Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa
File: ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa (raw, json)
Hash identifier: pSm9UuONACdINFHJPkTvv5xGAwus/G9Ttb4+k4pyDlg=
Subject key identifier: 0A:0C:0E:4A:2E:1D:DE:56:84:0B:FA:83:04:FD:84:E0:E0:FC:E1:06
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1E4593AAC67B3AB90AEE280D308D1F50A3E7764B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:10c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:45:93:aa:c6:7b:3a:b9:0a:ee:28:0d:30:8d:1f:50:a3:e7:76:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=c222d6232db0b661eb50d78da6feb6dcb869777b00bf65dfdb21483eec180ec5, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a6:80:26:81:e7:81:63:8f:40:f9:29:ab:71:
4b:b3:4b:65:62:36:79:60:53:75:e3:c3:4d:55:56:
f5:ee:64:06:8f:e2:83:d9:2c:f9:67:31:2f:61:20:
0b:a4:ad:89:be:2d:f4:a1:87:97:fc:03:e1:be:d2:
aa:fb:9a:cf:6f:2c:70:82:5a:d8:ff:65:10:50:57:
b7:e3:b9:d9:0e:ce:5d:9b:b2:83:d5:74:91:04:d1:
2c:60:d7:24:15:1b:78:df:cd:16:2e:24:5a:5d:8f:
39:ca:db:35:44:78:de:0e:fc:3e:58:96:1a:4d:b4:
9a:4b:62:14:3d:60:7e:bc:29:1d:34:3a:95:c2:0b:
6e:ba:c1:39:90:55:3a:f9:e0:a2:b2:56:e9:60:5b:
a1:21:24:e7:5e:4a:4b:16:4e:e4:8d:a7:26:76:d8:
cb:57:eb:08:27:f7:81:49:01:7c:3d:d7:13:90:e3:
15:29:98:c7:09:92:5c:fc:f9:b4:5a:57:cf:e6:6d:
6c:3d:b6:22:eb:d9:66:e6:f2:67:6d:87:c5:35:86:
9e:4b:7a:62:43:4c:8f:42:ae:f0:08:f9:87:1b:0f:
d8:4c:df:43:63:6b:8f:49:b9:26:ca:c6:e6:6d:a2:
4a:f8:78:20:58:ea:4d:75:0b:0a:f5:d1:83:cf:ea:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0C:0E:4A:2E:1D:DE:56:84:0B:FA:83:04:FD:84:E0:E0:FC:E1:06
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1fdc4a-fa1a-4813-8272-9601a3d755e4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:10c0::/48
Signature Algorithm: sha256WithRSAEncryption
ba:7a:9c:1c:c8:9f:0f:9a:9d:ef:b4:39:7a:d0:0c:1a:49:ec:
6c:3c:7d:0b:7c:72:94:06:fe:11:83:99:e4:0b:ba:cb:60:0d:
dd:a6:ad:40:df:dd:40:12:3d:80:d7:82:93:a9:fd:b4:2e:0a:
79:e2:d0:2e:98:80:2a:eb:05:b7:e2:e4:62:1b:94:d6:5a:01:
37:6f:ad:82:0f:3f:5e:33:84:ad:2e:32:b4:18:24:51:03:55:
7a:19:f3:5d:e5:70:5d:b0:34:0b:7b:d8:10:47:e2:79:9e:ad:
83:a8:e4:b0:0a:3c:6c:cf:1a:1a:28:67:5f:cc:78:76:89:36:
79:1d:ae:56:28:50:58:51:2c:ae:03:5b:9f:41:5a:9a:53:01:
09:bb:1d:51:3e:62:b8:92:88:17:36:2f:f3:64:5f:c5:a3:fe:
da:d8:fd:0f:ba:d8:11:39:cd:fb:cf:a0:00:66:27:8b:35:6d:
f4:79:8c:22:52:2a:2b:8e:01:f0:c1:e4:40:04:be:fc:75:18:
d7:11:7e:24:13:54:c5:61:72:5b:28:f0:87:2c:43:3f:1c:d8:
b0:38:a6:35:39:09:7b:98:20:80:cf:de:3e:42:bd:a3:a4:59:
06:c4:6e:53:3d:71:fb:9f:c2:14:c6:33:25:e8:55:5a:35:f1:
3f:99:93:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:02:36 2025 by rpki-client