Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
File: 05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa (raw, json)
Hash identifier: ketbKwtOFWeNnED6boSkIfT9AM4+hJtSxvKBYPs3FkM=
Subject key identifier: 4D:BC:6D:F9:7E:54:01:BA:C6:E7:B6:FE:5E:83:62:04:22:E0:35:67
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 50891F5B3DAC66B66B0FC54B0B6D1833D0A57428
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
Signing time: Mon 31 Mar 2025 19:51:00 +0000
ROA not before: Mon 31 Mar 2025 19:51:00 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:8050::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:89:1f:5b:3d:ac:66:b6:6b:0f:c5:4b:0b:6d:18:33:d0:a5:74:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:51:00 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=52456cc4dde0adfd9eb30ac842a1fc8aade4e59856941a68bb2a52ba99785e21, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2c:b8:78:42:6c:9e:1d:49:d7:b2:64:50:01:
1b:55:4f:63:d0:e5:6d:38:f6:d2:0a:2a:f0:59:32:
9a:ce:ec:db:6b:09:84:8a:f1:7c:d0:a8:9b:4d:d7:
76:94:ca:b4:1c:14:82:d7:d3:6f:7b:7f:7b:40:54:
a8:c2:13:90:06:c3:24:5e:a9:65:eb:e3:22:d0:97:
2d:5c:f0:37:8d:fd:5a:6f:7f:d5:3e:c7:df:fc:e0:
bb:eb:40:59:44:24:76:1d:b6:05:46:6c:96:3c:bb:
59:eb:b6:d0:9b:67:4b:f2:ad:de:64:fe:14:cc:49:
cf:56:02:5a:07:ae:15:b5:80:12:21:5d:bd:e1:1a:
60:44:43:01:48:87:29:db:b3:d6:f0:d9:3e:d0:59:
3a:37:d8:d2:ef:29:4e:9c:37:d5:bb:ec:49:87:c2:
63:c9:16:75:c8:81:e7:ac:ca:b0:c5:e4:91:2b:84:
8c:09:97:50:14:f0:5d:b7:16:4b:6d:3e:44:ac:cf:
d3:a8:11:08:7f:22:d5:46:88:f0:61:4d:85:d3:5e:
d0:e3:3b:88:cc:cc:a5:f6:9f:bf:d7:a6:f1:00:00:
c9:48:12:f0:c5:ce:f9:07:bd:4b:42:a3:d5:32:0d:
de:9c:d5:da:ab:cc:55:0f:d9:da:dc:71:f3:7d:c1:
a5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BC:6D:F9:7E:54:01:BA:C6:E7:B6:FE:5E:83:62:04:22:E0:35:67
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/05f7ab3f-cb73-49a6-aada-440bf4dbf3b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:8050::/48
Signature Algorithm: sha256WithRSAEncryption
0b:01:62:c9:34:2c:58:1a:66:0a:4f:fe:3e:16:77:8a:82:80:
1d:af:f2:09:f8:40:39:33:0b:7a:e5:9b:0c:84:5d:99:2a:0a:
40:ff:d7:eb:af:92:50:93:18:c9:b1:6d:4e:e5:6d:42:f2:9c:
6c:70:d0:d8:60:b5:9d:ab:1f:f8:ed:16:ec:cd:5e:ba:57:7e:
18:d4:73:ca:64:93:6a:f4:45:cc:87:d5:f9:86:38:0a:6f:9f:
fd:9c:e3:fb:e5:3a:1a:cb:95:91:54:c8:79:d3:06:fd:c2:f6:
d4:04:ee:c3:79:3f:15:10:2b:41:80:ea:f0:4e:b8:d1:7f:cc:
35:36:ea:f0:77:ae:69:f8:56:cc:a6:58:0b:4f:b4:f4:32:ba:
6e:5c:46:b5:00:bc:5b:d0:79:d8:d3:45:6a:40:50:0b:f4:f3:
32:e1:e0:bd:a4:b7:74:7c:52:cf:80:b3:83:cf:43:5e:38:7d:
a6:52:38:5b:b1:19:04:7b:88:70:7e:e6:f2:68:37:77:5d:c7:
39:2b:51:79:6a:9f:94:0d:01:17:d5:b4:6a:40:1b:f0:39:9e:
0a:6f:f6:b7:56:be:93:1f:12:0c:b6:3a:e5:1a:17:af:89:82:
17:95:fc:1a:4c:f3:93:ad:b0:87:8f:36:0f:b3:fc:c4:13:4d:
54:0c:17:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net