Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/89b0de0f-6d7a-449d-a144-e777ce29ce82.roa
File: 89b0de0f-6d7a-449d-a144-e777ce29ce82.roa (raw, json)
Hash identifier: ph0H9A8lJqqv6M4DoJyodTm2vj71Cgvx7dLR95CbCT0=
Subject key identifier: 40:A5:1F:F6:28:13:29:B0:77:88:95:EF:5B:55:FE:6E:E1:FC:E3:2F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 234E5EDC7C4B162AFA68EE7D81899D29E362E31B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/89b0de0f-6d7a-449d-a144-e777ce29ce82.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:c000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:4e:5e:dc:7c:4b:16:2a:fa:68:ee:7d:81:89:9d:29:e3:62:e3:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=ac77a0cffd8a57157d81189a9d34c6ba51f72eda6eefade225bb9068868c77f8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:20:8c:a2:5b:a1:cb:52:9b:87:0f:5e:25:f2:
a6:cf:17:e4:30:5b:26:e2:7b:7c:d4:82:91:c3:27:
10:07:55:c9:e1:04:ce:b1:cd:8f:35:4a:88:6b:2f:
3e:5b:09:78:ee:e8:4d:87:56:9a:96:29:dd:ba:7b:
2d:44:56:41:17:d0:12:6f:cd:76:6a:80:da:bd:27:
dd:9d:42:7a:9b:f3:77:da:6c:20:c8:39:ba:1b:94:
4d:a0:c2:85:2d:f3:52:b4:18:94:1d:22:6d:41:df:
03:4f:b8:4e:38:17:86:f4:c0:25:f5:06:7d:0d:10:
ee:57:fa:1f:6a:40:bc:31:45:8c:b5:54:54:aa:ac:
98:b9:69:58:18:65:0e:95:e1:f8:b4:5d:b5:e3:0f:
a2:7f:68:c7:e9:9d:d5:35:f1:b7:56:7c:9b:40:20:
d9:d1:24:4f:a0:0f:55:bc:f6:9d:b1:3b:3b:55:88:
35:02:bf:5b:ea:bf:13:63:b6:ff:10:02:16:f7:d9:
b9:99:86:81:16:ca:e3:1b:e4:a5:fe:7f:3c:7e:bc:
c0:89:ef:5b:0e:9c:e8:56:71:42:1b:aa:29:47:f2:
d6:b2:72:23:72:bf:5c:77:eb:bf:87:b2:c4:67:e9:
47:6e:ca:c5:be:8d:3f:cf:eb:aa:bd:0f:d8:0e:1a:
2b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A5:1F:F6:28:13:29:B0:77:88:95:EF:5B:55:FE:6E:E1:FC:E3:2F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/89b0de0f-6d7a-449d-a144-e777ce29ce82.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:c000::/40
Signature Algorithm: sha256WithRSAEncryption
8d:42:2f:7c:0e:86:0e:e2:40:45:94:13:d0:0a:cd:c2:dc:75:
cb:56:ac:2c:55:2b:e0:e3:93:26:49:90:7d:2a:47:4f:83:46:
e1:df:00:21:2c:32:09:bf:a1:ac:4e:01:18:43:94:25:31:61:
0b:4a:09:81:57:39:31:3a:45:8c:88:2e:54:6d:6f:bd:23:bf:
1a:18:e5:05:17:3a:85:22:24:f1:78:90:6c:af:9a:96:4d:35:
b8:aa:7c:de:d0:ea:1c:94:4d:8a:fd:c3:c2:28:3e:93:9d:36:
80:a0:a0:74:6a:9b:c6:6f:5f:6e:c3:ec:5c:88:5f:45:5c:8f:
14:52:ed:b0:a9:bf:49:e5:cd:18:6b:5b:d8:d6:42:99:08:4b:
1d:f3:1e:a0:51:74:01:86:3d:2e:b0:78:8a:df:a4:76:99:55:
fe:a7:0a:1b:db:fd:7b:36:ca:2e:04:fc:f3:ff:5c:00:e5:6c:
ec:3f:16:f0:65:47:87:e7:1c:a7:13:86:57:2f:e4:7a:ed:ef:
b2:7b:37:c0:06:10:ef:3d:53:27:0f:6e:22:40:80:aa:74:d0:
b6:69:a1:e9:c9:2f:b9:df:0c:bb:85:26:1f:d5:e1:54:ef:97:
e0:94:75:89:58:77:7d:1d:c3:4d:86:d5:84:ee:b5:d3:3e:cc:
24:df:a1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:02:36 2025 by rpki-client