Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ea62d6-dce3-4c74-b931-0cca87ccadea.roa
File: b9ea62d6-dce3-4c74-b931-0cca87ccadea.roa (raw, json)
Hash identifier: VsSfz6pl1Wt1bq/sgR1nzWJ2P8RVxBOLW3kPLPmYQv0=
Subject key identifier: F4:22:08:58:E9:12:DC:99:50:1C:62:D2:4B:BD:58:BA:E2:FF:FC:37
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3EAF98939C5A2B9F1C3AA8B6273A6AD20FF37D4C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ea62d6-dce3-4c74-b931-0cca87ccadea.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:c080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:af:98:93:9c:5a:2b:9f:1c:3a:a8:b6:27:3a:6a:d2:0f:f3:7d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=d87aa445d18d67689f619557dc8432754a41d774b26e82b30a49214d5397e911, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a9:d7:c8:00:71:fb:80:20:df:97:d7:a8:a0:
80:d4:3e:5e:78:10:43:9e:3f:ed:78:c1:92:f2:60:
18:00:8b:6e:c8:84:e2:7c:1b:26:1f:54:99:0b:2f:
c9:c8:af:10:78:8b:9d:fb:49:b1:1d:b2:59:75:16:
d3:44:22:b3:96:31:88:6f:ae:21:63:75:80:7e:34:
d8:32:2d:02:1c:fc:5d:cd:b8:e8:08:fe:11:e2:d5:
02:4d:32:81:ec:14:6f:a2:70:53:83:4a:b7:87:b9:
e4:de:56:a0:00:a7:05:60:fa:f7:de:f1:ff:ae:5c:
3b:7f:75:b3:bc:9c:05:4b:59:bb:12:02:94:a6:a4:
c7:51:96:48:6a:5a:c4:f9:25:8c:25:3b:3e:3b:45:
97:27:88:38:fc:a2:ee:be:bb:f6:8b:ae:e8:2b:44:
e7:83:3d:df:a5:56:23:c0:4e:a3:79:a7:3c:de:ae:
7a:14:5b:cc:9b:06:0e:bb:98:ce:3b:7c:ec:ca:49:
ad:d6:8b:12:09:be:0b:ec:21:e6:b8:bc:16:8c:5a:
f4:7a:52:50:e4:c9:c4:a0:43:6f:c6:1a:54:8b:93:
08:3e:b1:bd:c2:08:d5:3c:46:42:e5:58:29:96:cb:
d2:d2:55:e7:e9:7f:1e:6b:95:f8:1a:c0:bb:9b:d6:
d6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:22:08:58:E9:12:DC:99:50:1C:62:D2:4B:BD:58:BA:E2:FF:FC:37
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b9ea62d6-dce3-4c74-b931-0cca87ccadea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:c080::/48
Signature Algorithm: sha256WithRSAEncryption
4d:f3:7b:64:98:5c:86:d1:b8:c6:3d:1f:74:b4:98:6b:e1:38:
75:58:ca:02:c9:9d:15:86:98:8c:21:3b:db:d1:7b:07:a6:ec:
e3:ec:20:2d:03:95:56:29:6c:5d:e8:47:c8:59:98:a4:98:53:
46:d1:2a:26:cf:3e:b3:46:e1:7e:c1:83:3a:3d:06:1f:8f:42:
7e:1f:11:45:75:3b:04:9e:0b:37:af:cf:71:85:dc:7d:f5:cc:
c8:a5:d6:00:96:f2:27:57:52:c9:7f:72:af:2e:36:ca:c5:c8:
c1:20:f1:21:e6:0b:30:83:4a:7b:45:82:1e:dd:8c:c2:e5:fe:
36:c3:35:09:be:12:6f:71:6a:9b:f6:aa:f5:8d:82:d5:61:36:
70:2e:2c:c1:d9:ce:95:71:ca:5e:77:4c:d0:97:81:0d:dd:78:
d8:3c:59:0c:b6:f9:03:ca:b3:2e:7e:ce:ba:ad:67:a3:49:41:
bc:01:11:60:40:3e:c3:4c:18:4a:99:57:b6:4c:1f:57:50:53:
25:b1:86:17:9e:c5:c4:43:74:ad:93:bf:3b:c5:cf:54:29:92:
cc:30:b0:17:3b:40:95:60:81:72:7c:ca:84:de:87:b8:5d:38:
44:73:d8:75:22:1e:4b:c3:64:91:98:63:75:41:e2:e7:af:ae:
07:09:9d:e2
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUPq+Yk5xaK58cOqi2Jzpq0g/zfUwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAxMDgwMDAwMDBaFw0yNTAyMTIyMzU5NTlaMHoxSTBHBgNV
BAUTQGQ4N2FhNDQ1ZDE4ZDY3Njg5ZjYxOTU1N2RjODQzMjc1NGE0MWQ3NzRiMjZl
ODJiMzBhNDkyMTRkNTM5N2U5MTExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJGp18gAcfuAIN+X16iggNQ+XngQQ54/7XjBkvJgGACLbsiE4nwbJh9UmQsv
ycivEHiLnftJsR2yWXUW00Qis5YxiG+uIWN1gH402DItAhz8Xc246Aj+EeLVAk0y
gewUb6JwU4NKt4e55N5WoACnBWD6997x/65cO391s7ycBUtZuxIClKakx1GWSGpa
xPkljCU7PjtFlyeIOPyi7r679ouu6CtE54M936VWI8BOo3mnPN6uehRbzJsGDruY
zjt87MpJrdaLEgm+C+wh5ri8Foxa9HpSUOTJxKBDb8YaVIuTCD6xvcII1TxGQuVY
KZbL0tJV5+l/HmuV+BrAu5vW1n0CAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT0IghY
6RLcmVAcYtJLvVi64v/8NzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YjllYTYyZDYtZGNlMy00Yzc0LWI5MzEtMGNjYTg3Y2NhZGVhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DHA
gDANBgkqhkiG9w0BAQsFAAOCAQEATfN7ZJhchtG4xj0fdLSYa+E4dVjKAsmdFYaY
jCE729F7B6bs4+wgLQOVVilsXehHyFmYpJhTRtEqJs8+s0bhfsGDOj0GH49Cfh8R
RXU7BJ4LN6/PcYXcffXMyKXWAJbyJ1dSyX9yry42ysXIwSDxIeYLMINKe0WCHt2M
wuX+NsM1Cb4Sb3Fqm/aq9Y2C1WE2cC4swdnOlXHKXndM0JeBDd142DxZDLb5A8qz
Ln7Ouq1no0lBvAERYEA+w0wYSplXtkwfV1BTJbGGF57FxEN0rZO/O8XPVCmSzDCw
FztAlWCBcnzKhN6HuF04RHPYdSIeS8NkkZhjdUHi56+uBwmd4g==
-----END CERTIFICATE-----
Generated at Fri Apr 25 18:17:35 2025 by rpki-client