Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/73ed1ee7-6ac5-4ab1-90b4-41a0fe75ac58.roa
File: 73ed1ee7-6ac5-4ab1-90b4-41a0fe75ac58.roa (raw, json)
Hash identifier: bVcIKTvNSI49KLItsVAPZQoDDCCSb8ND3Npy1vCnbvc=
Subject key identifier: 3A:DB:81:E4:78:FD:39:9C:6A:8A:D5:F5:44:7F:2C:85:94:73:9F:4A
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 7B494F736A9E6A38BD0468EF1870CEB4C91C8A1D
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/73ed1ee7-6ac5-4ab1-90b4-41a0fe75ac58.roa
Signing time: Sat 05 Apr 2025 00:11:13 +0000
ROA not before: Sat 05 Apr 2025 00:11:13 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc7:b000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:49:4f:73:6a:9e:6a:38:bd:04:68:ef:18:70:ce:b4:c9:1c:8a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:11:13 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=6037ba0d31ccb57db16936f126d72deda076a94f0c2d54ada4529514832ea477, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bc:75:ff:bf:86:33:6e:1a:14:96:b7:fd:4f:
c7:e2:d7:85:6b:32:a0:2c:8a:3d:7a:0b:83:45:27:
e4:2a:98:b2:36:02:d8:ec:4c:df:3b:53:3b:be:a5:
eb:1c:0c:f8:04:05:72:59:6b:7a:79:31:53:7e:db:
a2:9c:dd:52:1c:b5:2c:cf:a7:53:e7:58:d4:d2:13:
c8:7a:66:86:86:cf:27:0a:cc:e8:81:34:a6:e0:a5:
06:b1:6e:76:ac:03:c9:e1:0e:75:ce:92:64:76:d1:
2c:64:21:a8:c5:d6:e0:7e:04:de:eb:f0:01:85:e4:
7d:cd:52:f5:af:b3:9e:1b:19:88:b4:bc:4b:1f:08:
c4:6c:c9:d3:7d:c4:f0:58:bf:d1:60:99:13:71:35:
70:d5:71:d3:0a:ac:97:48:84:ac:06:64:fb:f7:08:
16:3c:5d:b7:4f:56:57:f6:05:8f:96:f8:f9:14:f6:
b5:d7:c3:0d:0e:d7:cc:25:4f:1e:51:6a:c5:36:28:
20:84:44:15:9d:ea:19:02:35:ba:c2:4e:d5:86:d3:
de:a9:72:51:af:6b:18:8a:10:75:7b:eb:2a:b8:a8:
87:1b:f2:6a:cb:15:69:08:ab:99:52:46:74:0f:c5:
4f:88:d8:a1:82:c5:80:2e:1f:83:7b:f1:1d:da:42:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:DB:81:E4:78:FD:39:9C:6A:8A:D5:F5:44:7F:2C:85:94:73:9F:4A
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/73ed1ee7-6ac5-4ab1-90b4-41a0fe75ac58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc7:b000::/36
Signature Algorithm: sha256WithRSAEncryption
6a:87:95:fa:09:22:c9:57:3d:c5:2e:6a:cf:25:63:e0:8b:d2:
31:2a:dc:86:10:39:d1:07:bf:91:98:ee:cf:11:f9:16:b0:0e:
ce:2f:fe:45:5d:c6:d4:62:74:38:2e:17:fa:b4:5b:7a:b4:b0:
32:b2:6d:30:33:da:a1:1b:8c:e1:a2:b5:4e:e9:63:5b:f6:c9:
bb:7d:fc:3c:f7:cd:11:59:10:47:a8:d4:19:b5:7d:cf:83:76:
90:d8:23:80:9f:bc:fb:58:b6:7e:db:99:21:52:6a:20:34:14:
8b:bb:d2:86:86:14:32:c9:e6:00:9d:7c:4c:b7:56:f1:33:62:
ba:65:75:1d:47:8e:ea:57:38:f9:6b:18:6b:ff:8d:51:2e:6a:
4f:e4:62:59:3f:0a:02:03:5d:f7:35:b7:31:ad:b4:75:32:a3:
3d:90:bb:c8:7d:b8:cc:33:c9:06:73:9a:48:6a:c2:08:6f:8d:
8f:b3:d1:f9:15:31:84:ce:ae:0a:67:f9:f4:0b:81:83:4a:c5:
d6:60:0e:b8:3d:ab:1c:00:ba:0e:5b:a3:19:e4:30:76:4d:f1:
9f:47:c3:66:0d:37:f8:04:9d:36:93:cf:3f:44:fc:19:2b:2c:
43:2f:08:9f:97:aa:70:c5:02:35:87:3e:5a:cd:99:01:47:ab:
55:13:40:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net