Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/786da755-a3b1-48c5-b605-b8cfe294d18b.roa
File: 786da755-a3b1-48c5-b605-b8cfe294d18b.roa (raw, json)
Hash identifier: Mn35iNY6J1BEpPPFo6t2BRdEb3AUFDQQ6YbVgugx690=
Subject key identifier: 39:99:8D:28:3D:13:8A:F1:8E:F4:B2:E6:36:56:96:B1:70:6F:B8:E2
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4A7A2AD07A38BA6B3383D463DE3BE77ED0ABB399
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/786da755-a3b1-48c5-b605-b8cfe294d18b.roa
Signing time: Tue 08 Apr 2025 15:00:54 +0000
ROA not before: Tue 08 Apr 2025 15:00:54 +0000
ROA not after: Tue 13 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2a05:d040::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:7a:2a:d0:7a:38:ba:6b:33:83:d4:63:de:3b:e7:7e:d0:ab:b3:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Apr 8 15:00:54 2025 GMT
Not After : May 13 23:59:59 2025 GMT
Subject: serialNumber=0e308a3b064160280a623f9e98e281452c2e8976b912cd9c126eb4704006d3fb, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c5:05:b0:2b:45:48:69:d4:60:79:c3:86:91:
cf:b7:fe:32:82:7b:f7:10:6e:23:a4:02:d3:b4:74:
d2:51:3d:aa:1d:5a:9d:03:37:d6:46:47:aa:d0:87:
88:24:c1:8f:59:35:26:db:ce:6c:65:6b:83:ce:f4:
b4:13:fa:7c:09:ea:56:fa:6a:2e:20:7f:d8:11:cb:
16:78:50:58:47:4b:81:d3:3e:07:8a:f0:1c:ee:9f:
b4:a3:35:5f:a9:3d:0a:f3:6a:b6:03:8b:53:8c:82:
9a:34:51:1f:6b:41:5f:d8:38:c9:2b:12:35:71:5d:
18:bd:26:fc:89:7e:13:ac:14:a0:2a:e6:09:77:ac:
a8:5b:e4:cf:00:5b:95:6c:2f:55:63:fa:1b:9c:f2:
7a:33:28:47:4c:2e:63:d3:be:8f:92:7e:ee:59:bc:
12:a2:16:c8:41:9e:6d:63:bc:c3:3a:93:41:bb:d5:
bb:71:db:20:f8:5f:32:f3:b4:85:bb:dd:f0:ad:8d:
e1:f4:26:ad:07:f9:03:7b:12:74:25:51:f7:6e:37:
70:cd:ce:8e:47:23:1c:18:01:ff:38:e8:75:05:37:
da:6f:b6:ab:bf:ee:07:8f:98:4c:e5:b5:bd:fd:d8:
f6:60:d2:60:f2:23:f2:d7:ac:7b:de:d7:e9:24:86:
d4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:99:8D:28:3D:13:8A:F1:8E:F4:B2:E6:36:56:96:B1:70:6F:B8:E2
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/786da755-a3b1-48c5-b605-b8cfe294d18b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d040::/32
Signature Algorithm: sha256WithRSAEncryption
48:59:fe:ef:c2:74:f4:07:81:c6:6c:d5:25:d8:a1:e1:a1:ae:
f2:18:f2:93:95:02:0e:a1:91:aa:f4:4e:6a:22:a9:92:5e:fa:
78:dc:08:5d:a7:da:01:62:d1:7b:fb:e8:64:73:1f:55:96:ed:
d1:53:6d:63:27:6b:79:cb:82:29:57:61:1f:7f:86:73:4e:1e:
78:ff:d3:c1:58:77:67:2f:52:c5:a3:a9:67:1c:36:8b:3f:de:
57:8f:e0:ad:16:fe:7c:03:53:f0:4b:9e:9d:38:21:a3:1c:b1:
eb:4a:7e:75:58:a4:ac:0f:89:53:4c:58:a8:52:83:3a:84:9e:
aa:aa:cf:4b:d4:20:4d:42:30:bd:af:f2:7a:ad:e9:30:57:25:
c7:8a:1b:dd:0b:f5:9a:d6:e0:9f:b5:9f:c4:b0:cb:6c:fc:66:
e0:6b:c8:c6:49:e8:41:ba:74:95:6b:3e:a2:8d:cd:fc:ef:ef:
5e:99:ff:fe:1d:af:af:a9:63:33:a1:25:9e:33:d4:91:ab:64:
6f:85:77:ec:a6:0d:3d:a9:82:49:0c:05:ce:98:8a:ee:aa:a6:
22:8c:9b:44:93:cb:1c:d7:7d:e0:f4:1f:70:b3:14:e2:a2:a8:
41:03:db:47:c3:c4:67:df:81:d9:8d:9b:c8:68:7b:66:db:81:
fe:b0:28:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net