Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa
File: 77bc679b-5199-43c2-8199-be5c04a6c0d9.roa (raw, json)
Hash identifier: kWlRm0lK4Q3IC2PxQUP6VOU1D1ZTc7A+Rh0OwNGRLJ0=
Subject key identifier: BF:17:2E:72:9D:93:88:33:6C:03:12:8D:C3:4E:F4:39:B3:B2:C0:6A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3BFFC70236D7A800005F49DCDD4198C7C3A3D485
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:c040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:ff:c7:02:36:d7:a8:00:00:5f:49:dc:dd:41:98:c7:c3:a3:d4:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=cfb7f67e099717089f844ffbd21565fee951e83dc7c7aeabebff590555c880fd, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4f:08:a3:6b:72:94:b2:e7:4d:98:1c:fc:d7:
a8:c6:84:55:36:b6:82:1b:41:28:e9:7f:f6:ca:d6:
57:49:08:86:57:ee:45:f1:3a:f2:8e:1b:ed:4c:bf:
34:63:a7:4e:37:6d:70:2e:be:7a:e6:57:ab:58:b2:
81:51:82:7b:26:87:c3:ff:77:df:d3:19:a1:bd:70:
26:6b:cf:0f:00:12:b6:11:1f:58:25:b2:ea:91:a1:
bc:5d:60:51:80:f1:6d:e5:d1:a2:3c:63:d5:81:52:
f0:fc:3b:03:2e:17:7e:95:34:75:f3:b4:fb:29:ec:
49:c5:67:ae:e6:06:1f:67:31:4b:be:fa:d2:f3:e0:
53:8d:b2:3d:dd:ae:e1:26:9a:8e:0e:5b:32:14:0d:
55:ed:6d:b6:8f:e9:23:d6:c6:86:a9:ec:0a:86:9c:
2b:b3:6e:44:22:0f:cb:9a:54:0d:d2:53:b4:9c:5f:
72:77:45:c7:cb:90:aa:07:37:dc:05:aa:46:3a:8a:
e9:f5:d8:ec:43:b5:3a:ee:a6:62:5f:68:f0:08:5e:
62:b2:0f:9c:22:46:c8:7e:73:0f:7b:71:34:84:79:
ed:39:1a:8c:0a:87:55:be:df:66:41:08:01:e4:96:
14:11:79:a3:28:89:17:0f:0b:12:8c:f5:30:3d:c9:
7b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:17:2E:72:9D:93:88:33:6C:03:12:8D:C3:4E:F4:39:B3:B2:C0:6A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/77bc679b-5199-43c2-8199-be5c04a6c0d9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:c040::/48
Signature Algorithm: sha256WithRSAEncryption
7b:a2:16:80:30:58:3e:00:7b:bf:a2:1e:60:02:5a:36:ce:ba:
26:9d:4d:3c:b3:ca:8d:9c:8f:76:28:91:85:82:16:4c:a2:ab:
1d:f6:cb:ca:c9:94:ac:fd:48:51:27:f6:71:f0:39:ba:0b:0e:
a1:ee:91:f0:ef:05:a9:2e:84:7a:46:9e:22:fa:97:2e:07:9d:
98:f2:49:61:f0:d4:16:ee:0e:8e:c4:0c:34:85:00:65:60:99:
29:5e:a1:ec:54:5d:1f:12:76:94:7b:8d:0c:aa:47:98:b2:b3:
31:a8:f4:ee:43:d7:52:cc:8f:89:28:52:9d:bf:f8:81:da:ee:
6b:fb:52:17:9b:36:a8:f3:5e:fd:ef:33:c6:ab:01:be:eb:f8:
a8:79:6c:93:e0:2e:d0:9a:ab:6c:a7:7c:bb:d5:48:8e:f2:68:
d9:ed:98:82:19:5c:e8:ef:ae:2e:1f:83:47:4a:da:71:35:2b:
6b:e0:8f:b2:cf:66:94:87:02:d1:a6:6e:11:3b:19:23:5c:70:
45:63:9a:95:b7:0a:7a:2f:da:a6:ca:bc:a1:83:43:f5:22:c5:
b5:e0:e3:4f:78:69:08:5a:cf:9b:82:16:78:ae:52:24:eb:51:
0e:84:01:df:d9:1a:19:6b:68:67:66:59:14:db:45:07:41:7a:
4b:9d:de:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:01:47 2025 by rpki-client