzRt
4lRf7/MDE+4dIsUFZMWAzWY9LB6+4UQBWbbVKloVr2jx39x4mOtD+MSoyzEs7MWL
5atpSHOdpC9UOBYd/uMk3zGno7O7cmyxKkd+74CkKoqeUCiBgTQy3j6Tl7RM07nR
i2ImPcVSQIRsoHsIB97EJM8A2j/NGdYeNbBajlwK4pBSKwe3
-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:43 2025 by rpki-client