Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa
File: 0d8c280f-edb2-45fb-9207-8226dc900bb1.roa (raw, json)
Hash identifier: kC77hMi4+QObQZAkuGXUj2Sg9MKt6iU24isXvC++ZXU=
Subject key identifier: F5:08:16:52:20:84:DD:93:40:CA:2F:6C:28:68:A7:45:0C:29:C7:2A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6D2C89CF8E6838D2CAA71DBD54141800FDE72C60
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa
Signing time: Mon 31 Mar 2025 19:21:06 +0000
ROA not before: Mon 31 Mar 2025 19:21:06 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:5080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:2c:89:cf:8e:68:38:d2:ca:a7:1d:bd:54:14:18:00:fd:e7:2c:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:21:06 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=6da7bb41c35d18189a8ae2b599aa504469ec44e477ab71c3aff62fce6b98756c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:65:c1:bc:32:cd:f0:11:3f:a3:3d:16:b0:9e:
71:a4:a2:78:b9:7d:41:34:3b:67:25:b5:a6:41:9f:
24:a3:44:0c:6c:6b:d6:a1:74:98:06:5b:ef:1b:a8:
a3:df:8a:7a:fe:57:f2:37:41:9f:b9:48:49:a0:39:
50:05:1f:17:a9:5f:89:0a:10:c7:86:62:66:7b:dc:
51:b4:dc:50:b3:67:aa:18:85:f7:a7:73:b8:1f:99:
38:f2:de:e1:3c:12:ad:ea:78:1b:96:6a:87:99:0d:
a7:79:f9:82:b2:58:e5:40:9f:6b:40:16:72:3b:bb:
34:e7:0e:21:c7:ff:4d:9e:4b:66:4f:49:9b:4b:d4:
8d:f2:62:2e:98:72:e0:12:0b:fd:e5:ae:aa:f5:c3:
13:fb:16:98:e0:7e:8d:76:bd:db:02:79:f8:df:7d:
25:c0:ea:06:0f:d4:59:d8:1f:18:28:2c:a4:6d:4a:
ba:fa:9d:6b:f1:69:2f:ee:b0:e0:fa:78:73:da:ab:
64:af:e9:6c:bb:d0:d9:d7:ad:5b:f0:6e:48:1a:45:
1e:94:aa:2a:a8:ab:cd:14:26:9c:aa:5a:24:fb:4a:
56:06:8a:38:5f:11:dd:3f:93:f4:49:db:14:fb:0e:
ee:08:5d:2b:8e:ac:a3:91:66:57:f2:15:0e:c6:a7:
6d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:08:16:52:20:84:DD:93:40:CA:2F:6C:28:68:A7:45:0C:29:C7:2A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/0d8c280f-edb2-45fb-9207-8226dc900bb1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:5080::/48
Signature Algorithm: sha256WithRSAEncryption
46:a8:66:07:f4:d2:d2:ec:6b:a1:e6:b6:04:1f:6f:c8:25:b5:
33:68:39:e1:ba:1e:84:da:dc:bc:31:df:b4:7a:1c:0e:b8:30:
cd:d6:d3:5a:82:ba:64:1b:94:d4:3b:a5:09:be:6d:bd:14:53:
4c:cf:0b:37:f8:04:4a:c5:6f:b5:da:c0:e3:43:17:90:5b:c0:
46:78:2e:e0:f6:e7:75:d3:64:3a:a8:f9:59:d2:a0:46:e8:12:
99:99:ef:c4:9a:51:cb:22:1e:b0:92:49:bb:9d:7f:7c:04:db:
fb:9c:ec:b7:00:2f:e7:6d:91:19:57:6b:36:2d:5e:4d:4d:6c:
3f:c7:c4:95:78:a0:15:c4:a2:52:28:8f:23:a9:50:39:60:1e:
89:0c:f2:db:6b:b5:e7:7d:9a:7c:2c:33:c0:6f:ba:b8:5a:e9:
e3:19:9c:c5:fa:37:44:5e:6d:ba:c0:6c:14:42:dc:79:3e:06:
de:2a:b6:78:76:38:3d:c3:a1:9b:68:3f:0a:8b:57:fa:0e:f8:
27:de:20:a7:95:f5:f8:69:17:55:be:d8:2b:7b:6a:c5:f9:71:
11:af:d3:31:24:3d:aa:58:39:b4:ba:2e:e2:22:d9:96:85:b3:
13:89:c6:ab:7c:e1:c2:ca:14:ce:c1:77:fa:ea:5e:96:06:e8:
78:fe:9f:34
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUbSyJz45oONLKpx29VBQYAP3nLGAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMzExOTIxMDZaFw0yNTA1MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQDZkYTdiYjQxYzM1ZDE4MTg5YThhZTJiNTk5YWE1MDQ0NjllYzQ0ZTQ3N2Fi
NzFjM2FmZjYyZmNlNmI5ODc1NmMxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMJlwbwyzfARP6M9FrCecaSieLl9QTQ7ZyW1pkGfJKNEDGxr1qF0mAZb7xuo
o9+Kev5X8jdBn7lISaA5UAUfF6lfiQoQx4ZiZnvcUbTcULNnqhiF96dzuB+ZOPLe
4TwSrep4G5Zqh5kNp3n5grJY5UCfa0AWcju7NOcOIcf/TZ5LZk9Jm0vUjfJiLphy
4BIL/eWuqvXDE/sWmOB+jXa92wJ5+N99JcDqBg/UWdgfGCgspG1Kuvqda/FpL+6w
4Pp4c9qrZK/pbLvQ2detW/BuSBpFHpSqKqirzRQmnKpaJPtKVgaKOF8R3T+T9Enb
FPsO7ghdK46so5FmV/IVDsanbbUCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBT1CBZS
IITdk0DKL2woaKdFDCnHKjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MGQ4YzI4MGYtZWRiMi00NWZiLTkyMDctODIyNmRjOTAwYmIxLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoF0DFQ
gDANBgkqhkiG9w0BAQsFAAOCAQEARqhmB/TS0uxroea2BB9vyCW1M2g54boehNrc
vDHftHocDrgwzdbTWoK6ZBuU1DulCb5tvRRTTM8LN/gESsVvtdrA40MXkFvARngu
4PbnddNkOqj5WdKgRugSmZnvxJpRyyIesJJJu51/fATb+5zstwAv522RGVdrNi1e
TU1sP8fElXigFcSiUiiPI6lQOWAeiQzy22u1532afCwzwG+6uFrp4xmcxfo3RF5t
usBsFELceT4G3iq2eHY4PcOhm2g/CotX+g74J94gp5X1+GkXVb7YK3tqxflxEa/T
MSQ9qlg5tLou4iLZloWzE4nGq3zhwsoUzsF3+upelgboeP6fNA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net