Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00d32677-2dbe-47e3-a4b3-be1e601729bd.roa
File: 00d32677-2dbe-47e3-a4b3-be1e601729bd.roa (raw, json)
Hash identifier: 60EYy4cA1k/T73JyPRHJHi17K3nBpgnwgFRuTfw6iYI=
Subject key identifier: 30:6A:CB:D7:35:5F:92:59:6B:44:18:19:C0:5A:26:51:F9:C4:CC:3C
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 4AE8C071404266F2F3BB7D4F287FCC6F585DE7D6
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00d32677-2dbe-47e3-a4b3-be1e601729bd.roa
Signing time: Sat 05 Apr 2025 00:20:34 +0000
ROA not before: Sat 05 Apr 2025 00:20:34 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc5:9000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:e8:c0:71:40:42:66:f2:f3:bb:7d:4f:28:7f:cc:6f:58:5d:e7:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:20:34 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=96566fc68bf3db3b95af0ac8cd1e286b76483a96a42a79dbcfefcc42b3969d3a, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1b:11:b7:32:5a:44:d3:ee:ea:1e:06:4f:89:
2b:ca:a3:c2:c1:95:54:8e:37:fe:8b:7f:5f:6b:c5:
01:11:ae:01:32:c2:7f:89:3c:a5:3d:ca:a4:77:57:
a2:e6:bf:ef:2c:ba:02:26:a4:ad:fb:25:a1:7f:fc:
4c:af:61:3e:19:1f:b2:84:f4:21:51:8a:c8:02:97:
b8:d2:d2:59:ad:89:c9:fe:65:00:f8:c3:78:92:06:
c0:3c:18:76:f0:59:6e:2e:2d:f2:d9:be:aa:9a:f6:
db:fa:e2:f2:35:85:26:7c:be:b4:07:0a:15:13:54:
fd:91:62:47:42:ed:18:a9:fa:aa:36:fc:1e:7f:e7:
7c:84:15:02:57:21:1b:6a:70:70:5c:23:1a:04:12:
1c:7a:a2:c1:72:d5:af:b3:eb:80:84:c7:55:97:06:
e3:d7:3c:2f:39:cc:0a:85:62:2e:c5:49:06:d3:7b:
fd:f8:60:9d:5d:99:0a:cc:a0:34:60:e8:b5:30:71:
b4:3f:39:8c:a0:ef:3f:db:b7:5d:28:b0:49:84:dd:
20:2e:13:7b:fd:e3:80:94:6d:87:b5:0a:25:29:b3:
0b:a7:71:a0:2b:03:84:a2:4e:ea:13:4f:fd:70:7e:
2d:34:7b:3c:18:59:ff:0c:e2:59:b7:ea:7a:e3:a4:
25:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:6A:CB:D7:35:5F:92:59:6B:44:18:19:C0:5A:26:51:F9:C4:CC:3C
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/00d32677-2dbe-47e3-a4b3-be1e601729bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc5:9000::/36
Signature Algorithm: sha256WithRSAEncryption
a6:11:34:01:47:b5:aa:64:b2:45:ab:0d:fe:3f:66:7b:cb:b8:
72:63:f1:5d:84:1e:29:fd:46:8d:d5:ad:fd:be:ef:b2:fa:49:
85:42:bf:64:30:17:34:03:41:6e:f7:66:f5:52:6d:f9:e8:24:
a8:af:37:30:d6:b5:d0:0c:4e:d1:1c:42:51:dd:9f:cf:3c:0c:
df:54:3f:3d:7f:b5:3e:13:fd:91:e2:ab:60:fd:1b:34:c2:54:
ff:37:a3:0f:b0:9f:51:28:87:e9:39:9b:2e:9e:45:d0:c4:59:
09:15:a7:11:4c:29:0d:be:a4:71:1f:db:7d:17:be:f2:fd:bb:
f9:86:c1:54:83:f6:9e:65:df:83:54:67:28:54:fc:e9:37:4a:
6f:d9:1c:c6:6d:83:8f:1d:3c:cf:ec:93:57:46:f8:f9:f3:80:
5b:90:67:5e:18:48:f1:91:c6:5a:35:a3:a5:b2:12:13:ee:00:
8b:e3:9d:c0:9a:5a:53:69:64:24:ae:35:9f:b3:af:9c:6f:03:
6e:86:c7:58:65:98:6d:6f:9c:3b:71:8c:bc:58:a7:f8:62:33:
b9:ff:62:5d:2a:83:00:49:84:d8:0a:58:9b:ec:79:5c:37:c5:
57:9a:60:80:33:91:ef:83:45:cc:89:a5:be:c2:75:29:9b:77:
3f:aa:a1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net