Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8c99b00e-290a-4618-8076-435475c3020f.roa
File: 8c99b00e-290a-4618-8076-435475c3020f.roa (raw, json)
Hash identifier: 59YVmI9rygGvKWW8Jyouxiw8C31cDetz2SsiFPNRSu8=
Subject key identifier: FC:FB:AE:A0:C6:7C:C8:00:62:87:0D:4C:93:88:3C:D0:07:7D:17:D1
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 391EA8FF31D30791D8953EC2E02D3F59FBAFE651
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8c99b00e-290a-4618-8076-435475c3020f.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:c080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:1e:a8:ff:31:d3:07:91:d8:95:3e:c2:e0:2d:3f:59:fb:af:e6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=670653c37e103b25e38c55fe68d61dbb0187745f8755fec3010f0e76e81116b8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:39:37:68:2f:90:bf:56:95:f9:3f:8a:21:e1:
06:01:3a:b8:dc:d3:10:fc:5d:5c:be:f0:cb:d5:7e:
57:dc:b8:52:d4:31:9a:99:0c:e8:d9:91:5c:76:29:
71:5c:8c:14:83:5d:71:73:18:4b:d8:df:8f:50:8b:
97:42:41:19:61:97:d6:d0:08:12:6a:b0:24:e2:03:
97:79:19:34:13:01:2b:1e:a2:0a:4e:3c:e6:05:6c:
80:14:03:df:b9:30:70:f2:e8:94:b7:89:7f:12:44:
c1:1d:c5:e8:11:30:d0:0c:6f:35:d3:2d:47:b3:8a:
3e:08:e1:43:f8:67:4e:68:62:de:df:04:56:4d:b4:
71:40:1b:75:a0:21:4a:2e:92:41:01:94:83:47:3a:
a6:ed:71:82:b8:f2:c6:cd:71:7d:09:33:89:b5:fc:
39:d6:36:cb:c4:b2:c6:50:ab:29:59:2d:35:3f:be:
59:f7:8f:15:be:35:83:f6:e9:0d:81:4e:a3:8e:b0:
d1:99:39:1f:8a:d3:d5:f0:f0:c4:76:02:c9:53:61:
d1:75:dd:a6:b8:16:2c:84:ec:c3:88:28:5f:e6:ad:
6b:d0:c9:56:37:4a:35:4b:d8:ac:9e:70:e2:82:30:
4a:bf:f4:9e:e2:10:82:14:16:fc:37:e2:2d:6f:15:
65:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FB:AE:A0:C6:7C:C8:00:62:87:0D:4C:93:88:3C:D0:07:7D:17:D1
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/8c99b00e-290a-4618-8076-435475c3020f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:c080::/48
Signature Algorithm: sha256WithRSAEncryption
05:b5:ee:5d:72:9e:1f:35:e5:91:34:56:42:32:ca:13:7f:6f:
a3:34:3c:b1:67:64:24:7d:24:1c:a1:d0:7e:e1:af:fc:b0:38:
9d:6a:36:36:eb:51:b8:14:05:cd:53:6c:3f:9f:e0:05:27:bb:
17:16:2a:69:96:dc:89:af:ff:b8:b1:b5:ba:48:95:42:c2:cb:
d9:a9:62:b0:e2:58:67:7b:32:2a:73:5c:c0:aa:aa:87:c9:11:
fa:6b:69:1b:ac:9d:ca:be:0f:6e:4a:1d:2d:d0:ed:12:ab:19:
ae:03:fc:ef:55:d7:3c:11:b0:6d:ea:d2:d9:3d:73:16:51:c5:
d2:bb:ef:7f:ae:3a:39:b1:df:98:a8:22:dc:64:46:e1:a5:eb:
31:6c:ce:5b:6a:65:fd:20:3a:fc:c8:52:33:27:22:97:61:4b:
c6:1f:02:dc:23:b3:cd:9e:1d:96:a9:3a:5d:1d:f9:af:56:8f:
15:38:0b:09:5f:fb:a3:21:46:03:6d:74:60:4b:9a:5a:f3:3e:
e7:c3:9e:fa:e1:29:e5:cb:42:88:da:13:d4:62:56:fe:3c:d8:
16:cf:1f:61:bc:19:d9:76:6e:01:be:8f:17:62:c2:ab:36:a2:
36:ff:18:62:cc:8b:3a:12:29:50:aa:85:5e:62:b3:56:c7:1f:
02:d8:c8:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:04:31 2025 by rpki-client