Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
File: d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa (raw, json)
Hash identifier: qxwcCQ4QxgcYKX954zbPXDJIf84kcDwbfwmMZE/aabI=
Subject key identifier: 4B:04:C6:5E:73:F2:6D:2A:01:CE:77:E5:84:00:17:16:B8:E6:02:8E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 65423B83F549400BC9712F803DA4662FECA7118D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
Signing time: Mon 31 Mar 2025 20:11:06 +0000
ROA not before: Mon 31 Mar 2025 20:11:06 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d035:a040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:42:3b:83:f5:49:40:0b:c9:71:2f:80:3d:a4:66:2f:ec:a7:11:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:11:06 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=3e45dad4042b16a9099618fd8aff4feb7c7b32c7ffeaf78fa33a52d92ffd53a8, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:e8:72:ef:d6:46:81:d3:03:d0:38:d0:91:
77:08:a4:3a:74:40:ca:98:fd:a9:80:83:85:be:a6:
df:bb:8f:74:49:7e:33:c4:b9:28:88:49:35:bd:f3:
18:ac:6f:4d:48:5d:63:d6:80:12:6c:a7:d4:24:46:
16:cf:2a:76:87:c5:8e:db:4d:53:01:eb:8a:8c:c5:
32:53:f3:1a:a0:3a:f7:47:a6:2e:ce:c5:5e:54:de:
13:2e:f5:ef:0d:5e:9b:26:8a:46:6e:9f:f3:96:7c:
64:f4:8e:e2:75:f3:c7:23:32:64:da:e2:f2:7d:0a:
20:93:35:5c:ba:68:fe:e2:89:85:07:55:1b:a3:7b:
ae:de:5a:06:95:3c:ec:bb:6d:1b:00:1a:68:8e:7a:
43:64:f7:59:7a:c1:f0:62:9b:23:5e:cb:55:84:62:
74:9e:88:c2:35:7c:65:4e:3d:45:ae:f1:2f:9b:2d:
86:4a:03:39:6e:e3:44:62:b0:11:65:db:0a:98:5a:
1b:3d:a5:58:7c:22:2f:de:5e:9e:34:64:15:f6:8f:
00:b4:db:0d:5e:1c:6b:ec:c0:fc:75:c4:58:d9:e9:
8e:9e:cd:44:be:39:5f:40:01:d0:7b:7f:04:11:9f:
e2:1b:ae:32:7e:08:15:e1:42:5c:01:10:2c:a9:1c:
23:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:04:C6:5E:73:F2:6D:2A:01:CE:77:E5:84:00:17:16:B8:E6:02:8E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/d6c332d1-7ca9-4f9c-889d-410dabe8ebb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d035:a040::/46
Signature Algorithm: sha256WithRSAEncryption
03:e8:2b:b8:1e:a1:43:ac:35:2a:5a:3a:84:eb:b2:ed:2b:9e:
f4:22:9c:82:a6:0a:94:d9:0b:ad:fc:94:69:ef:7e:c8:47:cb:
26:b5:87:9b:46:7a:ef:db:95:c2:4f:4f:ad:47:1e:8a:d9:d8:
49:a4:03:fe:28:41:cf:3d:d5:a9:3e:56:9e:0a:27:db:d5:d5:
14:93:df:97:97:5c:de:82:25:e2:10:e8:00:e5:19:eb:e6:10:
6d:45:f1:e4:24:15:71:45:0c:d5:fa:40:6f:4a:5c:df:ed:51:
45:d6:cf:a1:0c:6a:c2:8c:d8:20:f9:dc:f9:28:a9:2f:c4:36:
8e:30:9e:f0:15:d8:37:07:c3:d0:f6:77:d3:c0:1d:ab:ba:9f:
d0:81:27:87:b4:19:17:59:4c:68:3e:3a:48:a2:d4:59:9b:0c:
60:bb:33:a2:12:5b:54:17:ae:f6:b3:80:e2:57:64:01:99:06:
07:d5:39:9a:5d:39:7a:38:51:af:c0:a4:b5:5f:4e:08:14:de:
c2:c0:f2:15:6d:a4:9e:0b:00:b4:2a:f8:98:24:8f:e1:84:7e:
e9:2c:3e:04:86:8f:ba:0f:90:fb:a7:d9:15:cc:cc:0e:97:e0:
f4:68:68:28:83:dd:6f:9c:e9:bf:fc:9e:a3:18:d4:66:d5:6c:
45:49:70:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:14 2025 by rpki-client on console.sobornost.net