Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a1cc011-aaff-43bc-b858-8b2eb081a654.roa
File: 1a1cc011-aaff-43bc-b858-8b2eb081a654.roa (raw, json)
Hash identifier: OGH0C84+T48vmP5owAlUmyE7cWdE3uuMNtq6cDOpk6g=
Subject key identifier: 52:E7:EC:96:2C:37:C7:9E:95:8E:6D:A9:0C:1B:21:AC:A3:91:D3:A3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 19DD08DB76F6AC53AA4B9CDB21E2C1CF15C66B48
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a1cc011-aaff-43bc-b858-8b2eb081a654.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:b000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:dd:08:db:76:f6:ac:53:aa:4b:9c:db:21:e2:c1:cf:15:c6:6b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=2fd26cda17538a55ad5913d6d4922a7123b5cfa07676705e48599bbcfd358704, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:62:b0:c5:fa:c0:57:68:de:a6:45:12:25:88:
37:4f:41:84:1d:b3:2e:20:a3:cb:50:93:bb:76:20:
f9:a8:62:da:5d:5f:b1:e9:ca:a6:ac:b4:0b:21:ca:
9e:05:c2:ba:f8:64:a7:a4:c4:d4:81:8b:f1:4f:55:
42:0c:13:8d:a0:f9:b1:a1:ed:8d:7a:38:e1:30:58:
35:ee:e2:50:9c:18:09:88:8a:79:e0:1d:47:f0:17:
0f:fd:ce:5b:c7:83:01:93:7b:54:b2:ba:3a:a4:2e:
d1:12:4c:cf:ff:69:46:ec:4e:85:ab:e9:2f:94:12:
b3:09:dc:ba:c7:e7:16:2d:0f:6c:11:52:e6:10:74:
ce:e7:85:f8:2c:e8:01:44:cb:d7:f2:a0:fb:53:9e:
5d:13:69:6f:05:67:25:9b:4c:30:b2:09:d8:77:dd:
a3:48:a0:56:c2:c0:90:3f:ef:2b:51:1c:3e:6c:c8:
6f:59:86:67:4d:a1:a2:cf:d1:50:6f:c6:71:95:42:
84:cf:9b:32:25:14:dc:c3:2a:35:d3:7a:9a:f1:9e:
d1:5a:f6:5a:06:bc:03:5a:cc:5b:89:24:b0:78:20:
90:b1:99:b2:36:0b:d6:c2:d1:a7:00:a9:17:47:8a:
b5:02:8b:9b:9a:00:39:1f:6d:86:f1:67:d9:13:73:
b3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:E7:EC:96:2C:37:C7:9E:95:8E:6D:A9:0C:1B:21:AC:A3:91:D3:A3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a1cc011-aaff-43bc-b858-8b2eb081a654.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:b000::/40
Signature Algorithm: sha256WithRSAEncryption
ca:8a:0d:a3:ee:52:ef:f9:a9:4e:ed:a9:f6:50:3e:b0:49:3d:
3b:f4:2a:9b:d9:22:35:26:01:94:7a:89:da:f4:cd:2f:93:0b:
c9:b8:77:01:5e:93:4d:b7:c9:55:35:62:8e:ea:63:47:79:a4:
40:7a:7d:18:f3:cf:79:8b:ec:11:b4:97:f4:c1:f1:9b:e8:f1:
73:42:eb:5a:1d:0a:f2:d4:7a:b8:ee:01:e5:08:1e:04:57:18:
dd:94:9a:72:38:a6:48:38:da:d3:8e:48:46:b6:fa:ad:f8:f1:
26:82:96:f6:43:bf:ec:06:a6:13:ad:40:72:6f:4c:48:35:fc:
ab:a6:ab:52:27:89:8d:cc:ee:bc:98:4c:01:bd:a4:e2:16:4b:
5e:a7:8a:ca:dc:1d:2d:b5:dd:e0:00:5c:d4:6a:4e:0a:35:2f:
d7:02:00:c7:7b:4c:5b:08:80:4d:0e:a9:74:af:57:e1:7b:b7:
1e:8b:a3:c3:fe:22:3e:ff:93:55:54:c4:54:06:1a:f0:37:b0:
5d:25:69:ac:94:51:9d:03:b8:e8:fa:fd:92:16:c4:f8:c4:38:
cf:01:3f:99:bc:66:e6:10:54:2b:b3:82:68:0f:e0:4e:45:0a:
da:de:72:b6:81:0f:a5:5b:93:f7:b1:2a:8b:2d:e2:48:d0:a5:
14:11:04:b1
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUGd0I23b2rFOqS5zbIeLBzxXGa0gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDEyMTMwMDAwMDBaFw0yNTAxMTcyMzU5NTlaMHoxSTBHBgNV
BAUTQDJmZDI2Y2RhMTc1MzhhNTVhZDU5MTNkNmQ0OTIyYTcxMjNiNWNmYTA3Njc2
NzA1ZTQ4NTk5YmJjZmQzNTg3MDQxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOpisMX6wFdo3qZFEiWIN09BhB2zLiCjy1CTu3Yg+ahi2l1fsenKpqy0CyHK
ngXCuvhkp6TE1IGL8U9VQgwTjaD5saHtjXo44TBYNe7iUJwYCYiKeeAdR/AXD/3O
W8eDAZN7VLK6OqQu0RJMz/9pRuxOhavpL5QSswncusfnFi0PbBFS5hB0zueF+Czo
AUTL1/Kg+1OeXRNpbwVnJZtMMLIJ2Hfdo0igVsLAkD/vK1EcPmzIb1mGZ02hos/R
UG/GcZVChM+bMiUU3MMqNdN6mvGe0Vr2Wga8A1rMW4kksHggkLGZsjYL1sLRpwCp
F0eKtQKLm5oAOR9thvFn2RNzs7sCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRS5+yW
LDfHnpWObakMGyGso5HTozAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MWExY2MwMTEtYWFmZi00M2JjLWI4NTgtOGIyZWIwODFhNjU0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0Fiw
MA0GCSqGSIb3DQEBCwUAA4IBAQDKig2j7lLv+alO7an2UD6wST079Cqb2SI1JgGU
eona9M0vkwvJuHcBXpNNt8lVNWKO6mNHeaRAen0Y8895i+wRtJf0wfGb6PFzQuta
HQry1Hq47gHlCB4EVxjdlJpyOKZIONrTjkhGtvqt+PEmgpb2Q7/sBqYTrUByb0xI
NfyrpqtSJ4mNzO68mEwBvaTiFktep4rK3B0ttd3gAFzUak4KNS/XAgDHe0xbCIBN
Dql0r1fhe7cei6PD/iI+/5NVVMRUBhrwN7BdJWmslFGdA7jo+v2SFsT4xDjPAT+Z
vGbmEFQrs4JoD+BORQra3nK2gQ+lW5P3sSqLLeJI0KUUEQSx
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net