Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76a60505-d74d-4741-a42e-97a09bb6b2a1.roa
File: 76a60505-d74d-4741-a42e-97a09bb6b2a1.roa (raw, json)
Hash identifier: 1ZWC2EdtZ5TDrZ3Pum3SbmpU3Niiy/SBG2Tg/ka490U=
Subject key identifier: C2:1B:9F:8D:95:C8:04:1F:6E:74:E5:57:3E:AC:DB:18:EB:C1:51:C9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 3891D6FDFFD723BDD1024C042EEEF64210E413C2
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76a60505-d74d-4741-a42e-97a09bb6b2a1.roa
Signing time: Mon 31 Mar 2025 19:40:48 +0000
ROA not before: Mon 31 Mar 2025 19:40:48 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:8080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:91:d6:fd:ff:d7:23:bd:d1:02:4c:04:2e:ee:f6:42:10:e4:13:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:40:48 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=0a0c7cd965eb223d8b15f25bef4f6ef268187fbf2ed3fc79b7faade54ab884de, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a2:eb:d2:c0:50:b3:0e:a9:c5:2a:38:f9:ac:
88:80:38:26:50:2e:da:a2:74:b6:f2:e0:7f:68:1b:
ea:0a:bd:58:30:de:9f:8c:ca:4a:9c:ee:a8:a4:f9:
1c:d7:39:15:78:cf:53:66:5e:07:fd:7c:80:39:38:
f0:0d:fc:1c:93:b1:94:2e:09:99:34:27:94:ff:3b:
30:24:06:a7:1f:74:b2:47:d7:da:05:ed:a4:72:0b:
db:98:08:ed:a3:68:13:8d:fe:3f:62:98:90:62:1d:
5d:67:60:5a:82:65:17:7a:0e:f5:df:3d:84:62:72:
59:a1:2e:28:da:05:81:c5:ae:5f:51:0b:d9:0c:a5:
50:c2:7b:13:54:cb:3d:d8:99:fd:57:b3:f7:13:1e:
79:0e:9d:34:eb:a9:d5:5b:89:c3:81:85:e3:4d:38:
c5:a4:ad:de:9d:68:0b:9b:2e:97:b3:00:45:83:ed:
d8:f7:52:24:0d:06:5b:ff:47:5c:ea:63:83:66:62:
cf:09:d5:77:ed:09:4d:e9:8f:cb:20:e0:2a:0e:74:
37:66:34:aa:99:45:54:60:c6:aa:48:fc:38:99:6e:
92:14:e8:88:b2:39:d4:d9:c6:0f:b3:c5:9f:48:a4:
2b:36:32:84:37:a4:ab:fc:fd:0d:23:d2:64:7b:d4:
72:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:1B:9F:8D:95:C8:04:1F:6E:74:E5:57:3E:AC:DB:18:EB:C1:51:C9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/76a60505-d74d-4741-a42e-97a09bb6b2a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:8080::/48
Signature Algorithm: sha256WithRSAEncryption
76:5e:5a:65:49:3d:5b:a5:43:49:53:d7:e2:7b:9b:d0:d9:e3:
4a:49:39:d2:39:de:f2:26:d9:ee:c8:7e:b9:01:95:5f:95:46:
df:bb:ab:6b:26:60:42:7e:db:27:b0:66:50:7a:b7:dc:37:b5:
1e:c9:eb:63:12:23:58:e1:a9:8f:a7:1f:5e:23:41:d8:69:7a:
7f:a3:99:8d:2a:bf:17:09:90:e3:53:69:a2:1e:0b:77:ba:8f:
02:c2:76:08:9f:f6:99:47:9e:6b:1b:78:df:fe:26:91:6d:6f:
dd:fb:1e:76:0e:71:23:f4:e2:ea:97:4c:25:81:ae:3c:0a:57:
72:d1:02:51:5f:38:89:8f:1a:b3:9a:54:ff:cc:38:7f:40:fb:
27:cb:d2:e3:0f:8e:aa:b2:96:a6:72:cc:b1:78:4f:8e:7e:0a:
90:d6:dc:ab:97:90:42:11:67:af:82:47:6c:04:df:5d:91:a3:
40:23:4e:76:22:58:0a:4f:67:c4:7f:b3:51:60:18:02:85:55:
db:e6:1c:45:e6:99:48:60:33:4b:0d:a2:0c:a6:f7:6f:51:0b:
65:2a:bf:3b:4c:c7:74:1f:99:14:05:86:4d:18:11:0a:76:75:
43:81:0d:42:25:3e:4a:76:70:54:13:e0:b7:4e:4b:1e:e5:64:
1c:a4:2f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net