Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
File: 6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa (raw, json)
Hash identifier: ZuGx4AFLsPGB/yUvp7R4CHF6IqkLEFGt06wgj0RkFH0=
Subject key identifier: B1:65:2D:9B:8A:EE:40:E3:C3:7F:09:E5:1B:04:DF:0B:31:AA:1F:E4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 2E8FFC6FEF110C342A77B7DDA6A1E02A3DE8E33F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
Signing time: Mon 31 Mar 2025 20:40:22 +0000
ROA not before: Mon 31 Mar 2025 20:40:22 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d058:c000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:8f:fc:6f:ef:11:0c:34:2a:77:b7:dd:a6:a1:e0:2a:3d:e8:e3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:40:22 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=d6f6b76cca6b81722e990f3970572eeff50e0d78e725350eaa1f22aee501dc1c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ee:d4:27:fd:fb:53:ed:67:0c:56:4c:ff:61:
ee:02:c9:69:84:78:ad:3f:64:8e:e4:ed:23:c8:00:
1c:86:b1:0d:81:db:4c:32:0e:b8:5e:47:31:4a:71:
c3:20:0a:06:ce:13:12:2a:c7:35:2c:ca:a3:5a:60:
5b:f7:a4:d8:c5:08:3c:77:c3:10:01:3a:5f:c1:95:
57:ab:e6:e0:6f:eb:7c:b5:65:d9:b8:8b:3b:1a:66:
b9:f7:0c:03:57:fd:d2:c6:d6:eb:23:0b:30:19:42:
26:ea:33:bf:c3:6c:1f:ed:c7:17:c0:52:e1:af:02:
fa:83:5b:74:24:d5:98:a3:f2:4c:98:96:79:45:68:
e0:6f:a4:99:35:28:2b:dc:ed:36:ac:af:af:18:8c:
b2:4d:f6:a8:73:7a:bb:86:b3:04:47:94:70:ee:2c:
53:3a:37:7c:40:6c:72:85:71:26:a0:c7:da:9c:b9:
ad:26:2d:6b:f7:6d:72:e3:63:1d:7d:b9:6d:c3:0a:
5c:3d:df:ea:fd:e7:f2:37:de:a7:62:76:98:65:ca:
f3:8e:5d:75:ac:60:81:d4:53:a6:16:ec:4d:98:6d:
83:25:2f:6e:0c:68:f7:4f:41:da:f1:25:05:e9:4a:
40:1d:bf:8e:1b:51:34:cf:f9:99:92:80:f4:5e:51:
1a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:65:2D:9B:8A:EE:40:E3:C3:7F:09:E5:1B:04:DF:0B:31:AA:1F:E4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee424d6-a067-4fb9-a82e-05890cf8a88f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d058:c000::/40
Signature Algorithm: sha256WithRSAEncryption
06:a0:23:a4:91:05:f1:74:a9:66:38:57:bb:74:b9:ff:e5:b9:
33:8e:23:bc:ba:ef:32:fa:ea:ec:2b:a4:2e:39:39:9d:8f:02:
e6:39:2d:28:6b:4f:f8:35:41:07:9f:53:42:19:f1:31:9b:6d:
ff:9a:8f:b1:92:fd:57:8a:21:ed:b8:1e:ad:c2:49:b8:78:bb:
b1:52:7a:4f:d7:05:08:e0:41:8d:f8:c5:89:96:c0:62:c5:11:
7a:66:72:18:89:f8:57:a7:e4:ad:af:3e:bd:4c:c4:64:f5:4e:
de:0a:48:ef:8a:bd:de:29:a0:e3:26:1d:89:5b:d1:a3:cb:6a:
3f:54:f6:ba:b9:43:6c:f1:8a:c2:4b:28:e9:33:a5:59:39:16:
05:b1:12:7b:ff:fe:6f:9a:37:03:26:39:e9:c1:58:13:13:9f:
f3:8c:0e:6b:d4:9f:ea:3f:3a:3a:89:10:ab:18:3c:b4:ac:6c:
91:0f:a0:a9:07:41:e3:9d:bc:fd:ad:84:a8:5e:02:a1:19:ea:
6b:cc:52:dc:56:06:bc:f0:07:17:75:cb:1e:4f:ac:14:3a:60:
62:92:90:a3:80:81:b3:01:0a:5e:3d:48:d1:72:de:cd:67:12:
54:48:cf:c6:ac:60:d3:f7:e4:62:69:96:60:79:d5:43:02:b9:
f5:fc:ac:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net