Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aeb942d1-e5f2-47dd-bd26-7b99f70267ad.roa
File: aeb942d1-e5f2-47dd-bd26-7b99f70267ad.roa (raw, json)
Hash identifier: YZ3y01Cj0TYAVzgTXw7F+iH57GKZVeWL1rsqzjgsv68=
Subject key identifier: D1:E7:E8:16:97:0F:DA:CA:B9:99:A4:AA:49:AE:D9:7E:55:4F:0A:D9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 15ABE1FCBAA3336EFC11D812E3CB30E9F12BD63C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aeb942d1-e5f2-47dd-bd26-7b99f70267ad.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:1080::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:ab:e1:fc:ba:a3:33:6e:fc:11:d8:12:e3:cb:30:e9:f1:2b:d6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=b2398d6baa2c73d9ee48e1989d444061d969ceb56740e22f5cccf9f40aacb06b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b9:58:9f:ca:ad:e7:90:19:af:4a:ac:9f:9e:
a0:9e:4d:31:f3:ff:7e:ae:2b:c5:00:57:dd:7e:0c:
db:09:66:fe:79:5c:42:c4:63:56:b3:85:bc:61:3e:
5f:1d:00:ac:80:63:d2:fa:30:2f:0c:56:a0:29:0e:
dd:18:87:2c:71:c1:33:37:6c:3b:5f:fe:c4:34:44:
2f:41:0c:6a:ca:19:9c:2d:17:f2:5b:b1:f2:ee:6e:
d9:3c:52:ef:b0:67:6a:3c:26:52:77:08:b2:d9:28:
06:c1:0b:58:a8:48:39:b8:83:f7:ed:00:1f:7d:94:
8f:a7:7e:33:e0:37:76:e7:83:33:f1:6b:39:42:9f:
55:db:b5:c6:92:db:f4:6c:0e:43:68:50:f8:04:af:
c1:94:cd:27:ad:a5:3b:e7:90:c5:58:60:c7:8c:f5:
1f:b3:e7:29:ca:13:90:61:a8:3e:56:59:9e:51:68:
94:95:96:9e:af:3b:5d:ce:91:c5:89:b5:81:5a:e5:
b6:07:d9:d8:dc:90:56:ce:0a:c3:1d:f4:b0:64:e6:
12:ae:ba:6d:ca:b3:e3:34:0c:44:63:60:07:05:b3:
0e:63:43:e6:1b:f9:8b:68:00:32:91:53:0c:53:21:
ec:3c:5b:7c:7b:2f:a8:ce:fc:5b:1a:4c:8b:eb:28:
9a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E7:E8:16:97:0F:DA:CA:B9:99:A4:AA:49:AE:D9:7E:55:4F:0A:D9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/aeb942d1-e5f2-47dd-bd26-7b99f70267ad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:1080::/46
Signature Algorithm: sha256WithRSAEncryption
51:eb:68:fc:e1:63:cf:7c:74:5c:d7:b0:34:e8:ef:4c:0c:f4:
d3:04:3d:b1:48:8d:3a:02:4f:8c:32:cb:4f:f0:8d:83:d0:bd:
bb:52:6d:ab:95:3e:55:94:2c:d6:ec:de:c7:13:27:7f:58:18:
70:3a:4d:da:1e:86:13:3a:1b:82:40:d8:ff:73:14:fd:33:5e:
49:3a:1d:71:0f:a0:26:21:85:dd:74:df:c9:d4:97:87:9d:db:
8c:d6:c7:c0:92:d7:99:98:a8:ab:93:c9:24:a4:c9:6e:27:bd:
2f:dd:75:d9:38:67:33:37:1c:e5:f0:41:05:7d:9e:2e:48:d4:
21:19:28:0c:ca:79:eb:07:33:c1:c3:97:4e:9b:28:04:bb:67:
69:5c:25:ce:63:6f:a2:70:ff:37:cc:de:a4:52:2d:1f:8c:f1:
4d:cc:6f:c9:45:01:b2:a7:ee:50:fb:91:7f:aa:5c:a1:4b:40:
af:dc:cd:79:e3:0f:55:8d:44:18:ff:97:18:b4:6e:2b:9f:42:
f6:2f:2b:9b:1d:ea:54:22:81:94:f1:9f:cd:11:00:29:2d:e2:
d0:47:82:f7:97:60:9f:1e:40:05:1e:e1:84:08:6b:22:01:74:
65:3f:33:1a:3c:a6:a4:60:61:e6:eb:22:55:75:8d:d7:ee:b1:
2f:9d:f2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 15:09:34 2025 by rpki-client