Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa
File: 7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa (raw, json)
Hash identifier: iF3xNo18BzHHqO5rs0nPbuRL7d4ooRHdlagOn0a5OfE=
Subject key identifier: A0:D8:3D:36:AD:31:12:CD:11:7D:7F:6B:DA:B8:C8:0F:12:76:0B:F3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 54B615FBCC1591CADF4E23A574E07DAE988A018B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:c0c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:b6:15:fb:cc:15:91:ca:df:4e:23:a5:74:e0:7d:ae:98:8a:01:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=4512e597e73fcfe5f7c9665c174c32c15663949fcf23b3bcca85fcebf4d1dbc3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e8:06:a4:a4:8c:e5:fa:14:07:83:6a:24:d5:
38:41:44:b7:37:75:1a:47:2b:7a:04:ae:c3:04:e7:
9c:ab:da:a9:91:48:f5:f9:8a:a8:ce:72:34:48:37:
41:1d:9a:b0:76:d6:a2:1d:24:eb:da:dc:4c:c8:e4:
4e:a2:26:2e:7f:e4:d0:1d:3b:10:f9:6e:2d:c0:94:
fb:de:68:05:ef:ec:92:0a:a3:39:48:c2:f3:9b:95:
f9:df:b3:82:6d:5b:49:e5:7f:65:5f:23:5e:49:e0:
41:b6:aa:b2:a8:6e:88:b5:9c:54:fa:50:a3:ab:e5:
e1:01:b2:1b:ee:89:f7:fe:7f:a7:bb:6c:a2:74:d6:
60:a7:14:74:a0:43:45:64:8d:f7:ed:55:76:a0:6b:
6d:e3:eb:de:d7:b9:34:2f:af:ce:67:29:97:11:49:
44:ce:d4:a2:c3:3e:8a:de:0f:7e:94:04:e5:9c:a8:
90:6d:e3:2c:62:62:4c:42:7a:e5:d9:c8:bb:fd:53:
db:4a:50:4b:44:6d:01:58:4f:fa:44:d0:3e:af:a5:
2f:3e:2b:33:3c:b7:bc:4a:54:cc:9d:05:06:ec:b9:
a8:7d:ce:71:14:52:dc:f7:27:4b:41:8f:99:2e:93:
2e:95:44:9c:4a:83:1a:ce:6b:99:bc:31:89:2f:68:
fe:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D8:3D:36:AD:31:12:CD:11:7D:7F:6B:DA:B8:C8:0F:12:76:0B:F3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a6d5c4d-40dd-4577-9520-a2ac286c8194.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:c0c0::/48
Signature Algorithm: sha256WithRSAEncryption
69:7f:c2:b2:bc:3a:4f:2a:53:ef:4a:18:6e:e4:3f:3c:97:9a:
19:dc:b6:bf:0c:0c:69:d2:80:86:59:45:0c:e5:d1:1a:50:98:
a4:2d:9a:f3:64:79:35:04:a3:89:38:18:d3:47:3b:5c:e5:b0:
8d:aa:81:4e:c5:0c:d5:a4:8e:ef:ca:59:65:c1:bd:a5:11:da:
7c:41:04:9c:d5:73:d5:04:44:2e:e3:c1:eb:7e:6c:0b:d9:57:
02:ee:d7:48:4d:bc:2b:f4:71:9b:5b:60:1b:84:5c:75:ac:5c:
a8:22:a6:ff:e3:b4:f6:d4:8e:44:58:9f:14:9f:e8:67:c5:8f:
8a:d0:be:c6:56:c4:e9:70:cf:f9:44:f1:96:d2:7f:78:b0:a9:
90:d0:8a:15:6e:8f:8c:4a:37:5d:b6:e6:7c:e7:51:ad:33:02:
d7:bf:4c:c6:ba:0b:6d:ec:05:43:3b:a4:ba:1d:e5:1d:2e:af:
77:2e:23:0e:e6:aa:dd:1e:2f:30:57:b5:d6:8d:28:83:d3:49:
ad:16:2f:b0:e3:f0:5c:87:75:85:4f:84:3e:16:a7:0d:c4:8b:
ce:1e:08:6e:6d:80:e5:36:60:5e:22:87:8c:09:8f:64:28:80:
0c:30:e6:2f:21:43:de:c0:e1:7b:f4:90:b7:cd:67:9c:a8:0a:
b7:65:d1:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:02:39 2025 by rpki-client