Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6fbb7303-c6a4-43da-bcdb-d26ab78c366e.roa
File: 6fbb7303-c6a4-43da-bcdb-d26ab78c366e.roa (raw, json)
Hash identifier: YAns/AX4n/b2K+H6Ukmk8ExvpRILQESjpJtl7Kp5u6Q=
Subject key identifier: 16:0D:5B:6F:A8:42:CB:04:AC:46:98:EF:29:39:7B:8E:F2:E2:AD:F8
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 337BA1EE852658E74E924575AA72FC1D5CC9E473
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6fbb7303-c6a4-43da-bcdb-d26ab78c366e.roa
Signing time: Mon 31 Mar 2025 20:00:05 +0000
ROA not before: Mon 31 Mar 2025 20:00:05 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:2040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:7b:a1:ee:85:26:58:e7:4e:92:45:75:aa:72:fc:1d:5c:c9:e4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:00:05 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=157321f3cada8fae13a5ae2aca967993d1f5071b342becd42fb3bda901f25bd7, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:85:86:2c:f2:a2:eb:58:5d:09:d5:0a:9a:
12:9a:d0:0d:90:d1:a7:26:36:52:2e:07:35:3c:0e:
46:cc:01:61:3d:ce:45:fb:65:3c:79:f4:a1:93:68:
74:1f:b2:98:34:ff:38:0a:e7:df:63:57:ad:d5:e2:
89:72:64:ad:80:35:b0:b5:80:a0:91:82:87:e7:9a:
ad:4e:14:f8:ee:7e:c9:7e:d5:e8:a0:ec:f2:b3:7c:
a6:11:6b:e8:85:6a:03:bd:cf:be:bd:90:90:c7:5c:
4d:d7:69:a9:27:1f:90:84:4f:82:b8:03:27:15:e2:
93:67:94:27:1b:d1:38:73:65:76:64:fd:de:90:2c:
12:d2:12:05:e1:41:c4:3c:99:24:18:22:66:e2:de:
7e:5a:38:ec:6b:d0:44:bd:f3:9c:ba:2f:a9:a6:ea:
a0:2a:67:5b:66:45:95:fb:6d:b7:a4:b3:e0:3f:63:
2b:4d:b3:d9:a2:2a:05:87:8f:ca:09:8f:93:2f:b7:
32:50:38:51:11:46:6c:4c:33:b5:31:2d:21:ee:41:
41:88:b6:64:28:2b:d4:49:4d:3c:ad:87:02:8d:0e:
be:a4:3d:1b:38:a4:0c:16:c8:f9:e1:72:d0:60:61:
8e:d5:fe:5e:c5:af:c7:4a:90:56:2e:2c:9a:0c:1c:
bb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0D:5B:6F:A8:42:CB:04:AC:46:98:EF:29:39:7B:8E:F2:E2:AD:F8
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/6fbb7303-c6a4-43da-bcdb-d26ab78c366e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:2040::/48
Signature Algorithm: sha256WithRSAEncryption
20:00:07:4b:65:c6:b6:43:ec:55:98:5b:f7:88:94:ad:43:a2:
70:08:2f:f6:28:fa:12:0f:91:2c:a7:5a:d4:08:65:09:d2:ad:
f1:f3:70:d3:db:09:95:5b:9d:81:d0:a2:af:ab:3d:19:9a:ea:
47:32:0e:06:18:4c:e4:16:35:61:b9:21:f1:1c:26:05:9b:79:
1d:89:61:2a:78:75:ac:59:fd:33:1f:e2:33:f8:64:19:6e:ce:
2c:be:c3:04:de:2a:97:4f:6c:31:98:3d:24:c7:50:52:49:f6:
ed:4c:20:a9:fe:2e:8a:8b:c8:f1:69:3d:3c:da:06:44:5a:37:
a7:da:39:74:c0:37:eb:35:a8:38:85:22:01:cc:dd:c3:83:cb:
20:a0:0b:6d:e2:ff:00:44:53:42:55:3b:75:d0:72:83:76:b7:
71:e2:17:e8:dd:26:18:ea:f4:40:0d:8a:c6:26:be:ad:c0:98:
bc:ec:97:31:2e:05:21:6d:01:7f:f5:8c:15:f9:cb:b3:39:f0:
ca:b2:d7:1a:e9:16:47:84:e3:ec:e8:6b:78:e6:1d:17:8a:f1:
b2:ab:1d:95:c2:28:6b:ed:a0:5e:c4:e8:2f:2a:13:d4:78:a8:
50:29:fe:de:4a:cf:b7:7c:12:83:38:55:e8:bb:24:1a:42:6a:
1d:ef:83:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net