Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7258ab8a-d51b-4c5a-b45a-d1e7d93c1d05.roa
File: 7258ab8a-d51b-4c5a-b45a-d1e7d93c1d05.roa (raw, json)
Hash identifier: svB4WONLJBEVlGI3Zl6pEGQ5qXNL+OYSI6cWCglgHCE=
Subject key identifier: 34:7E:0E:6B:A5:F5:20:ED:9A:BB:B8:65:BB:56:F6:DB:6B:D4:6A:F7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 299DA6DDCDFBDBE58F42D6233813557177E78E15
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7258ab8a-d51b-4c5a-b45a-d1e7d93c1d05.roa
Signing time: Mon 31 Mar 2025 19:00:55 +0000
ROA not before: Mon 31 Mar 2025 19:00:55 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:a040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:9d:a6:dd:cd:fb:db:e5:8f:42:d6:23:38:13:55:71:77:e7:8e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:00:55 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=7a8a8bcbe8cbd4a685dfdbc41b0e979d1f23976bc041c628d333fd6f8882d005, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:92:f5:ff:e2:92:8b:b4:a9:6e:49:b3:43:3a:
37:31:7a:22:fd:7a:a3:1f:37:81:22:9d:28:bc:65:
13:24:6d:6e:1d:3d:a2:ed:d3:58:0d:0c:a6:91:ff:
03:80:87:9c:e4:ca:bb:79:ff:a1:5e:f0:6d:46:02:
a0:38:f3:81:ad:8f:70:4f:94:38:77:0c:c2:63:ec:
66:9d:4c:60:41:ce:43:ef:eb:51:96:59:77:6e:ee:
d1:a8:87:f3:31:0c:99:21:33:b2:b9:b2:2d:67:51:
05:73:f5:ec:1b:ec:d3:4b:87:6e:0f:5b:2f:12:5c:
9a:d0:03:f2:d3:72:c9:dc:ce:0e:6a:39:61:4a:5f:
d3:ae:57:65:a7:ff:3a:9f:03:bb:d0:e8:be:77:b1:
2e:d9:bf:4f:02:6e:88:3a:f3:20:2c:4c:97:40:76:
4b:2e:1e:57:d8:11:3f:bb:d3:50:76:20:60:cf:ba:
ec:af:4d:62:ca:ba:da:ce:aa:57:5c:b7:27:9f:b5:
7d:16:ff:e5:cd:8e:a3:b4:a8:7a:a2:2d:3f:57:6e:
94:d8:36:54:53:86:7a:4a:49:06:31:b3:0c:cc:74:
7e:43:37:0e:dd:bd:b7:4b:b0:c5:ca:b7:53:bd:60:
f6:8b:da:70:25:02:9f:26:77:da:25:b4:fb:9c:81:
68:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7E:0E:6B:A5:F5:20:ED:9A:BB:B8:65:BB:56:F6:DB:6B:D4:6A:F7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7258ab8a-d51b-4c5a-b45a-d1e7d93c1d05.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:a040::/48
Signature Algorithm: sha256WithRSAEncryption
65:6b:dd:7f:1c:24:94:28:68:1d:5d:94:91:99:02:fd:0b:a1:
29:08:17:a1:f6:87:c1:e6:15:68:61:cc:b3:6f:e1:ca:88:13:
d6:21:9b:6f:22:6d:d4:5e:19:16:24:43:37:04:5e:b4:ff:33:
f3:80:65:63:23:64:80:15:19:38:d0:5c:d7:f0:ed:23:ec:aa:
82:57:c1:d3:69:1c:26:80:70:c3:a3:d6:4b:10:37:4a:01:c7:
25:6e:d1:d9:ae:62:60:65:93:a0:75:1c:b1:8d:56:63:71:af:
de:5f:50:c0:20:e2:56:4f:f5:6e:f8:a8:e6:4b:f0:92:cd:f6:
90:9a:06:48:55:4e:53:01:a8:14:11:0a:15:54:8e:a5:50:6e:
b2:56:f7:0c:85:a3:d9:2f:27:25:c3:8e:fa:20:d5:a8:cd:f8:
74:80:23:14:3b:7d:cf:69:b7:6c:d1:b3:aa:72:92:c9:2c:03:
c3:1b:ac:8b:85:01:a1:e7:3f:01:09:e8:ed:dd:a8:54:39:90:
2d:e8:2c:0d:e7:2a:d4:4d:c6:19:6b:91:0d:9d:da:5e:c3:9a:
8d:79:ff:eb:e6:65:26:5e:05:c4:65:e5:b1:9a:20:25:3f:78:
ca:9e:55:05:e9:29:c0:15:58:96:46:33:38:37:9f:28:b1:dd:
00:3b:34:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net