Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0129a519-09b3-42f6-b662-39b10215c10e.roa
File: 0129a519-09b3-42f6-b662-39b10215c10e.roa (raw, json)
Hash identifier: netSN3aV0tYiYkSpv+LTacLIwBFfW4UtIh3ev7GTGcM=
Subject key identifier: A1:7B:5F:EF:00:F7:5D:52:68:1D:E9:47:AB:CF:60:11:76:E4:EC:2F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 594CBF0EC0F9F108D315F018E4412D2F674D7F6D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0129a519-09b3-42f6-b662-39b10215c10e.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d015::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:4c:bf:0e:c0:f9:f1:08:d3:15:f0:18:e4:41:2d:2f:67:4d:7f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=fd6fdd9408d3601de4fb862eec8759eb82ad41a1088ef191bffc4f591251ff1e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:0a:e2:37:28:5e:29:9f:b9:de:ee:9f:c7:
1b:ca:94:7b:61:ee:2b:9d:dd:f5:91:62:81:9e:5e:
5b:a7:55:bb:4d:01:1a:77:7b:16:28:b6:52:79:a3:
98:06:e4:bd:b4:55:6e:a9:4f:30:51:bf:09:fe:36:
8b:d6:40:94:f8:7a:be:3a:61:1d:2a:8c:4e:75:8b:
1c:6c:55:c3:d6:8c:e5:a6:b7:27:a3:03:2b:b3:eb:
d9:ae:da:fb:85:ba:9b:14:26:76:ec:14:1c:20:aa:
7a:5e:c9:84:58:13:f0:80:a1:cc:c0:d1:64:68:0f:
0c:07:c3:92:9b:b8:fb:c7:21:36:7c:f0:02:a8:e5:
cb:50:bc:61:cc:5c:0e:1f:82:e1:79:42:f8:aa:4b:
56:11:fb:5f:54:2d:23:c7:af:cc:ea:cd:90:50:74:
2c:dc:50:49:65:ae:ab:e0:18:8e:d9:d3:ca:90:32:
da:05:24:8f:76:ce:42:a8:15:8c:8b:76:b5:39:c5:
ea:58:80:11:82:02:d9:ed:7d:8b:2e:d1:98:3a:1c:
a1:24:89:57:b1:77:ad:11:f7:0e:36:bc:1b:b5:69:
db:dd:a1:5a:d7:e9:ac:73:7c:ad:88:cd:a0:bc:d9:
92:55:20:8f:f2:0a:70:cd:cb:ce:2e:41:8c:91:5f:
9e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7B:5F:EF:00:F7:5D:52:68:1D:E9:47:AB:CF:60:11:76:E4:EC:2F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0129a519-09b3-42f6-b662-39b10215c10e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d015::/36
Signature Algorithm: sha256WithRSAEncryption
a8:83:6a:c9:b8:a8:75:87:36:f1:3e:e8:d8:73:32:81:8e:a0:
0d:c8:ec:7f:0a:d2:53:1a:6c:70:52:0f:4d:d6:d2:cc:0d:4c:
a1:90:f1:31:d2:de:e5:34:65:7b:b0:c9:57:3d:4c:02:8f:49:
c4:b7:a9:6a:f2:6e:95:9b:01:47:0c:6e:9d:18:ef:2e:0f:37:
de:4b:15:b7:f4:10:95:f5:23:8d:04:59:ae:94:ef:cb:ae:2f:
fa:7a:1a:05:b2:45:37:9c:6e:fa:89:72:d1:ac:41:69:e2:e2:
75:05:18:a4:5f:bc:ce:2b:63:92:88:a7:50:cf:19:7b:fc:8f:
18:10:75:d2:cd:7e:78:f7:02:c1:67:db:08:7f:7c:c0:85:82:
7f:73:0c:09:09:17:93:2d:e9:d7:35:00:8b:35:3d:07:22:41:
1c:29:a4:2a:98:ca:0c:fb:9f:87:fb:1d:ad:e4:94:1f:b3:d5:
c1:c7:34:5d:06:64:8d:a6:bf:ef:5c:c7:f2:f1:08:b7:5b:dc:
99:9b:8e:73:2f:c9:2f:c6:63:36:a6:6c:10:d9:d1:38:2b:98:
53:54:b7:66:21:d8:b7:a9:6a:22:89:ed:83:a3:4e:31:f8:5c:
8c:74:25:20:d1:3f:4f:06:77:09:6b:3e:84:af:05:54:a6:7f:
61:98:8c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net