Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/98cf55c5-bb4a-46a5-a667-901b1a2ffb4f.roa
File: 98cf55c5-bb4a-46a5-a667-901b1a2ffb4f.roa (raw, json)
Hash identifier: CkZrS9rqvdkp2JDQDewrj485YwXu3i7RftKLJFKNULs=
Subject key identifier: 81:E1:93:60:55:8E:CB:F0:75:66:06:FD:8A:D8:65:36:04:C8:E8:1E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 7840C63665D26A9E5636E5B85773F473CA4CE112
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/98cf55c5-bb4a-46a5-a667-901b1a2ffb4f.roa
Signing time: Mon 31 Mar 2025 21:11:29 +0000
ROA not before: Mon 31 Mar 2025 21:11:29 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d015::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:40:c6:36:65:d2:6a:9e:56:36:e5:b8:57:73:f4:73:ca:4c:e1:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 21:11:29 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=1e1d620e85dd1e376d94b2426f7c535e9063264ce413179a2f4be35d94b0283a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a4:a8:59:63:64:d1:f1:dc:01:97:c4:bf:55:
b9:03:6b:e7:30:da:0b:cd:bb:ae:c9:f3:d8:da:57:
7d:36:47:c2:ae:91:95:f6:ff:57:5d:7c:ff:d9:5d:
c2:21:59:b6:1a:bd:9f:56:75:22:42:1f:c3:6c:6f:
bd:f8:c9:0d:74:bd:7c:a1:51:e3:69:55:97:cf:ff:
9e:3c:8d:37:02:ad:e3:ee:95:7d:35:c1:c4:f6:96:
e1:a6:77:4f:f5:d5:d6:7a:4a:78:77:27:59:c2:4f:
26:d8:16:de:27:e6:0f:40:f7:9f:15:71:8e:17:91:
74:fd:6b:a7:92:2b:16:80:61:84:f5:7a:42:20:b7:
d8:8f:48:05:d0:23:ac:da:af:6f:72:47:2d:e0:71:
ab:11:c0:ea:1c:5a:61:21:13:d2:68:23:bb:f3:f7:
fa:3f:72:30:f4:66:ae:c6:80:48:e0:c1:36:72:1c:
31:28:10:42:dd:71:7b:88:be:88:4f:43:9e:a8:9d:
eb:67:50:6c:77:56:46:97:b4:27:b2:1d:d0:34:c0:
2e:09:e6:d0:88:1b:6e:d9:86:fc:dc:ed:26:a7:45:
79:b2:cd:10:b4:98:65:fb:e0:af:e6:65:2f:77:f0:
ee:c2:f2:ba:08:9b:b1:f9:6d:a7:e9:2c:22:a8:68:
b2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E1:93:60:55:8E:CB:F0:75:66:06:FD:8A:D8:65:36:04:C8:E8:1E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/98cf55c5-bb4a-46a5-a667-901b1a2ffb4f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d015::/36
Signature Algorithm: sha256WithRSAEncryption
a2:ba:d0:57:ee:09:bd:5b:67:f4:f9:b5:bd:22:56:ef:b1:86:
5f:42:1c:8a:06:35:72:6d:a4:05:e2:6d:f7:52:8a:cb:bf:f4:
8a:75:a0:c2:38:94:af:4a:4b:5a:30:99:aa:56:79:f9:92:2e:
b1:01:af:76:3c:00:35:b0:b1:76:47:3a:97:b6:8b:16:ec:d2:
31:82:d1:fa:33:6e:65:3a:13:75:86:3b:2d:36:50:64:d0:97:
83:25:79:e0:89:53:4b:12:04:b1:b2:f1:e0:a2:c5:51:1a:8a:
bd:c0:22:f6:d4:ad:87:16:aa:f4:bd:3e:25:f8:1a:1a:d4:c4:
7f:35:98:2f:e2:d0:cb:56:d2:c5:70:fb:63:21:b8:2b:14:d1:
0b:79:2a:ac:fc:67:c9:b1:0f:72:ea:61:1c:9c:25:98:4a:a4:
50:f9:a2:1c:ac:84:24:13:a3:68:8b:8c:b8:36:02:d9:9b:a1:
7d:e3:76:80:70:92:6f:da:62:ea:81:cf:3b:e2:e2:a0:0e:f8:
0e:74:0a:9d:d4:36:db:c9:8d:43:3e:d6:c4:e9:be:f8:a5:2a:
59:a7:0d:80:02:89:76:73:e2:9b:f9:48:0b:68:03:94:c6:40:
13:13:ab:9f:dd:c2:cd:49:98:90:4a:7e:2c:07:37:09:62:c1:
83:3b:7d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net