Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/997bde46-e12e-44b9-9c9d-d13e7382de30.roa
File: 997bde46-e12e-44b9-9c9d-d13e7382de30.roa (raw, json)
Hash identifier: LmPkcpr26fVYaFChE2nLAxHLi5Ezme1R0M/mN+PfALs=
Subject key identifier: 49:9B:AE:79:2C:CD:01:27:B5:B8:A4:35:16:62:AF:6A:DB:A6:96:C4
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 55198C0AE21EAA1256AA50CC2D962CBEDBCE1861
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/997bde46-e12e-44b9-9c9d-d13e7382de30.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d036:a000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:19:8c:0a:e2:1e:aa:12:56:aa:50:cc:2d:96:2c:be:db:ce:18:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: serialNumber=b27e2ea3f926063e47fcf393413898ef1283fc9c1848e1b22da5d49dbb593524, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ee:b5:1e:ff:84:d4:09:68:20:ba:cf:19:b7:
80:68:13:a0:75:40:91:1d:5d:3e:f1:07:84:29:de:
e5:25:02:53:72:66:84:44:9d:4a:c4:26:23:5c:76:
b8:10:a0:6e:4b:76:2b:98:9d:30:50:e8:c7:72:13:
4c:80:f8:4f:0d:10:16:21:e7:cb:df:6e:56:5a:8a:
58:9e:f7:c7:42:ac:f5:5e:cc:c1:f0:45:68:2c:2c:
d2:22:c3:e3:18:5c:3d:42:71:7f:4a:db:a6:94:bc:
27:37:8c:14:7d:13:f3:8c:03:76:96:57:32:a5:cc:
a2:7e:e7:6b:db:f5:62:1a:74:cf:3b:cd:d1:bc:eb:
38:01:a4:8a:93:a2:31:16:46:5b:37:4d:0c:a2:0b:
6d:d3:7a:49:af:91:ae:ca:d3:ea:03:93:e0:13:67:
82:8c:6e:c0:ed:6b:ef:7d:38:c9:d1:f6:32:0f:c6:
65:7e:c3:0e:7b:ea:26:70:64:96:3e:51:1b:9d:61:
7f:66:3f:65:48:d3:8d:db:c4:69:fc:c6:a0:95:1a:
df:35:70:09:56:29:a2:62:fb:18:ba:db:8c:5e:d5:
58:ad:7e:20:5e:7a:26:31:b9:4d:3a:88:ee:9f:2b:
a5:1d:ef:96:e4:e0:d7:2b:3e:7d:b3:1e:f0:7d:af:
09:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9B:AE:79:2C:CD:01:27:B5:B8:A4:35:16:62:AF:6A:DB:A6:96:C4
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/997bde46-e12e-44b9-9c9d-d13e7382de30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d036:a000::/40
Signature Algorithm: sha256WithRSAEncryption
65:2a:2a:1d:b4:93:1b:80:84:a3:b7:99:98:8b:31:06:76:2b:
b2:e6:8e:90:e3:bc:74:a5:30:21:1c:f4:f5:f1:42:1c:77:0e:
e8:bc:86:5b:19:ac:f8:85:f5:ae:be:0b:5d:78:b9:02:f6:5f:
2a:30:07:e8:be:b6:fd:45:9b:cd:15:96:4c:a5:a7:28:3a:10:
14:c0:9b:4c:cb:71:32:fe:79:dd:ec:a5:d0:4c:c9:f3:f7:88:
f9:02:06:53:3e:55:1e:32:ec:b5:c7:09:c6:03:80:17:3e:e1:
5c:3e:cb:cc:98:32:a6:ae:5e:f1:8a:e0:5c:64:0d:4d:31:52:
60:44:a5:f0:21:88:fe:36:51:b3:9c:36:12:8b:a1:d3:67:49:
65:82:f5:a5:e4:c5:98:43:eb:3a:f1:49:a2:e7:97:03:06:d0:
70:bd:f9:61:b1:44:f7:49:70:f5:6c:3a:6c:87:2c:89:a9:f5:
84:7e:f4:73:f7:6f:94:9c:8a:9c:7b:e7:20:c5:dc:95:3e:fa:
6f:f6:d5:7d:8e:2c:26:e2:ab:11:de:ab:64:1a:bc:9d:a6:c8:
05:f7:21:6e:91:af:e3:22:13:98:2f:1e:a5:81:5f:21:91:2f:
75:2b:3d:17:23:74:b1:b6:e6:20:a9:08:01:2e:9f:b0:ea:4a:
f3:57:e1:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:17 2024 by rpki-client on console.sobornost.net