Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4549ee72-2f54-4788-bc73-787b3ff37ba8.roa
File: 4549ee72-2f54-4788-bc73-787b3ff37ba8.roa (raw, json)
Hash identifier: C75KhaAJ8gPBIf6Y1cOVeYazum3pXIeUmN9Ky2hHpS8=
Subject key identifier: 4E:B5:D6:AA:88:13:DC:5A:30:1B:DB:E3:2E:7C:6B:34:D8:20:F0:88
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 322733A504C070843A1CA17478EE09BC886EF269
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4549ee72-2f54-4788-bc73-787b3ff37ba8.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d076:b000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:27:33:a5:04:c0:70:84:3a:1c:a1:74:78:ee:09:bc:88:6e:f2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=2c89cf043ee039e8c95b5ff20d7ab88d740a945ab50884b6aed7ea4669525321, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:2e:e4:22:5c:26:f1:04:d2:0d:31:c9:f3:
df:fa:56:ea:c4:42:ca:38:4e:d3:47:e2:45:5a:4e:
a8:e1:7a:cd:2f:db:ed:aa:94:6c:82:66:90:1f:f4:
c4:27:5d:83:73:73:6c:03:92:86:5a:40:f3:d6:91:
6a:3a:df:ea:2a:c5:19:5f:d8:13:9d:d3:09:72:cd:
aa:0a:82:38:38:41:d6:93:25:e2:9b:82:df:d3:1a:
48:c0:fd:a6:c5:a0:c0:9e:af:f4:5d:43:97:61:61:
72:2e:95:ac:6f:59:50:17:3e:aa:87:43:10:e7:3e:
1c:f0:0c:9b:dd:cc:7b:79:6c:a9:b5:a5:3f:d0:f0:
c9:8f:c0:24:31:f4:47:8c:24:a8:b4:4c:62:c4:5b:
13:0d:3d:cd:57:1c:29:dc:af:83:f0:a4:cb:65:ad:
24:83:4e:f6:cf:cd:90:85:01:94:7e:99:a9:5f:b9:
a8:88:9c:2c:91:48:f5:5f:bf:14:75:80:5d:0d:18:
ab:15:98:4e:17:6c:9a:e9:40:29:9a:32:80:2a:8c:
7d:4f:51:c6:47:db:9d:27:41:a0:57:0b:2d:c9:02:
a2:6b:34:d2:3c:53:ab:f3:96:8e:b6:d6:cc:1b:84:
e1:7d:5d:92:76:ba:5a:3e:f9:50:1f:b9:2d:e6:df:
44:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B5:D6:AA:88:13:DC:5A:30:1B:DB:E3:2E:7C:6B:34:D8:20:F0:88
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4549ee72-2f54-4788-bc73-787b3ff37ba8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d076:b000::/40
Signature Algorithm: sha256WithRSAEncryption
23:99:d9:06:09:96:79:ca:4d:67:54:c6:95:06:7b:8e:62:e0:
ea:f8:f7:f1:59:a5:02:42:21:31:94:56:83:fe:06:60:1e:d4:
f0:e7:84:f4:c6:ba:27:23:f4:e7:c4:5a:15:e3:6d:9a:6c:f7:
4f:5d:27:56:81:51:84:f7:6d:14:6c:fb:23:23:6e:02:3d:a8:
9a:51:4d:61:87:ef:ab:d6:88:89:d8:01:7a:4a:df:74:12:42:
b8:36:f8:6c:a6:eb:56:2e:06:be:dc:12:54:83:dd:a9:d7:64:
2d:cc:43:6b:32:68:8f:92:65:36:96:0e:ff:0c:6c:f0:39:4d:
9b:1f:2a:5b:55:44:71:b2:3d:dd:38:18:ab:19:b3:3a:13:e1:
ae:94:48:4b:2f:f6:af:da:2b:f3:05:e6:ed:89:72:92:df:55:
f8:b8:09:ea:78:7e:87:6e:2a:f2:4f:12:6a:fd:e2:44:14:6b:
fd:fb:58:79:e2:01:70:1c:c2:ec:2f:72:01:92:3b:ae:a3:7f:
a2:d8:0d:72:ef:0c:ec:e9:80:7a:8b:91:45:26:f8:27:20:bd:
51:e8:07:a3:f1:de:73:7b:45:82:fa:59:50:9e:15:22:a8:d5:
83:95:e5:f4:3c:5c:90:14:06:fc:53:59:80:b9:a4:cd:20:a6:
d2:ea:36:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:16 2024 by rpki-client on console.sobornost.net