Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
File: eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa (raw, json)
Hash identifier: C+kzRaGqTq3ISIAypfv+jifbrpdQg8Kt/mSk0ufh/dk=
Subject key identifier: 0B:1C:56:FF:BA:62:74:05:79:2B:B6:5B:5E:4A:00:C1:27:CC:B3:05
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 35B07632AA1242F6FEBCE5DA59514C3BA3D0157C
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
Signing time: Mon 31 Mar 2025 20:21:41 +0000
ROA not before: Mon 31 Mar 2025 20:21:41 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07b:4040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:b0:76:32:aa:12:42:f6:fe:bc:e5:da:59:51:4c:3b:a3:d0:15:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Mar 31 20:21:41 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=c6f60c6a6896185fc3db7188bb9785dfac583033722aa8f738ffa1ff3f66c5e2, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cc:e7:d6:3c:d5:ca:10:3f:8a:6a:06:4f:36:
e5:e3:cf:b7:80:8e:d7:2d:30:48:bd:87:f0:57:14:
7f:a8:ca:90:b1:d4:26:be:79:7f:46:2b:61:f2:1f:
d5:b9:fc:ce:bb:49:39:00:da:b4:b3:96:82:c0:9e:
7f:bd:25:ae:77:99:e4:41:cc:92:6e:8d:3c:6b:4f:
46:66:fa:60:82:0d:7e:dd:d7:3d:01:4a:b0:7a:d7:
1f:10:af:6b:4d:63:6c:89:a5:c5:05:99:dd:8d:aa:
24:dc:74:d6:e0:5c:87:27:7c:31:54:d9:37:6f:cf:
5d:d9:76:1e:0c:a3:38:2d:bf:67:57:86:8d:c8:fb:
ce:ea:13:d3:b8:42:08:9c:d9:bd:77:7b:94:cd:de:
f4:d1:fc:f2:4c:a1:23:9a:bc:32:60:0c:0e:a4:c2:
ec:03:8d:a8:32:3e:ae:ff:69:5a:23:58:54:a9:b9:
08:3e:f7:8f:81:21:9e:35:e5:4f:9d:15:2a:9e:1e:
ba:09:24:fc:dd:f9:42:b6:bc:fe:c7:d1:00:c4:e2:
66:db:31:6f:d5:cb:39:8e:36:f4:87:49:9d:0a:3a:
1c:df:c9:33:71:b4:18:50:d6:0b:50:d7:8f:9b:31:
fa:64:91:9e:9e:78:4b:fe:85:bf:16:c4:7f:c7:51:
a2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1C:56:FF:BA:62:74:05:79:2B:B6:5B:5E:4A:00:C1:27:CC:B3:05
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb6f24ea-9fe8-46fd-b5b0-f03667b1672a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07b:4040::/46
Signature Algorithm: sha256WithRSAEncryption
29:bf:03:ac:72:e0:2f:56:d8:9b:a0:ad:a4:0d:f4:b0:f1:01:
a9:b0:65:f1:dd:f8:f6:b4:1e:e2:61:12:e7:c8:d1:0c:96:23:
ed:d2:4c:d6:f0:87:f8:a6:0d:df:e8:a5:fc:a1:70:8b:6e:e1:
7e:8c:2a:75:55:04:36:81:a9:e3:57:f6:6c:01:5e:97:c6:5f:
70:e9:da:c5:b5:34:8a:e7:50:bb:6b:0a:9d:9f:24:30:e0:54:
25:73:b8:0d:25:7f:81:76:9e:64:df:28:57:43:3e:d8:a8:2e:
0c:5e:d0:d1:86:e7:9f:cd:91:9f:8f:6c:cd:56:67:7e:3f:43:
42:28:21:5f:c6:72:d7:95:40:b6:c0:bd:66:eb:cc:13:c6:1f:
83:95:71:a4:65:9f:93:0d:f1:55:2e:57:92:1f:33:e9:cf:98:
a6:7d:ae:af:2f:17:96:1f:88:43:96:ea:2e:b1:fa:a3:7b:08:
4b:60:63:00:31:59:58:c5:bb:f9:34:9b:89:92:53:9e:d8:94:
7c:40:5e:94:b8:b6:54:f5:c2:c2:67:68:7c:3c:91:1d:7b:bb:
9e:de:f5:c1:a2:ca:ca:d3:2b:a3:7b:cd:9d:fd:e3:22:5d:95:
62:32:a9:6e:9c:ec:5e:e9:f9:e6:8f:07:82:af:e7:38:a8:6c:
72:89:aa:5e
-----BEGIN CERTIFICATE-----
MIIFYTCCBEmgAwIBAgIUNbB2MqoSQvb+vOXaWVFMO6PQFXwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNTAzMzEyMDIxNDFaFw0yNTA1MDUyMzU5NTlaMHoxSTBHBgNV
BAUTQGM2ZjYwYzZhNjg5NjE4NWZjM2RiNzE4OGJiOTc4NWRmYWM1ODMwMzM3MjJh
YThmNzM4ZmZhMWZmM2Y2NmM1ZTIxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAI7M59Y81coQP4pqBk825ePPt4CO1y0wSL2H8FcUf6jKkLHUJr55f0YrYfIf
1bn8zrtJOQDatLOWgsCef70lrneZ5EHMkm6NPGtPRmb6YIINft3XPQFKsHrXHxCv
a01jbImlxQWZ3Y2qJNx01uBchyd8MVTZN2/PXdl2HgyjOC2/Z1eGjcj7zuoT07hC
CJzZvXd7lM3e9NH88kyhI5q8MmAMDqTC7AONqDI+rv9pWiNYVKm5CD73j4EhnjXl
T50VKp4eugkk/N35Qra8/sfRAMTiZtsxb9XLOY429IdJnQo6HN/JM3G0GFDWC1DX
j5sx+mSRnp54S/6FvxbEf8dRojkCAwEAAaOCAiQwggIgMB0GA1UdDgQWBBQLHFb/
umJ0BXkrtlteSgDBJ8yzBTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
ZWI2ZjI0ZWEtOWZlOC00NmZkLWI1YjAtZjAzNjY3YjE2NzJhLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioF0HtA
QDANBgkqhkiG9w0BAQsFAAOCAQEAKb8DrHLgL1bYm6CtpA30sPEBqbBl8d349rQe
4mES58jRDJYj7dJM1vCH+KYN3+il/KFwi27hfowqdVUENoGp41f2bAFel8ZfcOna
xbU0iudQu2sKnZ8kMOBUJXO4DSV/gXaeZN8oV0M+2KguDF7Q0Ybnn82Rn49szVZn
fj9DQighX8Zy15VAtsC9ZuvME8Yfg5VxpGWfkw3xVS5Xkh8z6c+Ypn2ury8Xlh+I
Q5bqLrH6o3sIS2BjADFZWMW7+TSbiZJTntiUfEBelLi2VPXCwmdofDyRHXu7nt71
waLKytMro3vNnf3jIl2VYjKpbpzsXun55o8Hgq/nOKhscomqXg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:14 2025 by rpki-client on console.sobornost.net