Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70cd2bba-880a-4bc9-8654-d2b564e3cb3b.roa
File: 70cd2bba-880a-4bc9-8654-d2b564e3cb3b.roa (raw, json)
Hash identifier: JieBW9RVe1xSetL2jg5SFdYaZDwh5s1V3OrJwfHZ4Sk=
Subject key identifier: 8B:1E:EE:5B:66:8D:D8:99:D6:93:32:02:AE:73:D9:49:8E:7B:EC:AF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4255E5F9B96B7DA59C8F1F31C19FA7A74BE6D046
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70cd2bba-880a-4bc9-8654-d2b564e3cb3b.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:8000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:55:e5:f9:b9:6b:7d:a5:9c:8f:1f:31:c1:9f:a7:a7:4b:e6:d0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=1ddbfd493a8d7e653c7060f0b3fd9cdaccc3c60b54d58d3596124431d6b446c3, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:87:74:1b:d5:9e:50:fe:f1:49:ea:db:c8:4c:
2c:ad:77:42:3b:67:ee:d5:c0:4e:4c:39:79:b5:84:
a9:87:9a:da:6e:0b:36:c6:8e:d8:92:e3:e6:dd:fb:
fb:58:ac:cc:66:36:1e:59:2d:83:9d:b5:30:22:f4:
8c:89:4c:26:ed:0f:28:45:7f:df:dd:7f:0a:6b:df:
3b:be:3c:88:cf:60:59:ef:bc:a2:72:69:97:79:32:
60:71:9a:b4:f6:6d:15:c6:2a:38:62:ae:12:8d:b7:
81:15:81:6d:af:f4:1a:12:c2:e2:46:42:51:76:b5:
5a:88:8f:5b:74:3b:b8:35:66:49:93:cc:f1:84:5b:
c4:44:a7:50:fe:d1:50:b5:f5:f2:1c:e1:70:22:c9:
69:d7:ed:85:ab:a8:ef:c1:ff:bf:0b:27:b7:ed:d4:
fa:f1:77:12:da:a9:af:cf:d5:97:00:2e:e5:a1:db:
a2:ec:47:0e:0c:df:e6:d8:c2:65:7b:db:5d:71:4a:
9f:1c:d0:26:9d:b2:24:d2:8b:b7:9b:dc:de:0e:a9:
bf:0f:7a:6a:ac:59:6b:17:cd:7c:f4:3c:ad:64:79:
b9:91:cd:93:d2:b9:56:27:94:9c:53:56:94:ff:d7:
02:f7:29:15:2c:2c:2a:a6:b9:a1:41:6b:46:14:bf:
10:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:1E:EE:5B:66:8D:D8:99:D6:93:32:02:AE:73:D9:49:8E:7B:EC:AF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/70cd2bba-880a-4bc9-8654-d2b564e3cb3b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:8000::/40
Signature Algorithm: sha256WithRSAEncryption
90:38:46:de:6c:41:09:e0:16:f9:59:7a:8e:b4:24:b7:25:6f:
85:e7:e4:78:6b:1b:fb:9c:ff:f0:0f:3d:5a:16:f3:11:59:a8:
5d:86:24:57:92:41:28:fe:2c:bc:2f:ee:12:a3:f4:99:85:5b:
19:aa:ef:61:66:bc:4e:89:68:e0:83:ae:7f:ad:6d:2a:56:a1:
30:3d:73:55:45:a5:de:a2:ce:64:c9:80:c5:c6:2b:7e:ce:49:
c4:2f:73:d7:c8:b6:79:b0:a4:b9:fa:47:33:3d:97:62:44:a0:
ce:80:a0:3d:7f:bc:aa:06:91:bc:fd:26:61:f9:fb:a8:1b:d5:
61:04:31:b3:84:73:56:c3:2e:f0:a6:c5:5d:8f:4d:1f:02:13:
06:ec:43:36:8d:91:4c:fd:d9:6d:75:a4:4f:b6:13:bf:ee:fa:
56:ac:d9:14:cb:8b:42:17:a5:92:60:db:53:88:37:e2:d2:59:
36:9a:8c:48:80:c5:dd:6d:c5:7c:a3:38:a4:9b:63:da:72:06:
a2:2a:6d:fa:34:8e:07:6d:a3:f2:6f:2b:e9:ea:7a:57:24:dc:
65:4c:c6:87:d6:5a:7d:55:8c:79:79:1d:ac:27:8f:92:0e:44:
aa:14:43:32:c7:ad:6f:ce:ea:02:48:58:c0:57:85:11:0d:c9:
49:7f:89:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:17 2024 by rpki-client on console.sobornost.net