Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
File: 91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa (raw, json)
Hash identifier: 1dHD9ov7FGEJ4atpN1jKK5SBWri7sXtG2lvk24PdGlY=
Subject key identifier: 6B:7A:01:B7:35:4D:F9:DA:9A:D0:BE:23:78:AF:D3:E1:78:62:4C:A6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0BBA48F4B283368AF01CCAB10A2C78FB46D3345C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d038:8080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ba:48:f4:b2:83:36:8a:f0:1c:ca:b1:0a:2c:78:fb:46:d3:34:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=0cb3ec05db6509d5d72fd86df1555a2ecbb2a817ce5b5677575e782735cd2be8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:9c:81:a0:8c:69:a3:3c:95:a8:84:64:1e:9d:
74:15:33:76:54:7e:2e:20:c5:6c:51:9d:2c:db:e8:
b2:03:30:8b:1d:07:c4:a6:c0:93:76:35:79:43:b8:
18:74:da:21:32:62:4c:29:d1:2f:51:27:1d:71:9a:
78:ac:42:b2:52:5f:26:69:85:18:81:fe:13:77:81:
64:2a:f1:1d:d7:d2:6c:c0:f7:56:8f:00:43:df:35:
e5:22:2b:82:6d:ee:a5:96:d5:ba:a4:c1:e6:4f:22:
da:53:67:0e:d1:9c:27:5e:0d:22:5b:ff:05:80:71:
86:25:09:cd:da:b2:59:80:0e:e3:1b:6a:2a:8f:34:
f8:28:36:b0:cb:52:63:8c:32:6d:75:98:65:d3:4d:
13:9b:2a:98:69:20:e6:44:8e:8c:76:6b:ae:5a:83:
a5:9b:68:f6:1d:a4:28:9b:90:db:29:9e:ab:08:a1:
a2:49:c7:81:98:c1:3f:b6:e0:d2:74:85:b3:ed:b3:
cb:f3:61:60:a8:b8:6b:7b:c5:31:b4:c1:6b:f6:09:
77:6a:78:bf:f7:a1:98:98:78:b0:70:ec:ba:cb:50:
72:af:dc:ae:d1:ca:2c:47:ba:f5:d6:e8:25:c8:fd:
a3:72:85:70:5b:ce:dc:a1:9f:70:51:ab:95:2d:e8:
64:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:7A:01:B7:35:4D:F9:DA:9A:D0:BE:23:78:AF:D3:E1:78:62:4C:A6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/91ee3655-dcb4-41c6-b4a4-270ca5cacf7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d038:8080::/48
Signature Algorithm: sha256WithRSAEncryption
10:34:54:17:83:ac:36:7e:71:1c:ab:7c:fc:4b:7e:c7:a7:73:
63:07:88:07:cf:d1:44:a1:12:83:e4:d0:21:78:ae:17:22:a9:
fa:24:6d:e9:e7:33:33:77:3d:8a:b2:63:92:e7:66:93:0f:dc:
31:96:1b:be:7d:3d:a5:f1:98:5d:81:13:61:00:40:ad:d0:b9:
73:ab:2f:21:a8:75:58:b4:68:3d:8d:2e:b4:12:65:42:db:f7:
7d:ed:10:e1:60:e2:b6:31:c7:cc:d1:46:40:60:09:d2:43:00:
a9:15:10:76:c1:54:00:2e:a2:56:85:e2:81:8d:58:0c:cb:c6:
c4:2b:c2:57:25:fe:20:86:8d:72:1e:7d:55:2e:19:5d:3c:cc:
82:05:3d:f5:7d:05:59:f7:3c:51:ef:fa:74:fe:2c:91:f5:e8:
9a:7e:ba:a1:d8:37:01:84:bf:ab:ca:0c:f2:95:fb:27:c7:f2:
3a:d4:5a:e2:e2:ab:2d:1d:17:f7:7a:ce:08:8e:05:b3:8a:22:
0e:5a:8f:a9:97:3d:da:a5:7b:68:fe:b9:e6:db:e7:2d:bf:fa:
0d:b9:51:a4:69:04:3c:54:2a:c4:38:54:bc:9d:15:8e:3b:66:
b8:8a:ff:c3:7c:0d:f6:50:5d:e5:2a:8a:0d:ef:4a:db:2e:f2:
4f:b0:54:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:23:46 2025 by rpki-client