Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
File: 00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa (raw, json)
Hash identifier: k1EWrJJ5LXNbCVHQoHvYsvTUF8Fc7jSXVk6Is9qhcnI=
Subject key identifier: 1C:A9:7D:E0:19:56:1C:20:E5:01:24:86:5F:9B:0B:80:BA:82:15:64
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 29054520E8330764F9EBD1B83C4B8B538DF40B06
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
Signing time: Sat 05 Apr 2025 00:21:14 +0000
ROA not before: Sat 05 Apr 2025 00:21:14 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3:6000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:05:45:20:e8:33:07:64:f9:eb:d1:b8:3c:4b:8b:53:8d:f4:0b:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:21:14 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=ebb922dc71ea571989edc401acd2a36184f08a48a23dc40cf919e75a0403dc9c, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:35:aa:b4:80:21:39:5e:be:20:c3:71:d8:90:
8e:74:28:02:26:0c:44:9d:dd:3b:64:53:e9:15:4a:
7f:6d:aa:c3:81:69:a3:eb:ee:5d:b7:61:01:df:0e:
3e:60:a0:47:22:f9:23:f2:52:75:86:21:55:3d:60:
62:ae:fe:54:77:23:97:fc:8c:45:8f:ad:99:9f:c7:
b2:21:65:12:41:37:e4:65:17:18:b2:2d:51:f3:be:
21:27:20:0b:77:ea:7f:1c:e1:aa:78:d6:ca:e9:26:
53:0b:95:f1:ec:05:cf:1f:f4:9e:25:8a:4e:ee:4a:
fc:dc:66:47:59:f2:b0:16:64:5a:e9:87:0a:94:8a:
0c:d1:e9:e4:9d:06:c4:30:c9:42:c7:98:a0:7d:20:
2a:12:d1:61:2f:0f:96:2e:e5:5f:bd:e4:51:6e:cf:
1a:d7:69:7a:91:d1:bf:ab:c8:95:28:f8:3b:8d:c0:
81:fb:37:99:56:3e:7e:1f:7c:ef:20:5a:5d:a1:ef:
02:62:51:ef:b9:32:76:a6:4f:19:c6:02:82:b4:77:
d6:57:cf:47:13:49:fd:cf:97:2c:c0:06:36:9c:e2:
df:7a:a6:b3:74:52:bb:10:30:5a:a8:61:68:df:12:
0e:fb:77:0d:48:1f:00:be:8d:63:00:1e:0b:85:b0:
ed:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A9:7D:E0:19:56:1C:20:E5:01:24:86:5F:9B:0B:80:BA:82:15:64
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00793623-9ed7-44a4-9c2d-b3ff0668aeb2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3:6000::/36
Signature Algorithm: sha256WithRSAEncryption
54:9f:c5:4d:b4:dc:c6:34:0e:a6:34:8e:cc:98:d2:76:68:a8:
63:35:ab:90:70:fd:23:5a:e2:43:81:23:94:87:83:ec:65:85:
ae:62:62:82:fd:57:c4:c5:3a:fe:53:81:ae:68:72:c5:c6:1f:
fc:3f:a3:67:35:5b:12:81:b9:8b:44:b5:9d:4f:5f:10:cc:8f:
00:b9:61:1c:e5:56:6c:f9:f7:7d:67:28:22:0a:9c:8a:86:78:
33:6a:dc:e1:bd:82:d5:90:a3:21:f7:28:11:af:f0:10:6c:d1:
3b:6e:fc:5a:bf:8f:d5:55:26:9c:fc:e8:80:57:a0:94:79:2e:
54:86:95:36:16:59:52:25:76:88:bf:87:49:2d:d4:36:df:ae:
bb:e0:12:30:1d:88:22:d8:70:71:12:ef:f2:2a:cd:57:bc:ef:
c5:ac:6f:6d:7e:6e:56:61:9e:22:21:92:f0:6d:99:dd:28:81:
f6:db:ec:0f:c9:01:3b:38:ed:d5:32:c8:c6:1e:83:c1:16:62:
d9:90:8b:6c:4e:d0:8c:b6:8e:b2:94:66:cf:09:cf:22:92:a8:
8e:31:23:03:ed:24:52:15:5c:10:7c:dd:11:30:29:d9:da:21:
0d:bc:d1:f3:32:d2:9f:06:45:06:d3:fe:19:07:8b:35:35:51:
09:16:43:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net