Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1730a2-bb63-4a94-80ae-e84acdef93b2.roa
File: ab1730a2-bb63-4a94-80ae-e84acdef93b2.roa (raw, json)
Hash identifier: 3e4EVvyvUzxdZ3KeN2ZOSAkyGztnBGw2DyFhgInQe34=
Subject key identifier: 56:BB:1C:27:34:F5:4F:56:EA:C4:B0:85:15:59:5A:69:D0:1E:93:B9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 253DE5A374E9785D1443DF96F897A0E31E1260B5
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1730a2-bb63-4a94-80ae-e84acdef93b2.roa
Signing time: Mon 31 Mar 2025 20:30:19 +0000
ROA not before: Mon 31 Mar 2025 20:30:19 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:e040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:3d:e5:a3:74:e9:78:5d:14:43:df:96:f8:97:a0:e3:1e:12:60:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:30:19 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=928b13481a86bbabbe13f6016bd1e8d7a0d3994bc8b4a10c8c14a7a4370ee826, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:69:eb:2d:ad:78:90:44:b7:c7:d4:7a:73:44:
e1:10:f5:4d:9b:ff:0a:8e:52:18:52:b5:19:4e:16:
41:3f:52:47:36:c8:bb:ad:9f:b4:fc:c8:56:a2:c8:
8f:42:9d:45:6b:1a:84:56:aa:bf:2f:b1:40:38:bc:
fc:20:4b:2b:e1:25:20:8f:a2:08:a5:cc:2e:21:cf:
a7:20:72:0c:41:af:a0:2b:ca:0e:6c:d6:b3:b6:39:
a1:e5:94:7c:be:58:2d:7b:73:16:d0:91:24:c8:67:
d2:c6:cf:45:df:42:1f:15:92:08:a7:7b:49:3f:c1:
91:cb:00:c0:53:db:2d:fd:16:eb:fc:cf:7f:36:b7:
3d:7e:65:19:46:e8:b0:6d:96:f8:07:3d:fe:d6:36:
a0:fb:48:0b:6c:04:74:7d:8f:c7:25:68:a4:59:eb:
91:46:36:63:43:ec:1b:1d:d4:a4:0b:72:4b:d0:0e:
44:a8:74:05:31:27:8b:31:c1:97:d8:8d:53:5e:2f:
2d:cb:f2:64:11:a2:f7:02:93:b8:4d:ec:b5:0a:9c:
16:a5:c5:ce:18:a4:3e:87:30:e5:4b:54:21:4e:94:
42:aa:e0:48:9e:ea:fd:1c:d9:03:7a:7f:bc:25:b4:
cf:68:e5:1d:00:38:b5:cc:f9:ed:33:42:0b:6e:07:
44:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BB:1C:27:34:F5:4F:56:EA:C4:B0:85:15:59:5A:69:D0:1E:93:B9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/ab1730a2-bb63-4a94-80ae-e84acdef93b2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:e040::/46
Signature Algorithm: sha256WithRSAEncryption
19:e0:a5:08:4f:04:4a:ad:09:6b:ca:f7:19:5d:8b:fd:92:ca:
0a:79:dd:23:57:fe:ad:4c:08:64:e5:f9:82:b0:f3:00:85:53:
7d:93:7f:71:71:9b:4a:d6:86:5b:a2:d0:e7:56:05:24:08:4e:
0f:3f:a8:ef:fc:a1:cb:7e:13:28:70:dd:89:fc:59:27:86:aa:
36:44:83:0e:34:d5:9e:05:23:95:de:3b:50:16:f6:08:ab:02:
cb:a0:27:ca:34:81:44:83:80:3a:65:9b:0b:e8:06:25:b8:b4:
5f:bb:55:68:92:62:2d:38:9d:ca:13:a9:f9:01:81:3e:c2:86:
79:fe:7b:6e:16:a2:13:50:a2:c1:96:83:a2:0b:31:3c:c0:57:
1f:cb:51:68:19:00:4d:46:99:e7:fa:0b:a4:7a:68:3c:ca:bd:
7a:21:b5:19:b4:83:f2:f7:ee:7c:28:19:02:cc:43:b2:b2:73:
30:ac:17:4b:36:46:e0:d9:d6:b5:ff:a9:db:7e:7c:0d:b3:99:
3c:74:09:0d:b1:24:93:66:69:88:1e:f6:0e:ac:bb:42:63:72:
c2:5c:22:97:48:a6:b6:a7:74:d8:88:df:1d:dd:af:cf:0f:e5:
29:8e:60:a0:28:82:be:0c:d9:21:c8:a2:80:51:33:a0:06:74:
f8:33:41:27
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUJT3lo3TpeF0UQ9+W+Jeg4x4SYLUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMzEyMDMwMTlaFw0yNTA1MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQDkyOGIxMzQ4MWE4NmJiYWJiZTEzZjYwMTZiZDFlOGQ3YTBkMzk5NGJjOGI0
YTEwYzhjMTRhN2E0MzcwZWU4MjYxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOpp6y2teJBEt8fUenNE4RD1TZv/Co5SGFK1GU4WQT9SRzbIu62ftPzIVqLI
j0KdRWsahFaqvy+xQDi8/CBLK+ElII+iCKXMLiHPpyByDEGvoCvKDmzWs7Y5oeWU
fL5YLXtzFtCRJMhn0sbPRd9CHxWSCKd7ST/BkcsAwFPbLf0W6/zPfza3PX5lGUbo
sG2W+Ac9/tY2oPtIC2wEdH2PxyVopFnrkUY2Y0PsGx3UpAtyS9AORKh0BTEnizHB
l9iNU14vLcvyZBGi9wKTuE3stQqcFqXFzhikPocw5UtUIU6UQqrgSJ7q/RzZA3p/
vCW0z2jlHQA4tcz57TNCC24HROkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBRWuxwn
NPVPVurEsIUVWVpp0B6TuTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YWIxNzMwYTItYmI2My00YTk0LTgwYWUtZTg0YWNkZWY5M2IyLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0DXg
QDANBgkqhkiG9w0BAQsFAAOCAQEAGeClCE8ESq0Ja8r3GV2L/ZLKCnndI1f+rUwI
ZOX5grDzAIVTfZN/cXGbStaGW6LQ51YFJAhODz+o7/yhy34TKHDdifxZJ4aqNkSD
DjTVngUjld47UBb2CKsCy6AnyjSBRIOAOmWbC+gGJbi0X7tVaJJiLTidyhOp+QGB
PsKGef57bhaiE1CiwZaDogsxPMBXH8tRaBkATUaZ5/oLpHpoPMq9eiG1GbSD8vfu
fCgZAsxDsrJzMKwXSzZG4NnWtf+p2358DbOZPHQJDbEkk2ZpiB72Dqy7QmNywlwi
l0imtqd02IjfHd2vzw/lKY5goCiCvgzZIciigFEzoAZ0+DNBJw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net