Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9dcc70de-62b0-410a-8c40-d5102c9ccf7a.roa
File: 9dcc70de-62b0-410a-8c40-d5102c9ccf7a.roa (raw, json)
Hash identifier: Gn7WSY4swihnVmTmoswSFhvZKEXzTOdr6yV6u4dbn7k=
Subject key identifier: CE:36:14:D4:63:93:CF:B7:6A:80:D7:9B:EB:80:57:07:0E:39:05:C5
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 060877A742B07CFEB36F61AD6A0988F9542363F7
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9dcc70de-62b0-410a-8c40-d5102c9ccf7a.roa
Signing time: Mon 31 Mar 2025 20:40:33 +0000
ROA not before: Mon 31 Mar 2025 20:40:33 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d032:6000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:08:77:a7:42:b0:7c:fe:b3:6f:61:ad:6a:09:88:f9:54:23:63:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:40:33 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=e2c174ac32d9c753a9eaf2d20b3e929cdcd399dfe6c29bc96172b49cafd211c2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:53:be:10:a1:e5:0b:be:df:7c:cb:41:f6:8b:
10:8a:57:2f:ea:e4:37:8e:e1:75:6a:80:02:0c:35:
96:9c:af:c8:15:38:9f:08:f5:c2:13:30:46:dc:c0:
72:13:e8:e6:17:8f:cc:d8:97:71:c0:bf:be:d0:4d:
ff:6e:86:b0:b4:03:6d:9c:09:d8:96:df:82:19:ec:
c9:48:83:12:17:d1:f6:b6:ff:8f:19:72:5e:0b:d0:
82:5d:91:ef:99:14:ed:71:4b:ad:dc:fc:1c:f3:64:
66:9a:59:71:69:f2:59:e0:5d:f6:6b:9a:6c:25:61:
a8:64:51:ed:9b:8b:65:18:10:ea:20:18:80:68:9d:
39:60:77:24:71:f1:5b:e5:73:ea:70:c6:10:52:2f:
2d:66:f1:a7:0b:46:5c:9f:3c:26:91:4b:34:5a:87:
f6:f7:96:a4:f9:31:eb:2a:3f:f4:40:cb:86:54:b3:
2e:cd:5a:53:67:b8:9f:c9:de:90:03:d2:cd:94:36:
9f:f4:5c:2f:6b:4b:d9:d6:89:46:25:66:25:fa:5e:
47:f2:2f:1e:80:c8:4d:bb:70:17:ce:41:89:7e:75:
e4:ba:f4:a8:51:53:9d:a6:6b:69:d1:6d:ba:b8:83:
5e:1b:db:a5:96:5d:7e:1f:21:d2:64:53:a1:bd:4a:
69:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:36:14:D4:63:93:CF:B7:6A:80:D7:9B:EB:80:57:07:0E:39:05:C5
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/9dcc70de-62b0-410a-8c40-d5102c9ccf7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d032:6000::/40
Signature Algorithm: sha256WithRSAEncryption
2e:82:da:37:01:31:a6:92:a8:b7:f3:bd:29:aa:da:90:d4:bd:
00:c8:10:ed:5e:36:50:75:e5:d8:c7:a6:71:b6:92:52:4e:c8:
ba:6e:ea:7a:d9:6d:9c:db:14:f5:56:73:d7:60:0c:2b:e8:45:
d9:52:f7:17:7f:72:43:db:ab:ac:da:72:65:73:36:09:f5:df:
df:79:ed:cb:25:0c:da:03:ae:15:f8:86:05:41:39:c2:5a:b9:
72:ab:c7:76:3c:05:22:3c:01:cc:c2:3f:4d:0a:a1:35:52:1f:
38:b5:64:62:6d:e0:7c:fa:37:5f:65:2f:58:f8:27:11:7d:31:
e0:65:89:4a:8a:6d:c3:82:6e:5d:82:bf:28:18:a1:d3:dc:a6:
7c:2e:13:11:7a:1b:f7:1e:41:5b:57:79:9d:72:50:d1:f2:9b:
e0:84:4f:99:ad:ce:3a:ab:33:6f:61:83:b3:32:e4:62:08:2d:
d4:11:54:06:dc:2a:15:bd:3a:e6:0c:fc:79:c9:0b:87:16:6b:
3f:9d:61:0e:81:73:37:9f:71:c6:d3:83:12:2d:4a:08:09:95:
28:40:7b:62:8d:dc:8d:a6:7c:61:c4:29:25:b6:61:ea:e8:21:
97:ec:55:de:8e:12:29:02:dc:7e:90:7c:b9:8e:b9:7f:f2:79:
68:db:23:89
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUBgh3p0KwfP6zb2GtagmI+VQjY/cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMzEyMDQwMzNaFw0yNTA1MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQGUyYzE3NGFjMzJkOWM3NTNhOWVhZjJkMjBiM2U5MjljZGNkMzk5ZGZlNmMy
OWJjOTYxNzJiNDljYWZkMjExYzIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKpTvhCh5Qu+33zLQfaLEIpXL+rkN47hdWqAAgw1lpyvyBU4nwj1whMwRtzA
chPo5hePzNiXccC/vtBN/26GsLQDbZwJ2JbfghnsyUiDEhfR9rb/jxlyXgvQgl2R
75kU7XFLrdz8HPNkZppZcWnyWeBd9muabCVhqGRR7ZuLZRgQ6iAYgGidOWB3JHHx
W+Vz6nDGEFIvLWbxpwtGXJ88JpFLNFqH9veWpPkx6yo/9EDLhlSzLs1aU2e4n8ne
kAPSzZQ2n/RcL2tL2daJRiVmJfpeR/IvHoDITbtwF85BiX515Lr0qFFTnaZradFt
uriDXhvbpZZdfh8h0mRTob1KaesCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBTONhTU
Y5PPt2qA15vrgFcHDjkFxTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
OWRjYzcwZGUtNjJiMC00MTBhLThjNDAtZDUxMDJjOWNjZjdhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0DJg
MA0GCSqGSIb3DQEBCwUAA4IBAQAugto3ATGmkqi3870pqtqQ1L0AyBDtXjZQdeXY
x6ZxtpJSTsi6bup62W2c2xT1VnPXYAwr6EXZUvcXf3JD26us2nJlczYJ9d/fee3L
JQzaA64V+IYFQTnCWrlyq8d2PAUiPAHMwj9NCqE1Uh84tWRibeB8+jdfZS9Y+CcR
fTHgZYlKim3Dgm5dgr8oGKHT3KZ8LhMRehv3HkFbV3mdclDR8pvghE+Zrc46qzNv
YYOzMuRiCC3UEVQG3CoVvTrmDPx5yQuHFms/nWEOgXM3n3HG04MSLUoICZUoQHti
jdyNpnxhxCkltmHq6CGX7FXejhIpAtx+kHy5jrl/8nlo2yOJ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net