Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3ac8a0a-8d06-40de-a292-cb824b7c48b8.roa
File: d3ac8a0a-8d06-40de-a292-cb824b7c48b8.roa (raw, json)
Hash identifier: Lp0t48plnwWBAL+GGkkY6IuiAC2w+IGApDfDJFGcaSY=
Subject key identifier: 5D:04:1E:94:8F:FA:5A:5E:52:CA:4D:D8:70:00:A2:85:1C:82:00:27
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 50290BD0D846DC91950E1D9DE3B9AEDB6CCD8F52
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3ac8a0a-8d06-40de-a292-cb824b7c48b8.roa
Signing time: Mon 31 Mar 2025 21:10:48 +0000
ROA not before: Mon 31 Mar 2025 21:10:48 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d016:400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:29:0b:d0:d8:46:dc:91:95:0e:1d:9d:e3:b9:ae:db:6c:cd:8f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 21:10:48 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=e4683b5a6f2fe2f09cccb104126d64fb23a1adab0d98be46009141d20f38a53e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:18:42:c7:27:29:a1:09:e6:a1:cc:a3:a3:
48:0c:83:89:dd:80:ca:32:55:ce:a5:58:82:40:4d:
a1:35:09:85:84:70:d0:bd:28:16:4e:be:6d:ec:a6:
5a:42:54:33:a4:a8:fa:e8:61:bd:e0:33:18:b2:32:
b7:8d:5f:24:c0:ac:d6:dd:bf:1e:ac:69:99:75:08:
bb:66:74:e9:84:a4:b5:97:70:90:47:95:89:2b:0d:
4a:72:58:37:dd:c7:f3:ae:18:4e:77:82:79:c1:48:
00:b6:bb:c5:60:f5:05:05:39:70:56:08:bd:13:67:
95:c3:a2:17:d0:5a:b0:19:e9:7c:76:94:83:80:b3:
13:55:ea:00:05:d5:71:ec:57:90:16:e7:28:d6:6b:
fc:35:fd:bc:dc:47:6e:16:cc:c4:96:69:de:19:38:
d0:3c:04:b4:4b:7b:1c:79:9f:34:1f:72:3a:c4:d1:
f3:eb:4e:68:97:d1:25:86:89:69:54:97:fc:d0:86:
56:f6:3b:0c:9e:17:5c:42:62:c7:27:99:df:0a:18:
61:ee:59:16:39:72:da:07:f3:2f:b5:ff:eb:c8:4b:
62:e3:2f:7c:81:0c:aa:42:26:47:9f:3a:fe:de:c3:
1a:bf:7e:82:bc:23:7d:e2:61:1b:94:21:dd:71:13:
df:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:04:1E:94:8F:FA:5A:5E:52:CA:4D:D8:70:00:A2:85:1C:82:00:27
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d3ac8a0a-8d06-40de-a292-cb824b7c48b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d016:400::/38
Signature Algorithm: sha256WithRSAEncryption
79:29:bf:d6:68:7e:2e:e2:b0:3d:38:82:88:9d:d7:d6:19:89:
12:db:72:1e:d8:e0:67:dc:25:ed:35:95:8f:fe:cb:d3:79:fb:
72:a3:10:85:b9:22:79:c3:90:bb:ed:7c:b8:64:ac:c7:2a:c5:
a5:2a:f4:ce:68:a5:ec:f9:8d:c6:47:da:68:66:82:b2:97:e2:
66:0b:65:47:33:3f:37:ff:8b:39:41:51:92:20:6e:39:a3:a8:
dd:bf:53:ee:ad:74:98:32:66:a1:dd:da:e9:86:fd:a6:96:e3:
ca:1c:30:c0:dc:4f:2b:34:98:4c:20:96:21:66:c4:fe:50:54:
66:e0:59:72:2d:02:ae:da:06:14:05:6f:85:2c:d4:e7:63:37:
cf:c0:cd:ec:69:27:6f:66:8c:db:64:a1:15:7a:a8:3e:e2:df:
f3:5c:89:25:57:15:95:6c:7f:61:0f:e8:51:72:41:78:0d:b3:
b1:4f:3c:2b:9d:d2:7d:25:f7:71:d1:fc:41:c3:0e:e5:19:08:
72:6b:7e:7b:af:65:53:76:e5:27:35:d0:a4:82:04:e0:7f:48:
14:c2:33:e6:13:e9:20:4c:c6:9b:74:1d:68:2c:56:d8:fd:4f:
15:ad:b1:df:71:2f:fb:9a:d1:77:dc:d3:e6:d8:32:f6:4a:00:
44:6c:d7:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:14 2025 by rpki-client on console.sobornost.net