Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/375b2a31-2bf5-49ae-873f-611cb3efd6e5.roa
File: 375b2a31-2bf5-49ae-873f-611cb3efd6e5.roa (raw, json)
Hash identifier: RowfTGEHICTC3Lu1ludkUVjWadPWqmv/ruXJtB9SM5U=
Subject key identifier: 72:E0:73:96:79:58:54:8C:FD:16:46:0D:95:DD:35:99:20:2A:22:B9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 0ED02F1C6E05E5832FA477DD850F482E1903CB13
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/375b2a31-2bf5-49ae-873f-611cb3efd6e5.roa
Signing time: Mon 31 Mar 2025 20:51:29 +0000
ROA not before: Mon 31 Mar 2025 20:51:29 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d03a:2000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:d0:2f:1c:6e:05:e5:83:2f:a4:77:dd:85:0f:48:2e:19:03:cb:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:51:29 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=d05606cb0aa8c81eb4a1e31e672c9562fb8bb92b9e3d883159e68a8ad6475b22, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c1:7f:5e:c2:83:f5:f9:05:7d:16:a2:c2:17:
fd:e8:75:3f:29:63:1d:34:98:74:33:35:0b:52:f8:
83:ed:e8:4f:22:32:b0:ff:ce:05:4d:ce:2a:e2:4b:
fa:c3:c5:9a:f1:60:bb:57:9c:b2:b4:47:11:d2:0f:
71:69:c6:21:95:12:e9:37:eb:b1:15:69:be:e2:e0:
1f:2f:b2:e2:5f:ee:a4:23:fd:ed:d7:4e:7a:00:c5:
d8:6b:19:64:be:c8:6c:80:66:6b:49:0c:d6:25:fa:
73:38:59:26:67:76:6d:87:98:b7:55:3a:0b:7b:6e:
81:21:75:83:f4:6f:75:10:32:8e:bf:24:77:00:ca:
20:45:63:06:f9:a1:3b:99:65:eb:97:18:a7:d5:6f:
07:57:8b:df:2d:13:9e:16:f0:38:14:ef:8c:4c:f1:
89:64:dc:65:13:70:20:39:89:25:7b:53:6c:19:de:
9a:ed:3a:45:b2:ed:b0:12:a2:fe:ba:aa:82:df:9e:
c7:fc:41:e4:8b:65:70:49:da:cf:09:8c:a1:b3:6d:
a3:b8:50:25:9b:c5:72:89:16:f7:85:90:69:c6:ef:
22:bb:1b:3c:01:3d:d2:3a:c5:79:f8:d5:06:a8:16:
32:f1:15:7d:e5:22:71:a1:ac:74:99:bc:93:91:86:
74:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E0:73:96:79:58:54:8C:FD:16:46:0D:95:DD:35:99:20:2A:22:B9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/375b2a31-2bf5-49ae-873f-611cb3efd6e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d03a:2000::/40
Signature Algorithm: sha256WithRSAEncryption
81:11:d2:73:b4:3a:31:07:29:b7:7c:c3:58:df:dc:23:1e:c5:
67:30:58:ae:d5:a5:b8:2e:2b:eb:bf:9c:2f:93:aa:e7:b3:ad:
1f:9a:b3:51:44:7d:ec:7a:c3:08:dd:4a:11:8f:b0:3f:e7:5b:
77:5c:95:c1:73:76:0f:5d:80:fb:ec:c8:27:64:70:ae:81:d5:
a3:82:25:5d:e0:9c:1f:56:7e:92:e4:9b:f7:37:82:9e:5f:8c:
50:ad:79:dd:d3:94:7a:4e:11:85:e9:8a:59:26:75:ed:e3:24:
ee:c3:9e:0d:15:7e:00:e6:e0:9a:8f:ac:9f:5c:c6:4a:28:19:
16:27:c6:84:7c:de:8a:10:64:a5:9e:4a:59:2a:6f:d9:9e:ed:
7a:42:3f:d4:ea:4d:00:84:79:7d:aa:d2:4b:95:52:df:4b:b9:
01:e6:7e:1d:d3:62:4a:4c:b6:5a:be:ee:c2:ae:22:38:c0:2d:
f7:1e:6b:db:5b:0b:89:ba:54:9d:0a:09:89:91:f3:3e:9b:5f:
ad:aa:87:7d:18:46:2e:c2:52:12:7d:22:87:b5:d3:80:ac:07:
11:a2:c4:55:37:f6:60:51:7a:4d:bc:10:b7:4f:78:1d:d3:41:
2a:83:e9:48:da:f0:a8:80:48:f1:5e:22:07:13:ad:25:f0:d6:
e9:31:fa:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net