Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5c57a644-0d1c-4126-9684-e345f93c1560.roa
File: 5c57a644-0d1c-4126-9684-e345f93c1560.roa (raw, json)
Hash identifier: qMzJSPcAq4WhvKDTfGUjGtcasdMRkSqB17AvAIrzNH8=
Subject key identifier: 4C:F9:2F:A7:F8:DF:D0:F9:68:F0:B3:7D:CE:65:10:6F:ED:CD:C6:F7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 626DE8E872A33BEB4EB92B0C209A43B3798B4609
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5c57a644-0d1c-4126-9684-e345f93c1560.roa
Signing time: Mon 31 Mar 2025 19:51:23 +0000
ROA not before: Mon 31 Mar 2025 19:51:23 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d072:9040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:6d:e8:e8:72:a3:3b:eb:4e:b9:2b:0c:20:9a:43:b3:79:8b:46:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:51:23 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=8a4fd487dccb5f2b52f5b76135f5cc976bc9b6f27ed14aeb8ead65e45b535703, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4d:e7:6e:eb:11:28:2b:f3:8e:28:70:24:98:
cc:11:ac:2d:e9:a3:f1:ed:70:35:9d:62:65:7b:8a:
57:af:c9:a2:fd:18:5e:3f:8b:d0:8f:90:8e:61:5c:
e6:be:7c:0f:40:84:44:c9:48:98:e4:3a:2c:75:64:
1d:95:fb:7b:d2:e3:be:5b:31:8b:67:08:78:a3:44:
44:6f:fd:99:32:6a:a6:6f:ec:33:bc:51:bc:e9:0e:
51:49:8f:2b:ab:c3:b8:a5:63:ed:38:15:99:81:e8:
01:cc:67:fd:28:c7:5a:46:79:e0:fc:b5:0d:c1:ed:
82:47:49:6e:d7:37:fd:4b:83:9a:3b:22:3f:2b:78:
a1:45:76:ed:de:f0:21:43:5b:8a:4a:11:33:af:ad:
5b:8b:75:b8:60:46:9d:81:13:4a:ea:cb:f2:95:b5:
92:6e:a7:fe:83:c4:cf:c9:18:5c:a7:a8:03:73:4f:
ef:3e:63:85:20:c6:d7:3f:95:57:d3:21:d6:94:0b:
d2:2a:53:fe:d7:63:7a:4f:d1:b3:b8:58:d5:a2:c7:
4a:de:86:4a:07:60:b4:10:c9:7d:30:fd:6d:c9:31:
89:b6:82:8b:27:41:96:b0:cd:14:0f:d2:03:cc:9b:
fe:00:1b:26:4c:86:14:c3:55:c5:71:71:09:21:6f:
2a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F9:2F:A7:F8:DF:D0:F9:68:F0:B3:7D:CE:65:10:6F:ED:CD:C6:F7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5c57a644-0d1c-4126-9684-e345f93c1560.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d072:9040::/48
Signature Algorithm: sha256WithRSAEncryption
76:4c:c0:1d:d4:4d:5d:29:66:c8:31:dc:53:fd:7e:1c:95:d4:
23:ff:76:9b:31:5d:d8:10:49:f4:e3:e0:ee:89:b1:69:f5:1d:
f9:38:25:c6:12:a5:5b:bb:c9:61:2f:37:ef:fa:0e:d4:42:30:
18:fa:af:16:53:5f:14:18:03:cc:4b:ea:f2:de:a2:3e:6c:85:
52:94:65:c6:cf:9b:d4:ef:49:c3:2c:18:e1:20:a9:6b:6a:b4:
e0:3c:08:80:20:a6:8d:80:ee:db:3e:b6:9a:ce:f0:3b:e4:62:
db:64:38:dd:12:78:36:df:7a:85:33:00:c1:a7:10:ed:d6:07:
be:01:cf:d0:b6:13:e0:2f:be:21:e2:5b:5a:8e:53:b5:f5:b3:
f7:b6:7a:b4:91:b5:67:df:ad:c7:12:11:a4:4e:6e:4b:36:45:
99:08:21:df:c9:bd:21:14:e5:2e:aa:13:fd:0d:04:58:d9:c9:
1c:75:b9:71:5d:af:3b:ed:bc:5c:3c:e4:1d:b3:d4:e8:74:08:
d2:38:e7:97:40:3b:e7:ff:36:a2:f2:90:16:fe:90:5e:c3:df:
43:01:ab:c6:53:14:7a:f7:7f:7c:ab:1b:ed:f8:45:80:4c:df:
6f:1c:51:04:17:08:85:73:c4:e9:43:86:6d:f8:9a:21:ac:6f:
2f:22:76:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net