Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9430d5db-5a09-4461-b80a-b9d755d346a9.roa
File: 9430d5db-5a09-4461-b80a-b9d755d346a9.roa (raw, json)
Hash identifier: xjcMnSedv7/GulZoFTI9MB1WBhVi7yKTfRmmnu7JgrE=
Subject key identifier: CF:46:12:4F:71:F9:AD:C8:2C:48:02:83:86:5D:B7:E8:46:B5:73:31
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 28B1463DC6D7FC5C3313A23CA2A4E18027A950A2
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9430d5db-5a09-4461-b80a-b9d755d346a9.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d01a::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:b1:46:3d:c6:d7:fc:5c:33:13:a2:3c:a2:a4:e1:80:27:a9:50:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=0ca28293173fc6d5ad21b3ccee39632f85a5d5d030c344d28b69cabf6888c5f8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9c:e5:55:e6:54:31:32:77:75:9e:30:18:54:
4b:68:e3:74:e0:19:9a:85:8c:43:0f:43:93:eb:64:
3b:99:94:74:c5:46:52:0a:db:4d:56:98:8a:35:29:
e8:01:a2:aa:47:5b:65:c3:95:dc:a9:2f:81:09:c2:
09:b4:10:2d:d7:2c:94:91:61:4e:da:39:2b:17:5c:
a3:1e:e6:7f:2c:ed:26:51:0d:88:f4:ba:6d:fe:44:
46:16:13:40:88:ba:64:12:9e:77:86:b6:83:8b:52:
70:30:ca:04:49:c6:23:dc:42:ec:70:b0:0d:96:38:
43:db:17:95:27:28:15:85:99:9d:1e:76:b8:6f:01:
21:bd:be:4d:f2:00:79:05:e8:52:4b:1a:a6:8c:fc:
03:82:72:ef:50:ae:53:4b:e1:65:5b:66:93:cb:7c:
31:23:22:dd:f8:a8:05:a7:d1:1b:7a:65:63:11:be:
f4:bb:84:94:79:4d:23:58:e1:08:83:a7:dc:41:4d:
59:e4:84:a9:40:d1:d1:91:20:1b:4c:09:49:26:c8:
9d:5f:9f:32:0c:b8:64:73:2d:00:44:14:3a:c7:39:
d5:25:fd:35:cd:54:3e:37:b1:8a:d1:e5:b6:60:66:
19:9f:ba:f4:c3:db:e0:55:0c:3c:60:7e:71:81:a2:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:46:12:4F:71:F9:AD:C8:2C:48:02:83:86:5D:B7:E8:46:B5:73:31
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9430d5db-5a09-4461-b80a-b9d755d346a9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d01a::/38
Signature Algorithm: sha256WithRSAEncryption
62:ee:10:ae:ed:67:25:df:13:8f:5f:61:a0:19:d9:9e:6a:f1:
92:e4:39:59:d6:7f:fd:89:89:76:9b:c1:7a:fd:a5:09:fe:dd:
a6:11:81:ea:97:65:5d:d3:1c:12:28:44:a2:1c:c5:11:43:76:
47:5a:80:98:fe:b7:da:47:36:10:29:f1:c1:63:b7:d2:05:a5:
7c:3b:1d:1d:39:de:33:0f:fb:8f:58:55:27:6e:ba:63:ad:1d:
63:13:6f:c0:38:e4:04:17:4b:63:4e:43:74:35:e9:cb:4f:97:
93:f0:32:07:01:fd:ba:e2:34:d7:0f:38:05:7d:e5:52:50:a7:
36:72:08:a4:2b:5f:21:f2:c2:69:03:f5:8d:60:f2:3a:5e:b0:
b2:3d:3f:a8:c1:78:f9:9b:1f:76:99:5e:62:15:57:ac:7b:fd:
96:05:6a:eb:ed:46:e4:e6:e6:79:fc:bd:6b:21:cf:28:86:d0:
3e:1b:71:46:a5:35:9f:af:3e:e4:fb:da:3c:33:c5:71:c1:93:
00:15:c1:49:6e:fd:3e:a2:48:a4:4a:0c:f8:6b:77:10:94:c5:
fd:9e:92:71:08:a8:79:09:e6:6e:c3:19:dd:88:52:61:3d:6a:
91:25:14:84:d7:ee:3f:a1:03:37:10:11:f4:5b:5d:ea:90:01:
17:18:30:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:09:33 2025 by rpki-client