Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
File: 9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa (raw, json)
Hash identifier: aEOuV5lxk3AP75TLbXypvDM+kKeApe/tIiahHvY5WtE=
Subject key identifier: 2A:8C:6E:77:F7:A3:F6:C9:4E:00:92:61:90:CA:2F:C4:47:53:AD:24
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6F425327063C4BAD65CBD326948DEBB6C77A043F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
Signing time: Mon 31 Mar 2025 19:01:31 +0000
ROA not before: Mon 31 Mar 2025 19:01:31 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:9080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:42:53:27:06:3c:4b:ad:65:cb:d3:26:94:8d:eb:b6:c7:7a:04:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 19:01:31 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=4357df1fbfb19ddfa76e0f7320071ebdeeaa95510b8e9bdbc3afee0ad861394e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:22:56:b5:4b:29:33:7c:68:61:e8:3a:95:f4:
47:83:bf:c0:99:ad:85:5e:83:99:95:42:b7:96:31:
f8:05:f1:e4:c3:7f:57:61:03:aa:7e:e6:0a:55:1a:
eb:1e:2a:eb:9d:b3:74:3a:03:ce:a3:0f:98:a2:da:
f9:98:b1:f1:7a:3d:9f:11:ff:30:fe:36:64:d6:aa:
b7:5b:5e:1c:a0:85:78:dc:80:79:db:2c:9e:e0:8c:
4d:a6:f3:19:ea:ed:1b:b2:ed:4e:f9:d3:98:95:96:
9b:fb:c5:bb:0c:e0:02:41:11:74:fa:67:50:09:eb:
ac:f9:80:4f:4e:86:cd:3b:4e:d1:f5:2a:c9:51:d2:
ff:e5:23:43:7d:4b:a1:7d:8b:f5:1e:6e:69:01:cf:
39:40:e2:4d:69:7e:58:66:a5:77:57:d2:1d:51:45:
80:14:54:d1:cb:de:ff:e7:50:dc:4e:16:2e:c5:b3:
91:11:58:61:fa:db:a9:6c:75:e1:97:07:cd:74:28:
89:fd:ec:b3:ac:c6:1b:16:81:17:a3:6a:8c:83:49:
f9:a2:51:e7:8b:2d:e9:24:6c:4f:6b:05:dc:b7:3f:
68:f2:78:84:d6:ae:8c:b6:3e:02:b3:92:21:22:c4:
6a:35:12:6a:c8:f3:00:ed:c6:f0:ce:b6:2a:84:97:
ab:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8C:6E:77:F7:A3:F6:C9:4E:00:92:61:90:CA:2F:C4:47:53:AD:24
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9926a15e-d7fd-4d7b-ad1e-d0df98f546cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:9080::/48
Signature Algorithm: sha256WithRSAEncryption
1a:31:d1:c6:f5:55:bc:9b:d2:6d:de:87:93:99:26:e8:89:e5:
ec:e8:c7:a3:8f:67:21:b8:ea:7f:4f:09:54:24:ad:fb:13:11:
05:89:63:b3:22:ff:a6:04:eb:73:a8:d1:be:04:b2:4e:b8:9d:
14:9f:48:03:27:cd:36:9a:8e:97:64:b8:af:1a:3b:e5:6a:0c:
d5:d0:80:56:92:3c:f8:94:c7:ad:28:0d:ea:30:f0:a3:97:26:
77:46:55:80:b6:d0:80:59:c7:13:b9:a2:a0:05:25:f0:cc:6b:
db:b4:2a:3e:3e:14:c0:f0:46:f9:81:a8:cb:02:14:d2:6b:89:
04:2a:4c:0f:56:65:4c:49:08:eb:51:c7:1c:25:a8:8c:c2:cf:
83:e3:9a:7b:4d:11:78:07:75:10:70:4b:f8:c2:7a:ff:c1:a3:
e8:76:19:1c:11:3a:e2:a8:de:9c:23:b0:3a:d1:f2:9a:2f:16:
20:c6:8d:e7:81:2f:11:cb:14:99:98:45:82:18:a1:73:e7:fb:
aa:6e:09:cb:41:89:95:55:a6:1f:db:72:05:0f:d7:a0:4f:85:
ab:23:95:4a:8c:20:4c:0f:3d:c4:56:c3:e0:87:7a:18:91:41:
7b:e8:f5:3c:04:53:49:9b:98:7f:d9:eb:15:01:61:cd:5a:15:
92:fd:19:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net