Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/2b3faf28-e8b7-4e39-99e4-e3cb6577dafb.roa
File: 2b3faf28-e8b7-4e39-99e4-e3cb6577dafb.roa (raw, json)
Hash identifier: 40cnLtQdzxJIJMlkOY8r/Nys8st6Go228KhLdSYoobw=
Subject key identifier: A6:CB:34:A3:43:59:79:BA:B4:4E:2C:86:DF:B5:1D:80:D8:C9:8B:BB
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 4D5237B40086F3B0F8C92998ABF8166C41AF9D20
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/2b3faf28-e8b7-4e39-99e4-e3cb6577dafb.roa
Signing time: Sat 05 Apr 2025 00:20:37 +0000
ROA not before: Sat 05 Apr 2025 00:20:37 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2001:3fc4::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:52:37:b4:00:86:f3:b0:f8:c9:29:98:ab:f8:16:6c:41:af:9d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:20:37 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=202d6b4c0d47a24a98869208ca770fa7380fb825034164c1f4d4d2977ad1105f, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8f:a3:cf:d3:b9:54:a2:7b:16:72:e1:1a:17:
a6:4b:e8:f5:3e:a3:43:e3:c0:34:0d:20:e0:0a:d0:
8c:d4:ee:9d:7d:46:d6:d3:a5:57:0f:95:d4:24:47:
7c:32:a4:c0:f4:bc:41:17:e3:51:f9:47:f7:75:a3:
6d:a0:3c:f9:d8:3d:36:07:74:eb:35:4f:77:20:d6:
e8:a9:c2:7d:dc:29:12:cb:d0:f9:d4:92:6d:e3:0d:
26:26:ef:20:3e:cc:e5:94:a6:fc:40:5d:75:2c:83:
6a:29:93:e3:2f:1f:45:16:37:94:c8:e1:97:49:d9:
a6:94:8b:ff:b8:b7:d4:16:ab:72:59:99:0c:e0:6e:
76:d4:91:41:7b:31:a0:01:cb:fc:cc:4a:82:5a:6e:
01:80:ef:85:dc:a1:57:98:41:28:87:1d:c5:8c:3e:
6e:da:40:5b:dc:14:99:c8:66:9a:db:f5:11:33:b6:
86:0f:47:2b:22:f9:20:50:95:63:cc:81:7a:71:89:
a8:16:5e:2f:5d:c9:dd:18:0a:23:81:c1:37:0c:73:
10:b1:85:b3:79:d1:c0:2c:0b:d4:53:cf:63:10:c7:
1e:3f:1c:a3:fd:22:e4:93:ed:22:ff:fe:b1:e9:b9:
a0:cf:a8:cc:72:b3:ae:e7:ba:32:53:ac:41:21:2a:
ae:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CB:34:A3:43:59:79:BA:B4:4E:2C:86:DF:B5:1D:80:D8:C9:8B:BB
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/2b3faf28-e8b7-4e39-99e4-e3cb6577dafb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc4::/36
Signature Algorithm: sha256WithRSAEncryption
81:15:46:ab:db:8a:8f:67:73:a1:41:c1:f5:17:32:91:09:4e:
2a:eb:bf:77:70:f3:9b:17:8c:df:9b:db:9a:78:52:96:15:8d:
f7:28:b8:74:e1:07:15:12:99:5b:ec:d7:ee:0d:b9:4b:3c:ec:
81:09:d0:38:67:60:4f:7f:63:77:cf:6d:29:9e:92:7c:43:a8:
6c:d7:33:d9:dc:70:30:f2:6f:5f:a4:06:c1:f6:f5:6d:56:1d:
e9:0d:a6:dd:93:b6:c9:d5:fd:cb:84:74:23:8b:29:bd:e5:5d:
ae:08:ac:8a:2c:dd:c2:40:bb:a1:17:24:59:bc:3f:a3:ed:89:
51:94:24:d1:1a:88:76:f3:a6:44:9e:cc:80:62:91:71:c7:5e:
33:5e:fe:fb:21:ae:d5:81:45:ca:b4:1c:a3:91:57:9c:52:69:
ec:e6:cb:1a:33:76:96:aa:d0:d8:3b:5e:bb:ef:59:0b:ed:8c:
91:8f:b7:e1:d4:de:cf:bd:99:30:1a:bb:e4:0b:76:ce:36:fc:
31:4c:8a:64:67:36:2d:e7:9b:e4:81:a7:c3:5f:9b:71:b7:a8:
8d:26:5d:6e:81:09:ed:6c:b6:36:30:69:dc:63:6f:de:38:c7:
5a:0f:c8:a6:82:80:37:bc:80:f4:8a:d0:24:84:a7:2a:bd:81:
13:d8:0b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net