Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6ce96a4-eb6b-4bed-b15b-b1e3cdcac418.roa
File: c6ce96a4-eb6b-4bed-b15b-b1e3cdcac418.roa (raw, json)
Hash identifier: gBMrLoE6eSXaIrFgNmJ/XSwm9/9N0nCq4kp5nZUXk30=
Subject key identifier: 23:02:17:2E:CC:0E:DB:1A:71:10:BA:C0:03:22:4D:DF:43:E9:D8:2D
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 41B60AC2BCB9C2C28503D5454BDB88569D93B045
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6ce96a4-eb6b-4bed-b15b-b1e3cdcac418.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d018::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:b6:0a:c2:bc:b9:c2:c2:85:03:d5:45:4b:db:88:56:9d:93:b0:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=a74263a7c9245995e5302d99adee8909984d96f66058d7f60fbabba221acbc6f, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:29:af:e1:b0:5a:e2:34:3d:29:a5:4d:c5:
8e:4d:b4:15:ad:44:68:b9:49:44:10:f6:cf:09:1e:
30:3c:6b:f8:29:6b:c9:66:84:64:7c:44:91:e2:77:
94:f8:ff:3c:da:ac:4b:64:d3:db:bc:94:00:c5:30:
fc:10:f8:00:6a:96:e1:0b:e1:3b:70:15:0a:2e:f5:
cf:bb:95:d2:18:c3:40:d5:66:17:a3:cd:92:87:50:
df:4f:ef:2c:ab:19:e8:22:92:59:e8:d2:74:2e:9e:
63:19:13:b6:01:83:68:97:e9:ca:9e:4e:b7:f9:40:
8f:8d:25:f1:0e:3e:03:8f:84:7e:df:78:fe:b2:84:
7c:18:10:52:cb:32:61:76:64:58:11:51:16:4e:7f:
97:d7:16:a0:48:ca:aa:03:b1:d6:78:77:46:a5:85:
f2:9e:35:54:3b:0b:3e:09:50:bf:3d:be:27:3b:a4:
8a:50:b9:ea:6e:2e:ff:19:cc:61:18:d6:5e:a1:13:
f6:3d:0b:41:c0:85:3d:a1:3d:10:de:e9:1b:45:94:
69:07:fe:5f:24:b1:08:b8:87:ca:35:d3:46:76:f7:
4d:d9:03:75:6d:97:b6:72:f4:01:88:34:c6:80:6a:
7e:56:9d:e4:5f:05:e7:f2:7e:3f:93:eb:8d:06:22:
1d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:02:17:2E:CC:0E:DB:1A:71:10:BA:C0:03:22:4D:DF:43:E9:D8:2D
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c6ce96a4-eb6b-4bed-b15b-b1e3cdcac418.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d018::/38
Signature Algorithm: sha256WithRSAEncryption
33:1d:2c:38:8a:f2:cc:83:47:63:a4:33:c0:8a:0e:76:da:ad:
3b:bd:55:86:b4:77:4c:0b:91:24:43:d5:df:c8:b0:16:60:cc:
c3:d9:db:6a:37:fb:2c:bb:4b:0f:3f:c1:43:c6:19:62:35:ba:
a6:a4:45:05:92:aa:e3:1d:7f:e9:81:97:df:70:df:c5:89:b4:
9a:8c:43:45:d7:fe:54:3c:15:73:c3:b5:3d:a5:36:dc:58:2c:
41:17:6d:1c:30:41:7b:6e:eb:bd:3f:05:cd:41:75:3c:fe:c9:
c7:97:7d:91:7c:01:2f:d2:d8:72:bd:b3:73:af:65:dc:c6:5b:
38:73:d4:61:59:e5:04:ec:13:0f:61:5d:46:2b:3a:0d:55:89:
f2:61:2c:3a:9c:5c:ca:b1:ed:c2:51:bf:b2:e5:47:2c:d4:43:
ca:7f:6f:e3:fe:21:10:aa:11:0a:2b:d0:eb:a8:b5:79:43:2f:
05:8f:6f:74:37:be:10:32:16:21:51:f6:72:b3:8a:24:53:66:
3b:27:77:a5:58:99:8b:ae:64:d2:da:8b:c6:47:df:a8:3b:90:
5c:7e:57:15:33:c7:d7:4c:9b:64:5a:3a:69:d5:e6:2d:cd:49:
b4:d3:ae:3a:54:05:01:a9:80:0f:04:ae:d5:33:b8:b5:9f:e0:
bb:29:3f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 22:39:58 2025 by rpki-client