Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0a65ddd8-326d-4006-bbfb-d7274fd7fae9.roa
File: 0a65ddd8-326d-4006-bbfb-d7274fd7fae9.roa (raw, json)
Hash identifier: MGy2olcr8TFGdPxlaDDVdFVxwkRMstcO8/rs58TbFTs=
Subject key identifier: 33:31:5E:ED:CB:8F:BB:09:05:11:6B:7A:43:54:62:15:4F:E5:C0:D6
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 66D4FB801F3CBAB32B3545A54ACAC07D9969DBF3
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0a65ddd8-326d-4006-bbfb-d7274fd7fae9.roa
Signing time: Mon 31 Mar 2025 20:00:21 +0000
ROA not before: Mon 31 Mar 2025 20:00:21 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:2040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:d4:fb:80:1f:3c:ba:b3:2b:35:45:a5:4a:ca:c0:7d:99:69:db:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:00:21 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=adfef7c9a975aee62c5d6bc2cb2687fc98e272d019f780a4b0320753b5f28704, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bc:b7:dd:96:a1:dd:ba:ea:8d:fc:89:98:71:
9d:c9:02:77:d0:16:17:c4:ce:b5:8f:1b:c0:d5:e6:
1d:33:c8:ba:0f:68:10:6d:65:6e:4a:f1:59:85:05:
59:c4:6e:11:54:b5:44:10:f8:8e:5c:93:df:3e:39:
87:7d:16:57:3d:de:d1:a0:75:67:54:e7:af:d0:5c:
7c:9b:3c:e8:c3:52:78:3e:15:0e:67:80:40:6b:9c:
71:fd:f5:b3:7b:b9:a4:52:65:31:fd:29:a1:e9:ba:
0a:d6:79:99:f6:fb:d0:19:fc:64:7d:8e:cb:bc:65:
cd:6b:45:94:b9:03:48:86:02:8c:65:70:55:3f:d0:
c0:92:1d:fb:4d:8a:f4:47:cc:2c:b8:7b:ba:56:6e:
4b:c7:de:bc:53:17:fe:19:7e:4d:a4:43:5c:09:0e:
04:15:2a:c7:5b:c4:58:44:0b:4c:4c:18:e5:00:a7:
17:38:8f:b6:ad:c8:02:01:72:72:bf:92:e0:06:7b:
af:38:e8:e4:4f:ac:8c:43:80:20:e1:1c:bd:16:7a:
2c:e8:ef:39:1f:86:33:14:c5:a5:7f:23:95:ec:9a:
b8:cb:ac:0b:2a:d8:c2:3b:48:ec:0f:6a:63:82:8f:
5d:9d:0f:d2:d6:31:45:8f:54:0c:3c:40:a2:0e:72:
6a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:31:5E:ED:CB:8F:BB:09:05:11:6B:7A:43:54:62:15:4F:E5:C0:D6
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0a65ddd8-326d-4006-bbfb-d7274fd7fae9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:2040::/48
Signature Algorithm: sha256WithRSAEncryption
c0:9d:78:28:fd:da:af:31:26:0b:9f:9e:94:f3:cf:14:7d:43:
d2:02:83:34:9a:b3:ba:c0:33:e2:05:4c:ce:39:e2:87:d9:08:
f3:1c:b2:ec:d5:8e:82:2e:b1:42:b8:d5:81:58:07:fa:6b:c2:
63:86:97:cf:97:d8:8a:cc:c4:8d:5e:0b:d8:ca:39:3a:3f:53:
5b:41:ca:42:a3:02:95:cc:d0:f3:e6:7e:51:62:a7:34:80:22:
4b:73:3a:86:16:80:81:98:66:85:47:1a:1f:eb:ba:83:fc:c7:
63:33:e2:a8:ca:ac:23:cb:cc:0e:7b:c5:18:ce:d0:91:75:49:
62:95:2e:96:47:f5:8b:b0:c7:ef:95:fc:98:4f:90:ae:c8:f1:
b9:ad:52:21:03:ca:4a:68:25:29:be:89:8c:06:37:6d:82:62:
e5:5d:e3:9e:5b:c8:ee:0c:af:b0:00:99:e8:91:ae:bf:19:cf:
0c:1f:11:6a:2d:8d:77:88:ad:12:24:d3:52:28:d4:09:47:d5:
53:05:39:ae:47:3d:f6:6f:a3:61:fb:85:65:20:10:df:74:23:
71:8e:70:2b:7c:0b:0b:75:23:df:0b:ec:44:80:2f:73:55:01:
3d:45:fa:2a:04:9e:b9:07:79:66:07:4c:56:7d:87:d7:e4:c4:
01:6b:9f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net