Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4c1d8e8d-582a-4cac-86e1-f27d0bc3d7b6.roa
File: 4c1d8e8d-582a-4cac-86e1-f27d0bc3d7b6.roa (raw, json)
Hash identifier: SF0vnvT/Xxr1VALI+Yo9PJSGNCbe2mCw+DkV6mCEFy0=
Subject key identifier: F0:CA:CC:F6:AB:5C:59:CB:49:2B:86:21:5A:06:9A:90:CE:B8:D4:F5
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3F25EF47E04BDFDA468C253EEA5E993228589BA3
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4c1d8e8d-582a-4cac-86e1-f27d0bc3d7b6.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:8080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:25:ef:47:e0:4b:df:da:46:8c:25:3e:ea:5e:99:32:28:58:9b:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=e366ece53efd51f8ef900f37b410d4fe9348a4900e2cd59aebe7285e404d59f0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:41:0e:95:ca:42:b0:64:38:02:db:a2:c7:9f:
09:b3:88:89:23:24:53:24:86:0a:71:8a:46:a8:32:
b8:9c:58:eb:54:29:c0:36:4d:e5:86:66:af:03:71:
57:1a:a1:65:a9:c9:1a:58:8d:a4:ef:4d:dd:1e:df:
76:50:8e:8f:ae:36:60:d6:e5:c8:a3:04:e5:f8:d9:
8d:33:82:c4:51:2c:c8:f7:f9:5d:3f:eb:3a:37:4f:
54:32:dd:1a:4a:04:48:1d:bd:a7:42:26:a1:6e:67:
84:99:91:da:c7:a4:33:e6:0c:ef:84:34:f2:12:e4:
28:0a:3f:2c:3a:4c:0d:34:25:19:2c:2a:a7:65:4b:
82:3f:80:44:2c:78:84:73:db:a2:64:51:31:98:81:
6c:37:87:7f:58:62:e6:2a:1f:63:37:5a:0f:4e:6f:
30:e8:8f:f8:c2:b6:3f:b8:c7:bd:8f:8e:79:d7:21:
71:01:f9:b3:68:28:cc:41:2c:2a:fc:1b:0e:b8:39:
96:1e:56:ec:11:c0:93:8f:14:cb:28:ad:64:25:64:
af:fb:c6:8d:0c:cd:0c:f9:45:96:98:e7:f9:8e:ac:
ba:fe:e9:64:52:02:f3:5a:b3:c7:cc:68:5f:c8:b7:
62:2d:40:87:44:44:c0:d6:1e:e0:5b:6d:ec:5a:a5:
df:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CA:CC:F6:AB:5C:59:CB:49:2B:86:21:5A:06:9A:90:CE:B8:D4:F5
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4c1d8e8d-582a-4cac-86e1-f27d0bc3d7b6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:8080::/48
Signature Algorithm: sha256WithRSAEncryption
b4:f3:3a:85:a7:ca:e8:31:e5:92:46:41:07:b3:6a:a4:3d:77:
78:28:cb:cd:9a:c8:b7:f8:77:29:f6:e9:ee:e7:12:81:a1:83:
c2:70:f5:d9:7b:fa:e0:42:78:1d:7f:de:0d:d2:3d:22:b6:92:
ab:27:79:ad:79:7f:03:e0:64:4e:ed:3c:82:db:21:39:58:f7:
67:41:f4:54:b5:01:1b:56:6b:aa:3e:46:30:ae:e6:ac:70:ad:
02:15:15:75:4c:d1:43:41:eb:7a:63:28:6f:e1:86:1d:dd:9e:
6d:d0:13:96:0f:d4:be:29:55:df:a0:38:82:13:d2:bf:4f:13:
fc:f1:62:32:dc:8e:6d:9c:3a:2c:d6:ed:84:9b:9e:01:eb:53:
8a:cc:9b:19:45:34:b4:36:01:bc:fe:e7:88:b3:cc:33:3f:35:
2d:f2:6c:f5:5d:87:3e:9b:c9:5c:43:67:e3:77:f1:db:0c:af:
ec:78:23:71:0e:4f:2a:54:74:fd:78:0d:5a:0a:70:0b:9b:b4:
8b:51:eb:29:77:72:06:b6:82:b7:b9:97:6f:4a:89:ca:37:ae:
6b:79:b2:8a:28:1d:07:a0:2f:01:01:6b:95:28:96:da:00:50:
43:a7:10:1b:c1:41:4f:3d:1c:66:01:16:ea:17:8d:b4:77:13:
ea:c3:9e:1a
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUPyXvR+BL39pGjCU+6l6ZMihYm6MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAxMDgwMDAwMDBaFw0yNTAyMTIyMzU5NTlaMHoxSTBHBgNV
BAUTQGUzNjZlY2U1M2VmZDUxZjhlZjkwMGYzN2I0MTBkNGZlOTM0OGE0OTAwZTJj
ZDU5YWViZTcyODVlNDA0ZDU5ZjAxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKNBDpXKQrBkOALbosefCbOIiSMkUySGCnGKRqgyuJxY61QpwDZN5YZmrwNx
VxqhZanJGliNpO9N3R7fdlCOj642YNblyKME5fjZjTOCxFEsyPf5XT/rOjdPVDLd
GkoESB29p0ImoW5nhJmR2sekM+YM74Q08hLkKAo/LDpMDTQlGSwqp2VLgj+ARCx4
hHPbomRRMZiBbDeHf1hi5iofYzdaD05vMOiP+MK2P7jHvY+OedchcQH5s2gozEEs
KvwbDrg5lh5W7BHAk48UyyitZCVkr/vGjQzNDPlFlpjn+Y6suv7pZFIC81qzx8xo
X8i3Yi1Ah0REwNYe4Ftt7Fql3+kCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBTwysz2
q1xZy0krhiFaBpqQzrjU9TAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
NGMxZDhlOGQtNTgyYS00Y2FjLTg2ZTEtZjI3ZDBiYzNkN2I2LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0HSA
gDANBgkqhkiG9w0BAQsFAAOCAQEAtPM6hafK6DHlkkZBB7NqpD13eCjLzZrIt/h3
Kfbp7ucSgaGDwnD12Xv64EJ4HX/eDdI9IraSqyd5rXl/A+BkTu08gtshOVj3Z0H0
VLUBG1Zrqj5GMK7mrHCtAhUVdUzRQ0HremMob+GGHd2ebdATlg/UvilV36A4ghPS
v08T/PFiMtyObZw6LNbthJueAetTisybGUU0tDYBvP7niLPMMz81LfJs9V2HPpvJ
XENn43fx2wyv7HgjcQ5PKlR0/XgNWgpwC5u0i1HrKXdyBraCt7mXb0qJyjeua3my
iigdB6AvAQFrlSiW2gBQQ6cQG8FBTz0cZgEW6heNtHcT6sOeGg==
-----END CERTIFICATE-----
Generated at Fri May 2 18:59:01 2025 by rpki-client