Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa
File: fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa (raw, json)
Hash identifier: 8ydnofNxl0Rw3vOiHgH571hIwwqYRwvv4HwY8Q3fp4w=
Subject key identifier: A5:41:59:76:D0:D0:35:C1:E6:95:9F:B0:F6:0F:45:41:24:D9:03:E6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 56E1B2C4BED1F4B537B25CBBCC5BD08ACABC7C78
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:4060::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:e1:b2:c4:be:d1:f4:b5:37:b2:5c:bb:cc:5b:d0:8a:ca:bc:7c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=b6e6dfb8c81ef45acec48396408c4a2716ac05c72db6682c1d66917105e286ac, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:cf:c9:e5:0b:15:cb:87:a8:05:1c:54:83:9e:
41:48:37:d4:f0:3f:2e:bd:1b:70:c8:c2:05:5e:c6:
03:c6:94:f5:a2:3d:7d:5f:fb:70:0b:ff:56:c9:66:
5f:78:ea:23:ba:0a:08:22:84:3b:46:44:35:66:0f:
ff:30:bf:a3:8e:44:17:a4:9e:f9:1f:bf:d7:9a:28:
3d:ac:45:f2:4a:84:23:eb:28:00:23:22:a9:68:7e:
b6:ca:24:cf:dc:06:4b:86:48:45:bc:da:ec:bf:60:
3e:52:73:b6:c9:9e:f7:24:75:e5:26:d6:69:d3:f4:
57:92:7d:f6:71:33:0e:35:49:32:1d:df:9a:fd:b2:
9d:5d:99:53:24:bd:d9:84:08:20:c4:24:8e:5b:03:
5f:de:9e:53:3a:2a:24:aa:0a:7a:f6:23:7f:c8:a6:
d2:20:c1:b3:29:6d:de:f1:6f:bd:77:77:39:48:9d:
91:39:de:4c:64:cb:e0:bc:26:c2:4d:de:9c:ad:e1:
03:ce:16:a5:78:2a:42:ea:d2:c5:26:e2:78:dc:fe:
6a:35:ed:f1:db:82:52:24:5e:15:a1:23:cf:c4:40:
30:df:7b:8a:72:7d:63:57:58:a9:9c:5e:a2:c5:e9:
95:7a:cb:d8:20:6d:89:eb:c2:3d:c6:16:fc:c4:25:
29:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:41:59:76:D0:D0:35:C1:E6:95:9F:B0:F6:0F:45:41:24:D9:03:E6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/fb455f5d-6ce6-4373-b5bc-1c1e034a148a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:4060::/48
Signature Algorithm: sha256WithRSAEncryption
a7:7b:fd:88:dc:4a:0c:ce:95:86:57:cf:7a:2b:56:aa:a1:75:
7a:61:d8:8d:b9:92:4a:cb:b3:eb:14:6d:fb:11:fd:b6:62:3f:
a8:e3:f9:bd:84:53:36:bc:ff:87:e2:38:5f:bf:3a:23:fb:f4:
95:28:49:43:d8:02:82:02:cc:60:47:1a:e8:3b:33:3d:04:c4:
e0:ef:fa:32:d4:81:df:76:15:3a:01:72:18:f2:05:5a:00:4a:
3e:20:1a:3d:3c:98:a4:9e:fb:5e:30:00:18:51:09:c5:f9:a7:
ee:6b:94:97:23:ba:b5:54:b7:7d:1a:66:26:50:07:d9:c3:cf:
3a:f5:8a:be:fa:d8:92:e6:1c:d4:f7:72:98:39:44:f9:3e:46:
fb:43:88:e9:24:ee:6e:56:06:2c:96:6a:c5:0a:22:69:0e:5b:
f5:76:ee:99:31:33:a5:2e:a0:58:c5:fd:f8:09:dd:b8:ab:1e:
e8:a7:37:d7:f7:99:68:f1:ba:64:de:20:b5:87:29:5e:dc:ef:
6c:dc:63:1a:01:7a:dc:70:97:d5:c7:1f:87:59:b1:c9:6f:9a:
a9:86:99:7e:af:6d:a1:5f:e9:43:bf:15:ba:d8:c0:2f:1d:c0:
b8:41:f1:7e:9a:39:7e:9d:bd:e1:20:c3:a0:20:a2:0e:f1:4f:
99:81:d3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:02:04 2025 by rpki-client