Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa
File: 78ea1ce2-8d09-441d-ad92-848a5871e58b.roa (raw, json)
Hash identifier: LkU6o3e5aKJxgYAAVOrLPnHd/RIwd7WxcXBa7N61+D4=
Subject key identifier: 5F:CE:B6:6D:A2:44:8E:18:8B:56:4C:07:17:D0:4B:94:C3:2C:80:D0
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 63808A64B25E7CD34A13DB7B7426CCBD86F5F6AE
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa
Signing time: Sat 05 Apr 2025 00:21:01 +0000
ROA not before: Sat 05 Apr 2025 00:21:01 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:80:8a:64:b2:5e:7c:d3:4a:13:db:7b:74:26:cc:bd:86:f5:f6:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:21:01 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=1f64db8af11249d8e69c177b6383238970701e7b7f797744ce8802f3d33aa181, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:08:f1:4d:2f:2b:c4:db:cd:fa:72:e2:8b:75:
78:29:e6:01:0d:21:92:10:6e:5a:49:6c:06:d5:14:
8a:55:c5:33:4c:f8:fb:cf:cb:ae:2e:37:d0:d5:0e:
77:4d:9f:52:82:33:64:81:50:62:3d:52:0b:67:12:
50:19:a4:b2:e3:52:bb:da:3d:c0:dc:b4:19:ad:60:
bf:39:c3:84:4d:a3:05:95:14:53:61:6f:de:06:94:
33:97:ae:b8:da:39:03:03:ef:23:dc:88:d1:b0:fa:
54:5a:b9:3a:61:4d:84:30:95:75:9a:4a:0c:b4:99:
4d:16:67:11:3a:c8:85:1c:fd:60:b4:04:2d:0f:b9:
1e:1a:a2:29:13:62:2c:c3:0e:b5:f5:ef:2d:b9:04:
a1:42:27:7f:d3:ac:4e:1b:d7:c9:95:87:7e:ec:a2:
50:81:5a:b1:6f:4c:a9:63:ab:29:6f:39:17:88:b7:
f3:3a:61:0a:fb:16:ea:db:70:42:35:1d:43:76:36:
38:d1:6c:ef:ca:86:84:78:9a:9f:75:67:a2:5e:f0:
da:8c:b2:1a:5b:85:e1:75:ee:fd:4f:a7:0d:7e:ae:
cd:81:9a:80:6a:c7:34:ab:54:6a:f7:38:82:43:0e:
9f:0b:8a:da:6f:62:08:7b:f8:c3:f5:c0:5d:fc:0a:
eb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:CE:B6:6D:A2:44:8E:18:8B:56:4C:07:17:D0:4B:94:C3:2C:80:D0
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/78ea1ce2-8d09-441d-ad92-848a5871e58b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3::/36
Signature Algorithm: sha256WithRSAEncryption
20:ce:b0:e3:21:6c:ee:fe:58:73:6e:96:a1:ec:e3:50:93:56:
24:53:12:47:97:21:11:64:31:9e:37:5c:f7:44:24:77:31:58:
17:e7:57:7a:9f:46:2e:e9:7c:14:b8:f6:95:ad:2b:be:f6:03:
cc:fa:2d:8b:59:a6:fc:24:fa:f9:04:98:70:7d:ab:66:98:05:
b6:d5:96:60:27:6c:08:63:1a:27:a0:6a:62:4f:f3:54:41:c2:
68:80:7f:cf:b3:d8:07:d5:4d:03:7b:a9:ca:35:b4:ce:1a:ee:
30:97:d4:27:74:e0:14:f2:2e:71:ef:45:07:98:84:4c:b3:bf:
4a:c1:c4:07:b3:7f:2e:e8:d9:31:c4:53:88:fa:e6:47:c6:4f:
39:52:72:91:2d:27:2c:38:d9:f7:a5:75:0f:ba:65:df:16:82:
0f:37:f3:7f:20:70:ca:fe:27:a6:5d:94:98:94:41:87:f5:82:
96:4f:b0:85:93:23:8b:a6:6d:cf:f5:0f:52:5e:ba:4b:17:68:
37:49:12:46:c1:f2:a9:5e:2a:c9:8f:e7:7b:c0:57:21:29:37:
3c:c3:c3:49:93:34:e6:0e:ae:10:4d:4a:b6:8b:10:f7:40:88:
93:02:4e:db:d7:d7:bb:99:a0:61:c1:8c:0c:5d:b8:93:df:3b:
a7:50:3c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net