Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4622ab3d-f2d8-4bec-a18b-b056342928a8.roa
File: 4622ab3d-f2d8-4bec-a18b-b056342928a8.roa (raw, json)
Hash identifier: cxew7j0YUCAXtAjSth9oILxfOn3DWrbBiZkci9Sf4kM=
Subject key identifier: D4:4F:47:2B:2A:FF:E6:4F:9D:78:B7:0B:D4:E1:89:81:43:F7:20:2C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7E84840AA4C97D9AEDD05F87A2BD05551DA8FAE5
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4622ab3d-f2d8-4bec-a18b-b056342928a8.roa
Signing time: Mon 31 Mar 2025 19:10:40 +0000
ROA not before: Mon 31 Mar 2025 19:10:40 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:a080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:84:84:0a:a4:c9:7d:9a:ed:d0:5f:87:a2:bd:05:55:1d:a8:fa:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:10:40 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=b035fa589c039039c985871379d43118d294ea7f23dfc4bd11ca2fb8701f7d63, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7c:6b:3f:12:26:4a:d9:bd:c2:00:c3:d4:77:
1d:2e:bf:ac:e0:33:a0:fd:f9:cb:f9:03:66:34:50:
f5:27:a6:cd:e5:64:a7:2d:81:92:6e:7a:55:5b:01:
d0:08:df:84:58:c6:c9:03:47:21:04:94:03:fd:ac:
9d:c4:9d:ca:6f:74:30:cb:af:54:d0:6e:60:7a:35:
93:b0:fc:98:b1:1b:31:e4:f0:46:f7:94:99:56:16:
de:92:b3:a9:3a:6f:8b:53:35:51:a7:33:80:53:ab:
5e:7a:a7:67:c4:01:2e:71:3e:f6:56:28:32:d5:58:
8b:49:c5:96:94:a3:47:66:bf:5f:b6:0e:d0:24:43:
6a:96:3c:c1:d1:7e:da:cc:c2:fe:3f:9b:67:39:1d:
a8:2a:7f:fe:ad:2f:2f:08:34:e6:8f:cc:2f:1f:2f:
e6:24:5a:db:ce:0e:5a:fe:f0:45:f5:37:00:74:30:
5f:a4:fd:c1:3e:60:86:d2:65:04:ad:b4:3f:87:2f:
e7:09:21:6e:e9:56:29:9b:47:e4:02:97:9f:f1:a9:
ff:f5:72:63:2e:28:8a:53:9b:67:aa:ab:d8:4a:68:
cf:5c:f9:79:bc:83:c0:cd:4b:36:62:dd:f3:91:a2:
80:e3:52:84:ad:ba:ac:49:34:8d:87:a9:01:69:3e:
e4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4F:47:2B:2A:FF:E6:4F:9D:78:B7:0B:D4:E1:89:81:43:F7:20:2C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4622ab3d-f2d8-4bec-a18b-b056342928a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:a080::/48
Signature Algorithm: sha256WithRSAEncryption
8e:99:3b:6e:90:0b:a1:3e:35:f4:97:32:3e:f1:34:f4:14:c0:
43:35:5a:55:2f:b3:88:af:90:53:e1:8c:22:5d:09:e1:7d:aa:
34:c9:44:01:a2:b7:03:68:1d:2e:5e:2a:d1:f4:90:38:07:05:
9e:3c:9f:ba:92:5a:57:a1:00:d3:7e:68:ea:29:5b:73:2c:86:
fe:ea:64:18:28:ef:d0:ae:93:82:21:b3:94:50:30:8f:3a:0a:
8f:e0:8c:c7:a3:35:91:66:93:3c:95:c7:78:65:6d:e6:97:79:
c4:35:8a:3d:9e:1a:ff:c1:93:7b:6b:e1:97:38:13:75:ba:ba:
2f:60:23:bf:77:90:00:bc:70:0d:8a:f8:de:f0:d6:fd:95:57:
b7:87:b0:a4:46:5d:44:85:e6:82:58:ef:06:2b:92:a6:a0:35:
25:bd:fb:d3:7e:97:a3:fb:b6:7f:b8:ad:e9:aa:1f:90:3c:2d:
26:fe:7d:04:b4:9a:27:73:b6:9a:25:24:a6:57:3f:db:99:26:
9e:37:38:23:0e:06:a0:a8:25:b0:2f:ff:05:44:1d:67:d6:f3:
6b:98:69:4a:47:64:ee:61:5a:0b:6a:f5:0d:fb:e1:a2:34:46:
28:45:5c:1c:3f:2d:cd:56:eb:78:c3:6b:d7:88:92:f7:00:58:
71:d2:fe:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net