Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/07aa2549-9eea-428d-a23d-c0e66b59cdb0.roa
File: 07aa2549-9eea-428d-a23d-c0e66b59cdb0.roa (raw, json)
Hash identifier: GXZUiS6rQqKBhbtK0Tna81p7ejhYKphHUcvaD5hU1UM=
Subject key identifier: 48:66:9E:BB:B6:E6:B7:4E:26:F6:EF:9C:96:6D:09:25:E7:E2:6F:AC
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 50FCD413C31AD3CA9AF8EEB34AE7DAE2B80D5F7B
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/07aa2549-9eea-428d-a23d-c0e66b59cdb0.roa
Signing time: Sat 05 Apr 2025 00:20:32 +0000
ROA not before: Sat 05 Apr 2025 00:20:32 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc1:8000::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:fc:d4:13:c3:1a:d3:ca:9a:f8:ee:b3:4a:e7:da:e2:b8:0d:5f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:20:32 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=07f1e77eade2be4a092d13641cc8aa4a46701077365a33742804a20258fc4b23, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:af:03:b7:02:2f:d8:76:6d:ff:f4:37:2e:8c:
73:37:2a:04:83:9c:c1:0e:3b:bd:cf:77:03:44:48:
bb:aa:65:82:d8:1a:86:a9:17:aa:c8:22:e8:62:f8:
6d:77:a2:07:0d:9f:d3:ff:de:dd:55:5a:16:ea:47:
e1:36:25:b7:85:a2:52:ef:3f:56:fc:f1:fd:f0:04:
77:a4:4c:ad:53:ae:4b:d7:fc:42:a6:84:24:bb:e3:
ab:65:04:c1:66:09:ee:cb:55:85:a1:79:00:16:26:
7f:4c:d5:1a:c5:1f:3b:3d:d3:98:15:dc:84:5d:1f:
f6:8a:2c:3a:27:c3:73:8a:e9:f1:f3:bf:42:8c:94:
ba:b7:f2:09:52:02:45:d0:dc:f8:7c:6a:57:56:1a:
cf:e0:6a:09:9b:99:f1:fc:6d:3d:d7:58:01:35:3f:
d2:f4:d8:e5:1e:3f:67:47:69:4b:98:3c:57:ea:44:
a2:7b:83:1a:81:e7:19:4a:bb:52:3f:26:ce:aa:f5:
e3:41:04:c5:56:7a:6e:75:9a:38:f2:ac:1c:f8:30:
e4:c4:4f:4c:92:1f:82:ac:58:73:33:4e:eb:1a:20:
36:d3:c1:b8:e8:f4:9a:4d:9e:5f:bb:8e:4a:5c:a5:
ff:d2:e9:32:89:92:23:f5:11:b6:46:76:5c:28:9a:
08:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:66:9E:BB:B6:E6:B7:4E:26:F6:EF:9C:96:6D:09:25:E7:E2:6F:AC
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/07aa2549-9eea-428d-a23d-c0e66b59cdb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc1:8000::/38
Signature Algorithm: sha256WithRSAEncryption
6d:c2:9d:50:12:20:7e:af:c1:2a:9e:ae:5b:bf:61:1a:fd:2a:
e3:ee:b0:61:40:a9:90:89:db:be:d0:70:9c:eb:f4:d7:11:6a:
f6:88:11:f0:98:c7:b6:c2:1b:cb:d4:4c:91:46:15:90:63:b5:
f0:30:10:e4:dd:47:93:30:34:96:65:f1:29:cb:a3:f7:93:55:
fe:ee:62:ea:0f:23:8d:d3:32:44:d0:e0:70:37:24:6c:f8:58:
11:14:96:50:7a:52:39:c6:f8:fd:4e:73:e1:ff:a7:59:57:b6:
3b:c7:cb:e5:d9:ba:a3:32:e2:35:8e:38:dc:88:5b:2c:00:b4:
46:61:f1:cc:e4:7f:1e:cd:5a:7d:43:b5:b0:dc:8e:21:1e:22:
3d:47:93:93:ca:a7:07:89:80:8c:14:2d:c8:ae:cc:5b:1c:81:
2c:a8:1b:ee:3d:e4:9f:95:8d:b3:ff:9a:ce:26:36:57:b3:13:
d8:26:4c:f1:38:e2:7c:94:ec:47:9f:a8:d8:a0:db:b6:c0:94:
14:3e:68:28:4d:50:72:cc:f0:bc:59:54:c8:77:08:16:fa:b2:
88:2a:54:b8:05:35:13:c2:34:f2:d8:93:a9:4b:49:7e:b7:21:
68:9a:f9:5c:aa:35:30:a5:a9:54:09:8b:71:bb:eb:84:fa:73:
dc:a3:5b:f9
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUUPzUE8Ma08qa+O6zSufa4rgNX3swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNGU5ZjQ1ZmQ2NWNlYTQ3ZmNlNTMzZjExY2ZjMTVjNDc1
NTU0ZGZiYzAeFw0yNTA0MDUwMDIwMzJaFw0yNTA1MTAyMzU5NTlaMHoxSTBHBgNV
BAUTQDA3ZjFlNzdlYWRlMmJlNGEwOTJkMTM2NDFjYzhhYTRhNDY3MDEwNzczNjVh
MzM3NDI4MDRhMjAyNThmYzRiMjMxLTArBgNVBAMTJGY2OTAzMTM4LTQyMGEtNGM4
NC1iZjNkLTlhZWE4MWYyM2ViNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPWvA7cCL9h2bf/0Ny6MczcqBIOcwQ47vc93A0RIu6plgtgahqkXqsgi6GL4
bXeiBw2f0//e3VVaFupH4TYlt4WiUu8/Vvzx/fAEd6RMrVOuS9f8QqaEJLvjq2UE
wWYJ7stVhaF5ABYmf0zVGsUfOz3TmBXchF0f9oosOifDc4rp8fO/QoyUurfyCVIC
RdDc+HxqV1Yaz+BqCZuZ8fxtPddYATU/0vTY5R4/Z0dpS5g8V+pEonuDGoHnGUq7
Uj8mzqr140EExVZ6bnWaOPKsHPgw5MRPTJIfgqxYczNO6xogNtPBuOj0mk2eX7uO
Slyl/9LpMomSI/URtkZ2XCiaCCsCAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRIZp67
tua3Tib275yWbQkl5+JvrDAfBgNVHSMEGDAWgBROn0X9Zc6kf85TPxHPwVxHVVTf
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1RwOUZfV1hP
cEhfT1V6OFJ6OEZjUjFWVTM3dy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9jZmFkYmE0ZC0xMzRjLTRhMWUtOWQ5Yy02NGU4YzVkNjEzZjMv
MDdhYTI1NDktOWVlYS00MjhkLWEyM2QtYzBlNjZiNTljZGIwLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvY2ZhZGJhNGQtMTM0Yy00YTFlLTlkOWMtNjRlOGM1ZDYx
M2YzL092LWhpczA4STk5NlJvZlQ5VUEtb3dmbG56WS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGAiABP8GA
MA0GCSqGSIb3DQEBCwUAA4IBAQBtwp1QEiB+r8Eqnq5bv2Ea/Srj7rBhQKmQidu+
0HCc6/TXEWr2iBHwmMe2whvL1EyRRhWQY7XwMBDk3UeTMDSWZfEpy6P3k1X+7mLq
DyON0zJE0OBwNyRs+FgRFJZQelI5xvj9TnPh/6dZV7Y7x8vl2bqjMuI1jjjciFss
ALRGYfHM5H8ezVp9Q7Ww3I4hHiI9R5OTyqcHiYCMFC3IrsxbHIEsqBvuPeSflY2z
/5rOJjZXsxPYJkzxOOJ8lOxHn6jYoNu2wJQUPmgoTVByzPC8WVTIdwgW+rKIKlS4
BTUTwjTy2JOpS0l+tyFomvlcqjUwpalUCYtxu+uE+nPco1v5
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net