Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cb8f4f37-fecd-4bc6-8edc-80be9f2fbeda.roa
File: cb8f4f37-fecd-4bc6-8edc-80be9f2fbeda.roa (raw, json)
Hash identifier: r6i6nnCubZKdFDD0+vsbiObwHimKH/rPll0r7oH9IVI=
Subject key identifier: 55:90:DB:82:FA:1E:B6:0F:44:F7:D6:A8:C4:ED:71:FC:C2:19:F4:5B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4B2EB02943DC95B68A0C0DD8D1E2BF71A259B1CA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cb8f4f37-fecd-4bc6-8edc-80be9f2fbeda.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d03a:c000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:2e:b0:29:43:dc:95:b6:8a:0c:0d:d8:d1:e2:bf:71:a2:59:b1:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=5ed1c4137cc930a8f2dc11c020b0e6011dd38c2615e7a78946b21a9567f57c64, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d2:94:be:97:e8:be:35:1f:8a:5e:e2:a1:e9:
bb:0a:78:16:16:eb:8b:37:b7:39:2d:8e:7f:08:47:
2b:6d:e0:18:2f:16:28:27:ee:d1:40:17:d9:28:3c:
3a:44:ab:96:64:55:3d:19:84:21:a6:53:a4:7f:a0:
a3:f0:bd:9f:2e:cf:46:68:f0:09:69:52:88:57:20:
79:82:c1:a8:22:4b:2e:a6:6b:60:1f:a4:55:d4:8a:
de:ba:5b:f7:3d:cd:3b:cb:90:82:4d:2b:a3:4a:46:
01:5a:92:02:9b:96:0e:6b:af:2b:0b:b2:40:77:30:
ca:e4:15:b8:92:8d:61:97:9f:20:57:1b:d6:39:0f:
81:ee:c4:00:dd:3d:96:d7:90:7e:5e:ee:54:be:d1:
80:bb:34:e4:c5:7a:d8:d5:7a:46:a6:a4:0d:d5:87:
9b:ff:04:ba:19:2b:28:68:c5:1e:45:6e:b9:da:a9:
3e:cf:b7:7e:c1:48:f1:0a:4d:60:56:83:6f:0e:52:
6a:9b:1b:91:fe:88:9e:f7:68:57:5d:5b:8a:80:af:
00:b7:2e:9c:59:3f:1d:b2:3c:0a:00:e9:a9:93:ae:
29:c9:a0:ac:54:6e:05:3f:40:87:5d:7b:2f:6a:d9:
c0:aa:a6:19:66:37:74:4c:82:0e:04:9a:d3:29:4d:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:90:DB:82:FA:1E:B6:0F:44:F7:D6:A8:C4:ED:71:FC:C2:19:F4:5B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/cb8f4f37-fecd-4bc6-8edc-80be9f2fbeda.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d03a:c000::/40
Signature Algorithm: sha256WithRSAEncryption
74:ab:db:cf:d7:3e:cd:c6:5a:74:26:c5:a2:b8:84:2c:30:39:
d7:c2:96:56:e5:85:fb:25:ff:7d:02:bf:00:c4:f0:81:62:08:
43:21:d6:2c:55:8c:49:2d:7a:cd:41:37:a5:02:1e:43:f1:69:
f1:2b:32:38:1b:50:ce:7f:fd:3e:b4:d8:c6:93:68:a1:4a:c8:
05:07:d7:36:cf:12:e7:97:86:3c:e5:d8:a5:86:fd:ba:77:92:
a4:80:69:5e:2c:93:7c:66:7d:7f:1a:c3:78:bb:7e:bd:24:aa:
00:3b:51:34:5a:bc:ee:44:e4:46:0e:2d:e9:d2:9b:aa:d9:b7:
e7:d1:04:8e:0c:3f:6a:b1:ed:20:3d:f8:ff:5e:e9:2e:e3:17:
34:60:a1:c5:3c:a6:37:c1:b6:fb:8c:57:61:7f:21:e7:06:62:
79:39:00:36:1a:51:df:af:60:cf:0a:fd:7c:b9:04:ab:4f:1c:
d9:39:63:9f:a3:b4:30:70:52:9d:66:b6:9e:0e:1c:66:77:09:
d8:24:a3:b0:40:37:56:1e:85:2c:85:a4:2f:dd:ee:c0:2d:48:
e1:f2:d8:d2:e5:aa:39:cb:7a:3b:3a:5c:9a:89:21:13:14:5e:
03:6e:72:e1:5f:2a:95:f0:ca:e2:7f:b0:06:d5:46:a5:62:88:
57:2e:31:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 14:33:22 2025 by rpki-client