Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08648cfd-d5cb-4480-92d0-084369ff8b4d.roa
File: 08648cfd-d5cb-4480-92d0-084369ff8b4d.roa (raw, json)
Hash identifier: /K78C4q4fNFyOhYagxw7CMYAYjQSJMH1yX1P9xdHzoA=
Subject key identifier: 1B:E1:B7:D4:45:7C:54:B5:71:8F:01:C6:5D:FA:8D:0F:FA:D7:BD:8B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2C4A7B1D08AE5BF7C4D44D8B3C960D3CAE0A913E
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08648cfd-d5cb-4480-92d0-084369ff8b4d.roa
Signing time: Mon 31 Mar 2025 20:31:21 +0000
ROA not before: Mon 31 Mar 2025 20:31:21 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:1040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:4a:7b:1d:08:ae:5b:f7:c4:d4:4d:8b:3c:96:0d:3c:ae:0a:91:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:31:21 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=282203d25899af96af5385177036c01d06082dcb5c98a9ee9dfdd073c2233cbe, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:d6:aa:23:96:58:4e:42:fa:4e:0a:74:38:
ac:2b:3f:91:36:a6:d3:72:f2:d6:c0:46:d3:95:f5:
e8:e0:0a:57:b9:67:25:7d:1c:1c:62:02:8a:5a:cc:
9b:34:49:fa:46:79:f4:b5:61:0b:2b:3e:45:94:2d:
2b:a1:dc:d4:cf:fd:35:d3:06:9e:fd:7b:1a:53:04:
80:d5:f0:d6:2e:4a:f0:15:15:05:23:42:cf:ac:9c:
63:b9:84:a5:70:fa:28:a0:63:d3:8b:85:1a:70:eb:
f6:86:57:32:0f:9d:f8:0a:8f:92:24:c2:3d:cc:fb:
cb:6e:f7:a7:d7:44:d0:fc:fa:a4:7f:c5:03:5e:c3:
32:64:40:f9:bf:d5:63:9a:2b:ef:f1:c9:5e:1a:91:
33:1d:25:39:74:49:28:7c:3d:a4:ee:40:67:0d:8e:
f0:ef:95:8e:09:5e:a9:ec:15:80:fb:1d:9f:a7:06:
a9:c1:4b:b6:43:52:21:78:1f:43:d3:e8:00:f0:86:
fe:89:50:eb:e8:9f:56:c5:4d:60:d1:e3:4a:00:7b:
03:d0:bc:df:89:4b:a4:1f:4e:fb:2a:1c:98:41:b6:
ac:ce:a4:08:f1:e2:84:db:ff:91:72:a9:60:3d:60:
15:94:1d:47:50:b6:a6:4a:26:b2:5d:0c:aa:85:43:
06:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E1:B7:D4:45:7C:54:B5:71:8F:01:C6:5D:FA:8D:0F:FA:D7:BD:8B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/08648cfd-d5cb-4480-92d0-084369ff8b4d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:1040::/46
Signature Algorithm: sha256WithRSAEncryption
96:8b:ce:11:cb:2c:9e:22:94:d5:8a:62:23:13:c8:93:7c:a8:
6a:dd:2f:4a:e3:4c:b4:4b:2b:18:a8:c1:41:a3:e7:3d:7e:29:
23:73:f1:41:3b:a8:17:37:23:5c:f5:16:51:42:3c:e0:28:00:
32:e2:d0:1c:73:88:5f:69:c0:d3:23:3b:3c:21:b6:8e:f0:40:
8e:01:8e:a2:14:28:0a:77:a6:58:05:5e:86:7f:a3:34:d5:3c:
2d:ed:6b:71:b1:7d:8a:50:cf:4c:6e:3b:7b:42:e5:d7:5c:5d:
02:ef:90:ef:78:90:3b:81:42:3b:99:ec:06:56:90:0a:c1:09:
5f:3d:0f:8f:25:da:93:33:eb:6d:cd:bc:ca:dd:ea:a7:2e:4b:
e3:5f:3a:06:ec:01:d3:85:43:fe:38:1e:f5:bf:6d:99:84:b8:
30:f2:27:8c:b0:28:5d:0b:50:6c:67:eb:1d:e5:a9:04:d2:ad:
55:47:04:54:f0:fb:6c:db:69:f1:f9:b4:d1:0b:35:b5:3d:1e:
a8:03:9e:ea:ce:fd:7d:16:d0:df:40:c4:cc:40:15:3f:e4:20:
15:3f:e5:03:a1:a8:f4:17:c0:79:53:98:29:5c:c4:1a:da:62:
39:8e:6b:ba:32:a1:36:c1:b6:47:be:4a:9e:e3:76:58:58:d9:
d5:60:8f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net