Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa
File: 5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa (raw, json)
Hash identifier: hbZeFc+YcpelJ7qY9GK1+LEHiMAjKuk6m2nmbzCLRS0=
Subject key identifier: 0B:4E:5A:42:D1:DD:6F:B9:FF:E5:EE:6F:E5:F7:2D:F5:2D:9F:A8:97
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 48B0C32E778FBD5498546AFFD56DF779B1376124
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa
Signing time: Mon 31 Mar 2025 21:01:02 +0000
ROA not before: Mon 31 Mar 2025 21:01:02 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d034:8000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:b0:c3:2e:77:8f:bd:54:98:54:6a:ff:d5:6d:f7:79:b1:37:61:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 21:01:02 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=8b042a5dfd64d643a2d38c075f11f336929c0c36e04f7414481b6ccc901eec20, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:99:84:9a:0e:75:73:1f:92:b2:ad:5b:ec:b4:
bd:e9:6b:05:e6:fb:e5:00:0d:9d:c5:a5:09:3a:fb:
88:21:44:ab:f5:6e:5e:2f:9c:7a:f0:84:0c:1f:14:
d8:d7:c8:f3:ef:7b:ea:10:c6:32:8d:76:ef:3c:51:
6c:5b:4f:24:b0:a5:16:51:d6:1c:72:8c:7f:ee:d6:
4b:b2:ce:f3:e2:88:97:96:7a:31:ec:6d:13:21:3c:
82:72:90:0e:fa:62:d9:58:7d:43:17:e7:ee:32:93:
5a:96:38:96:59:99:ea:99:cc:76:8f:1d:69:2e:a7:
fe:2f:d6:2a:f8:91:b2:06:8e:8a:51:2a:84:d8:8a:
8d:89:63:6c:b6:13:ed:7a:38:18:21:3a:70:29:6a:
45:84:ef:ef:dc:4c:7a:d4:f1:8f:7b:d3:e5:20:e0:
a4:e6:bb:15:48:64:6c:bf:10:60:0e:3b:cd:ac:c9:
a7:e1:c1:11:f0:14:36:bd:81:26:cb:b5:b9:67:26:
a4:e6:67:a6:a9:21:a5:ef:80:d6:72:e3:8c:bc:34:
2d:a6:a4:6c:c2:7b:49:73:95:a8:53:87:3a:1f:0c:
d7:49:83:dd:84:a0:28:d7:fd:38:f5:77:e3:6a:e5:
b7:94:26:f3:1f:78:cf:d1:26:08:93:2e:bf:78:ed:
48:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4E:5A:42:D1:DD:6F:B9:FF:E5:EE:6F:E5:F7:2D:F5:2D:9F:A8:97
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/5f3054b8-54ee-4b8b-afc8-531f24d59fa7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d034:8000::/40
Signature Algorithm: sha256WithRSAEncryption
8d:a1:bb:a6:28:5a:20:4d:9c:0d:92:de:48:9a:5d:4c:c7:42:
4f:df:57:27:3f:3a:33:fa:76:68:d9:7f:63:41:f9:fd:cc:f2:
5a:ee:e2:03:48:f8:97:a9:b3:9e:44:fe:6b:05:a5:17:ee:cc:
43:3b:e8:bc:02:2b:70:95:bf:c6:4a:6e:6d:a0:e3:98:81:cd:
fb:73:ce:9d:34:96:45:38:6c:0e:c2:fe:50:ba:a6:91:c7:06:
a5:0d:b6:6e:79:2f:5d:15:d0:1c:9b:11:b2:b1:e9:cf:2f:ea:
3a:b7:72:ed:d3:fe:ff:9d:47:b3:db:47:c0:c7:65:d3:b2:dc:
d3:e4:48:69:a4:0b:3f:6c:88:e3:7b:11:00:9a:4a:62:4f:53:
18:c2:33:2c:74:98:b6:c8:bd:19:05:40:74:26:7a:af:bc:5f:
85:1d:1f:f2:de:75:10:ca:51:b7:9b:81:9a:80:78:b6:c1:20:
f6:7a:eb:7c:a9:49:f8:84:01:50:fb:e8:f3:b9:b3:ab:94:c7:
31:9f:2b:14:2f:e0:f2:11:cc:86:0f:1b:f8:d0:df:9f:0f:8b:
24:47:4c:50:f7:5b:e9:d6:72:bf:bd:2b:d1:29:4a:44:7e:1b:
99:c4:e3:fd:ba:59:9e:8e:f4:12:3d:21:1d:cf:79:ff:84:cc:
60:57:3b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net