Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
File: b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa (raw, json)
Hash identifier: t9Jtp1bgAj8axUOV9xlF0TvkuJyTKoYq9jC4LzRSrCM=
Subject key identifier: E3:AB:2C:AD:10:61:BB:A3:D7:7F:C4:53:A4:5E:ED:B8:EF:B0:E8:90
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4C7D20FEC8BCF901A9C92E36503491643643D955
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
Signing time: Mon 31 Mar 2025 20:31:39 +0000
ROA not before: Mon 31 Mar 2025 20:31:39 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:50c0::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:7d:20:fe:c8:bc:f9:01:a9:c9:2e:36:50:34:91:64:36:43:d9:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:31:39 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=660428ab23078a48449aec46b0c7031124ae7115b82b616086da0cf49069d9f4, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:dc:69:52:34:69:63:17:5d:e5:c9:8b:80:9c:
06:c9:04:32:1a:aa:f6:d9:c7:72:cc:94:63:ba:ef:
fa:9f:ac:cf:1c:74:52:cf:20:53:06:0a:50:15:30:
96:71:b7:82:e1:96:8c:bc:97:7f:2c:b1:8c:7f:70:
fa:b4:f4:c9:c1:a1:a8:b6:75:bf:0c:17:f0:c1:60:
33:1f:15:4c:e3:77:07:cc:20:c2:60:c7:b1:da:fb:
18:1a:4c:07:67:5f:f7:17:0d:74:33:b2:36:38:27:
ce:8c:4c:a9:37:f8:1b:a5:35:26:30:d8:fa:4f:b2:
e5:95:f2:f7:60:91:3a:64:1f:a4:bb:93:2d:76:50:
da:56:f4:5f:4c:c2:74:2f:61:cf:bd:6c:0f:cc:73:
77:cb:da:15:99:c4:45:71:c6:72:53:4d:73:41:95:
fb:9b:8f:42:61:0a:ef:4a:21:39:ba:ea:02:d4:74:
8a:11:21:fd:f5:69:86:d9:a3:35:df:f6:76:26:45:
1f:93:b3:d8:a6:6e:5c:c8:41:f8:6d:45:da:fc:90:
5e:45:8f:c9:73:c1:60:67:fc:88:0d:4e:0a:b3:af:
dd:71:4b:90:f7:b3:84:b6:2c:e3:21:c3:1e:0b:a9:
8a:b9:68:78:18:1f:28:17:3a:18:80:78:08:ff:66:
a1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AB:2C:AD:10:61:BB:A3:D7:7F:C4:53:A4:5E:ED:B8:EF:B0:E8:90
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b0b5c8de-482f-4cb1-ae74-9fec0025fd05.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:50c0::/46
Signature Algorithm: sha256WithRSAEncryption
06:be:5e:fe:47:61:85:36:5d:a0:24:14:2c:22:f7:9b:8c:50:
ce:1a:b3:3a:72:79:82:ee:a5:d4:15:ad:66:d7:e1:39:16:23:
e9:3c:c6:fb:c0:07:24:b2:5d:88:3a:83:71:cf:39:bf:12:34:
e8:25:a6:e5:3e:1f:67:82:3b:7f:32:cc:a2:ed:6d:fc:6a:fe:
02:9f:f9:35:e1:6a:0a:ed:2d:6f:00:7d:36:48:bf:03:4d:8e:
86:9e:a6:12:bd:59:1d:83:21:69:2a:6a:5e:b5:a3:ae:aa:31:
cc:06:9f:24:bf:50:e0:3c:45:68:04:df:90:fb:3e:0b:a8:45:
41:77:2f:c7:e4:f1:ce:9c:b1:bc:fc:4c:b7:62:96:29:53:01:
4c:19:55:f5:33:1d:5c:9f:d2:16:bf:f2:94:78:97:9f:11:41:
b1:33:a8:8f:0a:ca:96:84:82:77:a3:bd:ed:e1:58:6a:26:57:
df:69:b3:46:c8:f0:ca:07:10:07:bc:8b:e8:46:d0:7f:7d:0c:
c0:16:1d:50:07:a3:05:92:5b:8a:9e:e3:cc:bc:59:fc:cf:95:
6a:51:fe:65:0c:c7:da:14:09:ce:8f:d6:e9:bf:68:38:ad:44:
a6:3d:35:11:5e:43:91:85:49:9b:ab:89:13:bc:cb:44:47:b1:
81:ae:86:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:13 2025 by rpki-client on console.sobornost.net