Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa
File: 6ee98048-5141-4b16-8b8c-269a397f53ce.roa (raw, json)
Hash identifier: /NS01ZrXT2TLthkVwy/o7C49vGfDQQJhEavZzqDHflg=
Subject key identifier: 6D:37:20:54:C2:D7:72:51:82:0C:2E:18:61:11:D0:58:1D:87:A1:5F
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 67B15C4C52E62914C0E4BB3EAE522378ADC4F976
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa
Signing time: Mon 31 Mar 2025 19:30:10 +0000
ROA not before: Mon 31 Mar 2025 19:30:10 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:4080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:b1:5c:4c:52:e6:29:14:c0:e4:bb:3e:ae:52:23:78:ad:c4:f9:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:30:10 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=b2ce300266b2b1dfccd4e9fe2af5d5f05e8b0b52d8176f1301c1d52bcc27b57b, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6a:dd:86:0a:5a:8e:ab:ad:50:f2:2f:e5:71:
96:cf:63:91:2a:11:cd:cf:7b:38:a0:41:30:e7:6a:
c6:4f:ee:96:b8:fc:c6:bc:c9:06:da:96:2a:41:58:
86:e1:ff:60:e8:35:d1:e9:47:91:77:33:c3:12:2b:
16:7e:5a:16:44:5a:e6:a2:10:f0:32:46:fe:79:94:
73:d3:51:25:1c:af:52:02:84:fc:c2:5b:4e:d5:5c:
54:b8:ef:c4:d2:c4:47:4c:49:ec:92:f4:a7:1f:a7:
52:b0:1b:96:e8:7b:ab:7b:53:38:bc:09:f1:94:74:
1d:94:db:fd:f7:6d:58:b3:6b:fc:8d:2f:77:c3:3f:
05:71:8f:41:e1:5d:d7:d3:62:27:3c:fb:18:be:d8:
3d:c4:57:37:ef:15:bd:b4:d5:1b:90:77:e8:09:ca:
43:4f:c1:16:43:bc:f2:78:7e:0e:3e:1d:81:5b:01:
1a:bf:f0:5b:b6:ee:7d:80:ee:a3:58:be:42:05:45:
69:50:6f:e8:d1:e2:92:c6:aa:c9:8d:a4:5d:90:73:
35:71:53:c4:cd:61:63:6a:9b:cf:06:ab:97:83:f9:
67:c6:b6:20:4f:a5:7b:48:0b:5a:e8:3e:9e:d3:1a:
25:aa:e0:3c:b5:71:49:2b:f0:f5:c5:ab:30:91:1f:
ed:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:37:20:54:C2:D7:72:51:82:0C:2E:18:61:11:D0:58:1D:87:A1:5F
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6ee98048-5141-4b16-8b8c-269a397f53ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:4080::/48
Signature Algorithm: sha256WithRSAEncryption
ae:26:82:e2:57:2b:74:2b:c3:a6:98:89:f2:7d:a5:8e:ae:2b:
13:6a:a4:82:12:47:e3:e3:7e:d1:ee:9e:84:d4:55:d2:90:88:
fd:d5:88:7c:57:22:cb:8e:46:75:6d:c0:aa:c5:79:fb:64:37:
f6:9e:09:c8:21:0f:16:ba:01:37:6f:87:e3:84:ba:1e:be:5e:
ba:f9:14:54:06:8d:cf:cd:d3:bf:66:e5:f3:8f:49:56:e2:2b:
51:7c:1d:e1:78:8e:8b:1e:17:bd:3a:bb:f3:30:28:ad:0f:16:
a9:64:64:0a:88:8d:bf:b3:95:e3:46:24:72:b0:37:af:29:ff:
72:ba:b3:49:b4:f6:f5:72:34:97:75:76:80:78:4f:f6:f0:52:
d1:42:21:d5:3a:c2:54:fe:fe:74:eb:8e:ac:9a:20:84:a9:77:
79:63:8a:45:8b:76:72:7c:66:4b:71:6a:da:86:5f:bb:33:04:
06:13:fa:de:58:c0:e9:be:94:ed:6a:15:2f:05:27:0f:07:b0:
79:6a:a2:b6:87:ac:28:22:8f:f5:5b:d4:ac:99:ee:de:6b:8c:
62:cd:f2:82:cf:1f:02:f4:6d:ab:ac:04:fd:8a:de:0f:de:85:
12:3d:3f:cf:13:aa:55:f3:51:4d:45:e8:4b:44:39:bb:40:34:
7f:9d:6e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net