Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
File: e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa (raw, json)
Hash identifier: 3b99/vxJt868z3a72lbaKO6chqxqKJTxkI1/S4Xcm3A=
Subject key identifier: 66:E4:31:B5:63:AC:2D:AE:34:5A:98:64:2D:33:9B:64:28:4D:29:49
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 617331C4FC49FE8A3AD74B6ABAB76C746E2B619D
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d031:a000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:73:31:c4:fc:49:fe:8a:3a:d7:4b:6a:ba:b7:6c:74:6e:2b:61:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: serialNumber=be12b67058713c6789c395137822ef6c0f0b1fd48d80eddc32e350b54107e810, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f0:b7:02:a2:30:48:2e:54:1d:f3:7b:bd:47:
f1:08:b6:45:da:3e:2f:c0:86:ea:8e:8c:66:0c:fc:
ab:16:b0:55:d2:28:53:8d:c4:ca:58:a3:9e:09:a9:
a6:8c:bd:15:b2:a0:50:b1:c8:b0:e1:64:6e:23:32:
04:06:30:cc:65:2f:9f:f1:42:e8:44:86:78:ee:a0:
d0:62:f3:fd:39:41:7a:0f:95:3b:56:21:86:1d:c6:
f5:5c:be:e3:cc:cf:9b:b8:8d:22:4c:db:27:21:20:
4b:9e:e1:d7:90:11:30:ce:6d:da:35:8a:ea:86:5b:
47:e9:1d:f2:cf:77:d0:5d:a7:a0:65:96:1b:38:6d:
46:51:1d:57:12:80:9d:3c:b4:cf:d5:b4:a0:1b:8c:
32:c1:36:ff:0c:b3:ab:0e:52:53:8c:f2:5f:9a:a0:
8b:b4:61:e6:20:a2:52:35:9b:fa:51:78:01:a1:3d:
06:13:c7:06:97:d9:9a:16:6b:7b:30:95:57:f4:06:
51:ec:26:e7:25:85:ec:3a:73:4d:3f:26:22:3c:2b:
26:c2:bd:46:4f:c4:c2:88:b0:50:12:44:0c:de:d9:
8f:95:a0:71:dd:41:61:fa:06:01:11:ae:b0:db:eb:
1d:80:28:9b:42:02:80:7b:d8:aa:e4:5e:b3:6f:8b:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:E4:31:B5:63:AC:2D:AE:34:5A:98:64:2D:33:9B:64:28:4D:29:49
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e0dbf3e3-27cf-4059-abd9-b44b66e2bf22.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d031:a000::/40
Signature Algorithm: sha256WithRSAEncryption
b4:c0:1e:3f:1a:7d:de:94:60:cf:fe:a9:27:b3:99:9a:1b:e9:
c3:ef:6e:c9:58:7f:52:23:42:28:7e:0c:24:c5:17:27:87:93:
ca:9f:c2:ed:d1:eb:30:82:6e:08:76:f6:41:a6:8b:2e:18:45:
6c:63:4e:0c:2a:30:fb:4d:76:2a:45:9f:62:72:00:73:36:a5:
67:2d:bf:ed:63:f7:47:51:6d:3b:30:ad:c0:9c:1c:52:03:9f:
02:10:60:bd:e7:ee:12:0d:87:e4:db:4a:17:d2:47:35:8d:04:
90:71:61:d9:d2:c9:ff:a2:79:d2:36:fc:33:72:74:0d:0e:fc:
4f:95:c1:45:21:f5:aa:71:4a:ec:54:5a:32:a7:e4:5e:27:4a:
a2:be:59:0d:6d:2b:cc:4b:ae:f9:68:02:a5:83:10:eb:a2:89:
b3:66:aa:7e:85:df:9d:ce:20:b2:ab:09:0b:e5:76:11:99:d1:
8a:af:20:25:45:a0:e4:85:0b:14:51:65:a6:1a:95:7a:02:3b:
3e:30:b6:21:55:aa:3e:7d:14:2a:f3:79:48:5f:43:2c:d6:6d:
ce:d2:3c:71:90:38:f4:02:8a:c7:32:b3:dd:46:6f:56:9c:f8:
86:de:ce:5a:80:20:a2:fb:27:86:5d:f9:31:1d:5f:04:25:79:
cb:55:c2:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:17 2024 by rpki-client on console.sobornost.net