Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa
File: 366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa (raw, json)
Hash identifier: Zx7JrPAZybaNc83oMWbyhOl3s+Mm4Yw1qYvP9C6olX0=
Subject key identifier: 6A:94:4C:51:3D:B1:F4:A2:86:13:9E:DC:BF:FB:21:CA:2B:0D:49:58
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3486B8C6E8A2B569330726B5684F2DF11CC23132
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa
Signing time: Mon 31 Mar 2025 19:20:13 +0000
ROA not before: Mon 31 Mar 2025 19:20:13 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:4040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:86:b8:c6:e8:a2:b5:69:33:07:26:b5:68:4f:2d:f1:1c:c2:31:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:20:13 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=669a07a39cf2d6288bd25261f3f99a58deda320239cdcff1978b96310c0f2304, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:60:67:f1:23:01:11:b7:d8:60:3e:84:bd:3b:
11:f1:17:48:a8:50:53:32:12:89:90:43:bd:8a:ee:
c3:37:a2:e9:de:4a:da:be:47:72:85:3d:dc:33:4d:
c9:57:70:6e:11:d4:a8:ed:36:ca:b7:d1:aa:fa:5d:
79:3b:da:3b:a9:42:76:a7:9e:87:6f:a0:37:0c:30:
f5:80:f1:d4:86:36:be:fa:11:1a:3c:df:04:10:4d:
c5:72:88:70:00:45:aa:e1:5b:3b:a3:a2:be:b4:6e:
98:61:00:5a:e2:ca:02:8c:fc:7a:91:6d:d3:31:55:
ef:cf:84:f8:8b:e2:d6:e8:26:14:bc:8f:74:17:4f:
ed:d8:58:51:6b:a4:6e:80:c0:31:0c:aa:42:70:d3:
4b:ea:ba:ba:07:b0:d3:b3:d6:a8:09:3f:23:17:dd:
8a:20:78:af:75:80:23:66:e9:33:b1:a5:8d:80:34:
7c:65:17:5a:80:08:46:b3:93:f7:78:43:4a:56:26:
16:b7:56:eb:e2:25:48:e4:0d:da:28:53:9b:3c:fd:
09:bc:ad:2c:a8:94:76:78:75:4a:1c:82:34:e9:82:
b9:c0:93:18:5e:f6:e3:c7:d1:14:5f:a4:26:0c:ad:
65:95:04:30:7e:97:8a:a5:b4:11:76:72:27:12:a8:
8c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:94:4C:51:3D:B1:F4:A2:86:13:9E:DC:BF:FB:21:CA:2B:0D:49:58
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/366c380f-7f3c-491f-a7cb-bffc62aed1e0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:4040::/48
Signature Algorithm: sha256WithRSAEncryption
29:b9:d0:2b:3b:e6:d0:9e:a5:11:05:ef:a3:b1:fd:fb:db:74:
70:cd:73:77:05:1c:12:a4:42:77:9e:12:e4:d5:fb:3a:71:59:
26:49:0e:39:ab:70:b2:7a:dd:d4:a5:82:c9:58:1e:f9:17:08:
ea:1e:f6:e9:53:c1:90:ae:be:01:cd:d2:f6:a8:18:91:8a:3a:
5f:0b:0c:27:70:eb:f1:c0:11:d2:34:5b:6c:3f:74:6e:19:b5:
97:d1:bc:a8:d3:f0:05:68:15:7f:60:ba:92:0c:27:6a:11:91:
f9:9f:88:5d:8b:61:e9:75:f1:4d:b4:cf:35:a5:32:2c:19:0e:
0f:c4:1f:82:92:18:55:b8:7e:89:aa:6b:b4:00:19:6c:96:e5:
51:4d:a0:82:61:c7:7b:b3:1c:7a:70:f1:98:04:c8:dd:bb:c0:
c7:86:a0:7e:e6:f4:b6:7c:63:91:7c:5a:6a:84:ac:68:ea:aa:
d4:cb:08:f6:62:c7:b7:69:b6:25:68:ad:be:8c:52:7b:d7:74:
cb:2b:20:63:87:90:38:fc:64:58:54:ad:53:6a:65:d3:dd:80:
f8:d4:fa:f7:db:96:b5:99:57:1e:48:fa:c4:da:52:80:8b:d3:
52:3b:f2:f0:c5:e5:92:14:1e:b4:c8:38:e3:e9:a6:e9:55:29:
5e:78:d9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net