Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e3dd00a-f49d-46a6-b97d-d14ff1197f6d.roa
File: 6e3dd00a-f49d-46a6-b97d-d14ff1197f6d.roa (raw, json)
Hash identifier: R8PWgsPGoHdx9m46lt/Wupa3Z0SGJ7KzkrJb728yk18=
Subject key identifier: 64:26:8A:65:9B:F9:46:1F:E2:1B:7B:E0:49:92:83:45:17:41:E1:30
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 489E12D6A575A6C9F114FF2D94142B939D81CD72
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e3dd00a-f49d-46a6-b97d-d14ff1197f6d.roa
Signing time: Mon 31 Mar 2025 20:21:48 +0000
ROA not before: Mon 31 Mar 2025 20:21:48 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:e000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:9e:12:d6:a5:75:a6:c9:f1:14:ff:2d:94:14:2b:93:9d:81:cd:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:21:48 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=7c8cd06261b19f7db315f872be33a21f99e0dbf938a115cf0a4da127dfa09f59, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:20:78:07:aa:91:47:71:ac:2b:a3:6a:2d:b3:
7e:ab:63:1c:a8:ba:f0:26:fc:27:17:f4:e0:96:45:
4d:eb:48:da:24:05:98:ab:12:76:45:72:f7:6b:57:
e9:e6:2c:f6:ae:4e:c5:a1:99:11:b8:e7:94:5a:31:
c1:e9:a3:1b:b2:a7:da:36:a1:58:ad:76:4a:bc:88:
bb:68:81:aa:82:f0:18:ed:42:66:97:8f:df:e6:a4:
0f:54:4c:08:47:31:e6:22:51:64:46:d5:db:79:c0:
c3:c8:5f:ba:c0:a6:a2:ea:19:fe:19:46:9f:87:a3:
2c:ce:3a:fb:5b:91:de:b4:4b:0b:02:c0:c3:09:24:
00:b1:4f:cd:ab:84:63:16:60:67:df:f7:70:fc:fc:
a9:02:25:7a:9d:87:d2:ae:5d:91:5a:a6:dd:79:90:
3a:35:a5:4b:2f:1c:d2:96:f7:eb:2c:66:be:61:5b:
1d:c7:fc:23:34:0a:98:8d:b1:9a:85:10:10:13:03:
b2:a7:bc:1e:25:bd:b8:06:3a:38:a0:d1:2e:8d:64:
de:7d:5f:9f:58:1e:bd:15:8a:20:b5:ee:da:57:4c:
2d:74:74:f0:c1:c4:3c:20:75:f8:0b:a7:44:1a:44:
45:3d:84:c1:7f:1b:b5:e9:71:81:a7:1f:40:ce:47:
b8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:26:8A:65:9B:F9:46:1F:E2:1B:7B:E0:49:92:83:45:17:41:E1:30
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6e3dd00a-f49d-46a6-b97d-d14ff1197f6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:e000::/40
Signature Algorithm: sha256WithRSAEncryption
bd:bb:e0:5f:f3:85:68:8b:c3:e0:7e:53:c1:f7:a0:99:b0:d0:
8c:42:19:fa:bb:3c:18:03:da:2c:d3:65:83:96:d6:3d:d1:d8:
d8:45:df:bc:1e:a1:ac:69:ac:73:a9:51:14:37:f0:95:d8:8f:
dd:ff:45:4a:6b:9f:b8:40:dc:61:4b:69:45:25:1c:6c:95:f8:
7a:a4:28:e6:1c:6d:d0:24:ae:fb:3a:e4:a5:aa:d0:42:8f:c0:
a0:e3:ef:11:09:3b:cc:d3:84:c7:7b:3d:ad:f1:41:87:5b:a8:
0f:25:b4:6a:ac:3d:41:f9:19:ab:7a:f4:ce:3f:41:61:17:01:
31:cd:5a:0b:3b:72:d9:6d:db:98:15:61:02:7a:da:c3:64:6c:
9b:03:54:92:39:d7:04:d7:bc:71:d1:0f:64:95:93:16:64:08:
2c:d5:3e:30:4e:5b:14:0d:35:e7:3c:ba:56:2b:88:5a:e2:0b:
61:65:a5:55:60:ac:08:bb:4f:2e:12:72:8f:37:a0:9c:51:3b:
3c:73:bd:84:9d:b9:33:26:e3:fb:a1:39:f1:a7:cd:04:40:7c:
f0:f7:aa:41:18:fa:e6:bc:c6:64:75:67:0c:0a:4a:ff:ae:82:
92:63:a7:4a:a7:4e:6b:f0:be:e2:37:0a:41:d4:a7:b9:81:f8:
24:b8:38:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:12 2025 by rpki-client on console.sobornost.net