Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
File: 16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa (raw, json)
Hash identifier: 2tEoGCPJgOCiAwHrCJFZtl2MNUheu9YhqfsGpkXPy0g=
Subject key identifier: 63:D3:5C:D1:94:66:7F:B5:6C:48:4B:EC:C4:65:27:3C:34:4A:FE:B2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4BF8833EA92C05A008B98E73C2CCDD36E2B86732
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
Signing time: Mon 31 Mar 2025 20:50:05 +0000
ROA not before: Mon 31 Mar 2025 20:50:05 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d078:b000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:f8:83:3e:a9:2c:05:a0:08:b9:8e:73:c2:cc:dd:36:e2:b8:67:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:50:05 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=83673dae5a102b6ce9074a185620b442084c03de1238f160bbd8ce14c73f453c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:24:85:fc:74:ee:79:ca:d2:f7:ac:77:af:f2:
93:95:1b:33:06:cd:ea:e1:3c:76:75:65:65:75:c6:
76:5a:79:1b:f1:72:d4:08:76:69:ac:c3:d5:a7:bb:
5a:70:3a:78:9d:42:63:57:ff:90:83:f2:ef:b7:88:
cb:be:21:14:c4:b1:96:94:32:13:3b:27:4d:7d:ae:
14:db:9a:48:e1:70:7b:53:7c:0f:24:20:a6:2d:31:
3a:11:1f:87:df:8c:1a:0c:e2:3d:0c:96:3e:4a:c5:
89:c6:07:0a:c3:5e:a1:99:c9:cb:e0:29:8b:40:52:
9b:33:07:fe:9d:cc:f9:b5:a9:be:75:c4:12:d7:18:
40:56:44:f0:ac:c9:4e:34:c5:31:41:57:72:94:ec:
89:ce:1d:fb:80:88:e5:9e:46:38:7f:b6:cf:75:f2:
dd:b2:9e:2d:55:63:d6:41:d9:9a:91:a2:fb:fd:8a:
48:40:78:f5:9d:87:e5:d2:e9:89:6a:7e:a4:24:cb:
5c:79:3a:8c:2f:03:1e:36:f7:71:c9:85:df:8c:ea:
da:bd:bc:ff:34:1e:19:53:03:bb:d8:9d:a0:88:a4:
86:cc:19:24:3b:2e:ff:cc:c1:c0:18:2d:6b:dd:0c:
6b:c8:f5:f6:e2:d9:c0:78:c4:be:c5:cd:c4:a6:96:
12:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D3:5C:D1:94:66:7F:B5:6C:48:4B:EC:C4:65:27:3C:34:4A:FE:B2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/16e83d89-9c29-4d70-9d1d-85e4dc7e3d6e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d078:b000::/40
Signature Algorithm: sha256WithRSAEncryption
3d:d3:5f:57:8d:c2:d3:56:95:ef:14:ad:69:95:d3:e7:92:6d:
c6:ca:1a:81:0d:06:d8:16:2a:b5:c1:9e:75:8f:e8:44:80:d2:
58:59:7b:af:cd:be:b2:64:af:ac:fc:78:9d:51:0f:d3:a0:47:
5e:e1:5f:d9:56:66:51:7c:1b:34:ac:85:53:ce:63:86:ac:6a:
09:3b:0e:f9:58:9a:40:17:9e:9e:73:3c:36:a5:be:0a:66:b8:
e5:fd:30:a9:7e:2d:ba:35:67:f0:56:67:61:63:fc:dd:61:02:
e3:fb:17:83:69:cb:c8:52:9c:2c:1a:7a:34:7e:7c:9d:29:73:
16:73:c8:47:de:d4:14:48:30:f1:31:b8:6a:be:c2:e7:bf:44:
f3:ed:a1:96:9b:f9:d2:4c:37:40:8f:09:d6:b4:66:96:19:cd:
5a:29:1d:61:7d:bc:e7:a1:1b:e7:79:10:c1:4c:2c:1d:7a:12:
f0:88:fc:f4:15:fa:b0:55:69:73:ef:2a:ae:ef:49:f7:3d:6c:
9c:0d:41:68:dc:3f:05:80:b9:67:46:b9:d7:c1:0b:c2:11:dd:
8d:53:20:50:3a:72:28:10:4f:bb:d9:94:76:60:81:23:b5:01:
d9:2d:01:3e:99:91:5a:a7:47:26:af:bf:10:05:be:5c:f6:27:
26:3e:a9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net