Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a8386ee-14fb-4089-92bd-6b4b1c9c01a5.roa
File: 7a8386ee-14fb-4089-92bd-6b4b1c9c01a5.roa (raw, json)
Hash identifier: lHW9XRBwk2XsAUNUoZMICgxPNQrlAoGWjSL6c/v/Y28=
Subject key identifier: 5E:67:80:57:F3:D7:17:29:0B:A7:D2:46:E9:F8:1B:E3:7A:97:AE:CE
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 56EDD8CBEA2D521116ACCB9AC27FB05566746D83
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a8386ee-14fb-4089-92bd-6b4b1c9c01a5.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:5080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:ed:d8:cb:ea:2d:52:11:16:ac:cb:9a:c2:7f:b0:55:66:74:6d:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=8da18e5d5fc525e2bf1ee940a926d5f00d52ebf79403595d6372cb0b509c7397, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ee:96:94:18:8d:77:9d:2b:86:3f:27:e8:28:
b2:8b:32:b5:2d:ed:05:c5:6d:ca:e8:55:82:0d:e7:
5f:f9:04:34:bb:90:e0:48:14:70:0a:0f:7a:36:8c:
1e:de:f3:6d:db:79:f3:46:9e:29:13:70:cc:d2:9e:
a1:05:20:79:3f:6c:77:87:71:e7:c8:87:af:58:9e:
d3:de:68:6a:32:b9:9f:5d:3d:d5:49:67:c4:d5:63:
59:11:fb:56:a8:bd:00:a9:8a:a0:17:a8:18:2f:dd:
e3:33:6a:60:1e:2e:b9:d0:01:1f:05:2a:ac:6f:5e:
f1:86:45:ce:e4:fe:fb:37:90:7c:6b:54:ea:be:16:
74:15:4e:fb:b1:4f:6c:94:e7:a8:4d:2c:5e:fe:8f:
6f:0e:f9:4e:85:00:f4:2d:9b:87:f6:ff:ef:96:e0:
5c:3d:22:0b:9b:ca:76:d7:15:e3:48:c2:6d:a3:49:
e4:0c:85:bb:07:31:63:6d:43:c6:6a:8b:25:df:45:
6b:e0:67:25:ef:b7:b2:cd:32:23:28:6d:e9:31:76:
ee:f1:70:a6:f7:73:44:fb:23:49:43:9b:10:4c:dc:
7d:47:42:76:bd:9e:62:ec:46:72:86:bb:b4:29:d2:
8f:d2:a6:f3:fb:a3:ba:81:e8:cf:9c:a6:f9:53:7e:
d8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:67:80:57:F3:D7:17:29:0B:A7:D2:46:E9:F8:1B:E3:7A:97:AE:CE
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7a8386ee-14fb-4089-92bd-6b4b1c9c01a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:5080::/46
Signature Algorithm: sha256WithRSAEncryption
59:55:48:fc:27:2c:51:22:b2:bc:f2:4c:cc:b0:03:b9:61:3a:
7c:3d:78:c4:87:a4:3f:d4:61:fc:24:e3:b2:07:c4:ed:85:b0:
6c:74:ef:29:05:72:1b:83:e2:97:2a:91:78:fa:06:fa:ee:1d:
79:73:22:f8:f6:ff:ed:83:78:53:1b:3f:c7:ed:36:5c:62:f7:
74:68:29:9e:ab:59:5b:9d:ea:25:81:8a:23:7b:ec:95:cb:37:
04:84:5a:e9:49:c0:5f:96:e2:a3:06:04:44:c5:e6:72:b9:09:
c7:70:68:9a:0c:c8:a4:ae:60:e6:36:3f:a3:4f:ce:6d:c0:c5:
f9:aa:1f:42:d4:49:b3:ac:1d:50:fa:05:60:17:6e:bf:54:1c:
38:15:3f:29:d1:5d:ec:b4:00:18:f2:16:da:5b:8a:b1:9d:17:
10:cf:eb:4a:96:9c:fd:42:cb:17:0b:25:21:2e:55:55:fd:d2:
ad:d2:61:e7:50:fb:84:aa:22:77:67:ff:f1:b3:8a:2a:f6:15:
68:42:cd:ce:6c:ea:9e:66:68:63:da:c3:c3:ab:33:7d:d1:bc:
79:c9:18:32:18:b4:27:f0:ac:29:ee:e4:38:42:74:4a:c7:e9:
b6:50:29:50:28:a4:b7:ed:aa:92:5c:26:a9:ca:a0:b4:87:96:
9b:3b:da:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:45 2025 by rpki-client