Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/215f2d45-f22e-464c-b4f1-f2e4aa2ef44f.roa
File: 215f2d45-f22e-464c-b4f1-f2e4aa2ef44f.roa (raw, json)
Hash identifier: Vdg2mKo0v5lss0g/ogU0wdLtAbNtGjaxVe137IuDpGg=
Subject key identifier: DD:E2:36:CE:0B:64:A3:62:D1:EF:5D:3C:67:05:58:FE:FE:72:2E:06
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5A312158CB09C35013CDEA14D11DD0E3ED997CD9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/215f2d45-f22e-464c-b4f1-f2e4aa2ef44f.roa
Signing time: Tue 24 Dec 2024 00:00:00 +0000
ROA not before: Tue 24 Dec 2024 00:00:00 +0000
ROA not after: Tue 28 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2a05:d000::/25 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:31:21:58:cb:09:c3:50:13:cd:ea:14:d1:1d:d0:e3:ed:99:7c:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 24 00:00:00 2024 GMT
Not After : Jan 28 23:59:59 2025 GMT
Subject: serialNumber=79920efb92358e8c92212f3b8295fde857f5689261756727d7f863d5329ea7a9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:59:61:49:f4:cf:fb:70:cc:de:e8:ae:54:84:
e3:0b:84:af:f6:7d:56:d1:d0:34:92:e9:50:3e:a7:
49:ae:ea:f7:af:1d:bf:84:41:ed:6f:66:b4:8d:51:
3a:27:71:15:65:b7:01:21:93:d9:9e:b1:41:f9:bf:
63:de:48:68:c5:8d:e7:b2:87:85:cb:47:41:9d:20:
ac:c3:f5:d7:a0:a3:6c:48:40:9a:d5:f5:6f:10:ed:
6b:6f:ab:6e:31:2a:02:ec:e4:b8:f0:ae:88:55:19:
23:b2:76:bc:f3:ea:d2:ff:31:b5:8c:7d:aa:e8:a9:
12:cd:a9:e2:c3:32:0e:af:76:6f:e4:eb:66:df:55:
9a:2f:34:2f:d6:8d:8c:da:e4:68:d2:ae:af:a2:fd:
5e:20:5a:a3:ed:ff:04:1a:9d:76:63:1e:17:12:3f:
aa:71:1d:65:7b:d1:82:7f:83:b8:13:04:76:b4:4e:
0e:92:97:28:90:49:ae:8f:e6:65:c1:81:c5:57:c3:
31:ec:67:54:10:2c:42:e8:5f:c9:9c:19:66:8f:59:
35:aa:f5:a0:c0:28:13:b0:52:8f:7c:ce:e3:2c:e6:
fb:09:95:4d:cb:2f:4a:c8:49:1f:f7:8b:63:eb:86:
15:c1:da:5e:f3:99:9e:2c:b2:f2:b3:3b:04:89:aa:
01:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E2:36:CE:0B:64:A3:62:D1:EF:5D:3C:67:05:58:FE:FE:72:2E:06
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/215f2d45-f22e-464c-b4f1-f2e4aa2ef44f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000::/25
Signature Algorithm: sha256WithRSAEncryption
9f:ac:e3:3b:58:93:fe:8e:4c:07:bd:f7:e7:2f:b1:89:d2:6f:
09:b7:45:58:90:a9:79:d4:44:21:18:2a:7a:20:64:b8:5a:20:
9b:a8:1f:fe:f5:ff:94:b8:58:18:1a:e3:f4:09:59:f0:03:50:
76:63:b1:28:07:33:e4:5a:bf:76:fd:24:fa:02:6c:37:21:e4:
0b:d9:81:e4:7b:0d:21:6f:0b:ad:24:7d:d8:2b:4b:d0:36:bb:
f1:b2:9f:9a:0c:0e:f2:b5:f6:4f:99:a8:fa:ac:9f:b0:fb:28:
be:bc:fd:a8:4f:06:ac:28:21:86:16:73:54:ac:55:f6:4f:b2:
ea:6b:9e:53:12:76:d0:08:dc:f8:a4:b8:7a:cf:f9:eb:85:17:
06:10:f8:c4:77:4c:d3:05:0f:bd:a9:c9:fe:76:af:26:75:3f:
a8:85:23:7b:2c:fb:7c:e7:38:0c:0f:54:66:4d:c3:74:7c:d8:
93:59:d3:11:e7:37:b6:17:12:9a:d3:63:41:68:7a:2b:0f:13:
27:35:6f:4c:e1:2e:1c:f4:af:ba:a5:14:21:40:fe:77:42:a1:
98:da:52:9c:68:f9:19:76:42:29:6f:b2:25:7b:a4:97:16:b5:
b5:69:08:3e:31:4e:69:fc:89:3b:cd:26:f9:c2:bc:3e:a7:80:
50:89:12:93
-----BEGIN CERTIFICATE-----
MIIFXzCCBEegAwIBAgIUWjEhWMsJw1ATzeoU0R3Q4+2ZfNkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDEyMjQwMDAwMDBaFw0yNTAxMjgyMzU5NTlaMHoxSTBHBgNV
BAUTQDc5OTIwZWZiOTIzNThlOGM5MjIxMmYzYjgyOTVmZGU4NTdmNTY4OTI2MTc1
NjcyN2Q3Zjg2M2Q1MzI5ZWE3YTkxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANlZYUn0z/twzN7orlSE4wuEr/Z9VtHQNJLpUD6nSa7q968dv4RB7W9mtI1R
OidxFWW3ASGT2Z6xQfm/Y95IaMWN57KHhctHQZ0grMP116CjbEhAmtX1bxDta2+r
bjEqAuzkuPCuiFUZI7J2vPPq0v8xtYx9quipEs2p4sMyDq92b+TrZt9Vmi80L9aN
jNrkaNKur6L9XiBao+3/BBqddmMeFxI/qnEdZXvRgn+DuBMEdrRODpKXKJBJro/m
ZcGBxVfDMexnVBAsQuhfyZwZZo9ZNar1oMAoE7BSj3zO4yzm+wmVTcsvSshJH/eL
Y+uGFcHaXvOZniyy8rM7BImqAdsCAwEAAaOCAiIwggIeMB0GA1UdDgQWBBTd4jbO
C2SjYtHvXTxnBVj+/nIuBjAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MjE1ZjJkNDUtZjIyZS00NjRjLWI0ZjEtZjJlNGFhMmVmNDRmLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFByoF0AAw
DQYJKoZIhvcNAQELBQADggEBAJ+s4ztYk/6OTAe99+cvsYnSbwm3RViQqXnURCEY
KnogZLhaIJuoH/71/5S4WBga4/QJWfADUHZjsSgHM+Rav3b9JPoCbDch5AvZgeR7
DSFvC60kfdgrS9A2u/Gyn5oMDvK19k+ZqPqsn7D7KL68/ahPBqwoIYYWc1SsVfZP
suprnlMSdtAI3PikuHrP+euFFwYQ+MR3TNMFD72pyf52ryZ1P6iFI3ss+3znOAwP
VGZNw3R82JNZ0xHnN7YXEprTY0FoeisPEyc1b0zhLhz0r7qlFCFA/ndCoZjaUpxo
+Rl2QilvsiV7pJcWtbVpCD4xTmn8iTvNJvnCvD6ngFCJEpM=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net