Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa
File: e69b1519-f345-43aa-8c6b-cd786ee13404.roa (raw, json)
Hash identifier: WjpWtv2/JjRVCeJkIq7s1WOir6gnS+j4e2FonBQtDv4=
Subject key identifier: BB:EF:C9:FD:A6:1D:A6:84:28:92:90:F7:01:8B:FF:60:66:2A:55:45
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 5F6A4D463440CE319CDEE85CA529CFD0BCFC5F2F
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa
Signing time: Mon 31 Mar 2025 20:51:08 +0000
ROA not before: Mon 31 Mar 2025 20:51:08 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07e:5000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:6a:4d:46:34:40:ce:31:9c:de:e8:5c:a5:29:cf:d0:bc:fc:5f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:51:08 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=04d5d69f43cee8f7b9af8c75174b5ddaafc3d106d1301b7bce13315c7adb5f03, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c0:18:2b:61:87:ee:48:70:92:21:eb:1a:ef:
8f:a7:ff:a7:6c:59:a5:da:86:57:ab:ad:75:a3:4d:
a5:31:c4:b8:fa:82:b7:d2:6c:9b:bd:38:37:b3:de:
ba:e8:57:38:38:ac:3c:9d:f7:e0:3e:df:98:e7:45:
df:e1:df:51:19:2c:cf:80:23:a6:96:ea:9e:1c:a1:
3f:64:ab:02:a2:e0:03:9c:6a:99:f3:a0:63:eb:5b:
32:d9:ce:db:7c:23:e8:0b:23:e0:5b:7e:81:e1:79:
5a:ca:0c:28:ff:0c:78:1e:a3:d0:a8:2b:0d:a0:5f:
3b:c6:4a:53:48:8b:df:8d:46:7a:0b:4b:d0:15:22:
e9:f7:fe:6c:25:cd:63:ea:67:99:a6:e9:e3:77:28:
ae:8b:12:5c:59:3d:a2:f7:44:46:ad:d9:bb:f4:d9:
dd:7b:80:2b:ff:66:06:d0:61:d9:b2:be:f3:b3:dd:
83:90:d4:1a:67:7f:84:0c:55:7b:e2:ec:ad:b5:e2:
2e:10:64:a0:73:09:66:85:4f:20:28:da:80:8d:01:
42:58:e4:96:cd:4e:3c:e0:14:41:6b:00:33:f1:37:
64:06:93:92:4d:d4:27:eb:c0:5c:38:69:c0:36:77:
7f:2c:fc:83:52:11:e7:96:7d:d5:96:27:5a:3e:fe:
86:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:EF:C9:FD:A6:1D:A6:84:28:92:90:F7:01:8B:FF:60:66:2A:55:45
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e69b1519-f345-43aa-8c6b-cd786ee13404.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07e:5000::/40
Signature Algorithm: sha256WithRSAEncryption
60:7b:3e:40:1a:1b:98:b8:db:0b:c3:3e:5c:d4:c5:b4:6e:cc:
c6:4f:d0:7c:36:46:db:5c:98:d3:d1:7f:e4:8d:25:06:6a:28:
94:17:17:3a:0a:c6:85:ea:9f:d7:25:63:b7:9b:9a:a1:fd:a9:
1a:15:eb:8d:a8:c1:ea:24:7f:1d:0c:41:49:00:09:ea:f4:a5:
6e:77:77:e4:8b:fe:00:c2:de:d7:24:b4:ae:22:20:ed:0e:94:
d3:d1:97:10:8e:cb:6d:2f:57:9a:a4:47:b6:f2:60:90:73:b6:
47:14:05:b5:c3:50:e0:33:48:37:70:56:44:b1:3b:16:e8:50:
bd:b3:23:87:ff:f5:e0:ed:26:89:39:d8:de:fb:b9:c5:39:a0:
0a:43:05:26:a5:3c:fa:8b:86:d8:30:db:e1:2b:c6:0e:de:46:
27:b0:61:88:0d:6a:44:c8:6b:05:a9:0b:18:95:b4:01:7b:c1:
c9:56:d8:09:c4:bb:c3:c9:c6:1c:e6:8c:3a:c0:4a:80:aa:cf:
8f:f7:9e:c0:3b:e4:5a:1b:92:08:f9:92:8e:81:61:c4:75:47:
03:1e:e0:f1:32:8a:87:7c:69:0f:3d:97:b0:0c:16:66:94:33:
8b:83:13:13:a2:91:c4:90:10:ab:fa:55:fa:52:a2:95:51:4e:
9e:33:76:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:14 2025 by rpki-client on console.sobornost.net