Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
File: 7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa (raw, json)
Hash identifier: ZqbDKk+OKJFml2DWNaIWGLzOCMqUGgHJ2s1gPioMUm0=
Subject key identifier: FE:EA:67:A7:F0:21:B4:6B:BB:35:32:91:5C:55:FC:8A:C1:57:14:C7
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6A2D53A348E3F404A7E717548E42FF74AF12B3F8
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
Signing time: Mon 31 Mar 2025 21:10:43 +0000
ROA not before: Mon 31 Mar 2025 21:10:43 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d012::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:2d:53:a3:48:e3:f4:04:a7:e7:17:54:8e:42:ff:74:af:12:b3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 21:10:43 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=b05941114c0e10b714b2cebb1ba82565d8eb285766cfc23a355ce8f802d4908a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:06:11:52:a1:e3:c3:2a:61:56:24:a5:b7:ae:
61:75:6e:6c:86:43:92:20:27:1d:60:ed:f1:76:28:
a2:b6:73:1c:4f:df:44:b8:b0:4e:e7:12:65:44:32:
62:88:6d:20:cf:f2:96:9c:d2:b6:d8:a6:c0:d6:e2:
51:39:6d:ef:98:bc:d1:f9:fc:d7:cf:b3:59:f4:7d:
62:aa:27:cc:d9:83:3b:e7:90:e7:c9:67:32:f3:37:
36:e7:50:b6:0a:1e:8c:4e:2a:ee:63:57:5d:01:50:
c2:70:d9:e5:87:fd:9b:c1:5e:c5:68:fd:1e:e1:9e:
23:54:ea:c5:09:9f:a2:1b:ca:57:79:83:ec:95:3b:
71:70:a0:8b:1d:a7:22:52:98:99:1e:ae:b0:da:d0:
a9:4c:0e:f9:ba:16:85:ae:14:87:dd:11:e2:05:92:
d4:81:2a:a4:25:f4:94:c2:20:79:80:11:58:8f:d8:
fd:09:3b:bc:b9:1f:47:12:2f:07:9a:2e:0a:22:31:
85:04:49:c8:a6:6c:8d:86:3c:9f:32:2b:7c:41:44:
c1:45:d8:4d:7c:9d:16:6e:46:01:91:ca:4c:14:ea:
c7:37:87:dc:6f:e8:cc:29:de:c6:c2:a0:ea:9a:b8:
07:c1:41:78:3e:21:b1:66:f5:59:37:cf:85:b5:14:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:EA:67:A7:F0:21:B4:6B:BB:35:32:91:5C:55:FC:8A:C1:57:14:C7
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/7df76649-dcc0-4f8c-be6b-13fca27ec4f2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d012::/36
Signature Algorithm: sha256WithRSAEncryption
2d:a5:ef:f4:16:5d:bc:23:d8:dc:eb:27:c1:50:22:24:25:ef:
e3:65:20:14:b1:c9:a6:9b:b1:6c:10:b6:b0:06:7c:33:0f:46:
ed:de:dc:c7:ce:e5:63:8d:b4:80:de:d6:ce:11:41:c6:1f:bb:
89:8f:98:18:2e:16:9d:c8:72:df:ef:de:88:1f:1e:27:56:5a:
84:62:30:d8:df:35:45:31:5b:e8:95:5c:d1:22:cd:2b:15:3e:
25:9d:dc:b8:46:92:67:80:f8:d1:08:a4:30:18:47:16:94:4e:
f5:82:e3:6a:f9:09:e7:e9:b0:f2:7b:d4:3d:9f:06:0e:b1:0d:
28:67:90:4c:09:df:6e:08:23:77:89:3c:55:b0:16:58:ab:bf:
99:11:77:46:f0:89:67:3b:e0:f0:e7:18:d2:b1:99:4b:3b:8f:
5b:3e:97:30:f4:3d:54:f2:3b:eb:81:8d:96:c3:69:10:21:03:
0d:5a:f5:ca:59:d5:6f:5a:b8:09:94:dc:69:fb:b0:64:bc:22:
13:81:99:e8:c5:c4:c7:23:a9:ee:1d:3c:99:a7:10:2e:30:c1:
5c:4e:6d:3e:45:02:ac:d6:7b:ad:bd:22:d4:e5:3e:70:e2:10:
d0:64:3e:3a:2a:3c:2e:e8:d1:8d:9b:30:85:95:31:68:ee:53:
a4:52:5d:34
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUai1To0jj9ASn5xdUjkL/dK8Ss/gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMzEyMTEwNDNaFw0yNTA1MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQGIwNTk0MTExNGMwZTEwYjcxNGIyY2ViYjFiYTgyNTY1ZDhlYjI4NTc2NmNm
YzIzYTM1NWNlOGY4MDJkNDkwOGExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJgGEVKh48MqYVYkpbeuYXVubIZDkiAnHWDt8XYoorZzHE/fRLiwTucSZUQy
YohtIM/ylpzSttimwNbiUTlt75i80fn818+zWfR9YqonzNmDO+eQ58lnMvM3NudQ
tgoejE4q7mNXXQFQwnDZ5Yf9m8FexWj9HuGeI1TqxQmfohvKV3mD7JU7cXCgix2n
IlKYmR6usNrQqUwO+boWha4Uh90R4gWS1IEqpCX0lMIgeYARWI/Y/Qk7vLkfRxIv
B5ouCiIxhQRJyKZsjYY8nzIrfEFEwUXYTXydFm5GAZHKTBTqxzeH3G/ozCnexsKg
6pq4B8FBeD4hsWb1WTfPhbUU4ckCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBT+6men
8CG0a7s1MpFcVfyKwVcUxzAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
N2RmNzY2NDktZGNjMC00ZjhjLWJlNmItMTNmY2EyN2VjNGYyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoF0BIA
MA0GCSqGSIb3DQEBCwUAA4IBAQAtpe/0Fl28I9jc6yfBUCIkJe/jZSAUscmmm7Fs
ELawBnwzD0bt3tzHzuVjjbSA3tbOEUHGH7uJj5gYLhadyHLf796IHx4nVlqEYjDY
3zVFMVvolVzRIs0rFT4lndy4RpJngPjRCKQwGEcWlE71guNq+Qnn6bDye9Q9nwYO
sQ0oZ5BMCd9uCCN3iTxVsBZYq7+ZEXdG8IlnO+Dw5xjSsZlLO49bPpcw9D1U8jvr
gY2Ww2kQIQMNWvXKWdVvWrgJlNxp+7BkvCITgZnoxcTHI6nuHTyZpxAuMMFcTm0+
RQKs1nutvSLU5T5w4hDQZD46Kjwu6NGNmzCFlTFo7lOkUl00
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net