Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa
File: bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa (raw, json)
Hash identifier: q7cwv01PI2xBjRYcQ82Rnzvd5Bunvq4wKYF0knOJD2g=
Subject key identifier: B8:80:A0:3D:7F:06:0B:C7:A3:A4:D6:D1:AF:23:45:21:46:08:16:F3
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 04F5FD699F36C32316EA11EF6879419C9A0924AE
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa
Signing time: Sat 05 Apr 2025 00:11:09 +0000
ROA not before: Sat 05 Apr 2025 00:11:09 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc7:f880::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:f5:fd:69:9f:36:c3:23:16:ea:11:ef:68:79:41:9c:9a:09:24:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:11:09 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=7f974ffc2dd3b236083d7455062efd23b7353efce81c1ee02b02a7cab19c64a4, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:10:61:fd:f4:dc:c8:58:c4:e8:b3:ca:d2:f0:
94:56:91:a4:8a:1a:fc:97:7a:f9:33:35:ee:53:77:
0a:1f:f3:e3:0a:a9:27:a3:d0:9d:f4:e8:23:f5:ca:
7a:a5:2d:63:79:bc:56:94:4b:ee:91:98:5e:04:32:
e4:e2:6f:74:f1:5f:1e:8f:b4:17:07:36:80:75:e4:
15:1e:8e:db:90:60:ad:6e:3f:0f:5c:60:4e:06:f0:
b5:6c:73:87:4a:13:9d:ce:ee:7f:4c:46:f0:42:67:
40:0c:26:36:13:71:69:e2:66:a2:46:ed:48:f7:b6:
3b:e6:d7:a0:80:d9:b1:e9:06:11:be:6c:69:a7:b1:
7c:ae:ae:54:94:84:6b:ee:62:0e:78:93:32:80:69:
70:51:02:5d:22:2e:23:02:37:35:a1:3d:06:dc:3c:
28:a6:88:6a:76:9f:b4:16:aa:eb:b5:14:40:9f:6f:
cf:9d:a7:c9:c1:9e:65:24:48:6d:ff:f5:52:be:6a:
b6:1d:5d:9f:3c:8a:76:56:04:5c:7c:54:5d:1d:91:
01:e2:1f:43:a0:4f:63:75:09:a9:b3:75:b3:a5:7b:
32:c4:31:37:99:55:d7:59:94:55:47:29:6f:e2:7a:
19:ce:6f:c4:9f:51:52:84:4c:77:7e:a7:7d:e0:90:
3c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:80:A0:3D:7F:06:0B:C7:A3:A4:D6:D1:AF:23:45:21:46:08:16:F3
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/bb926853-f3ad-4f1a-b024-12b34c55d5bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc7:f880::/48
Signature Algorithm: sha256WithRSAEncryption
01:b3:eb:23:b3:6c:4a:9a:b4:2c:ea:b7:3c:20:34:af:40:86:
aa:f1:ad:2a:ea:06:45:41:ef:57:5f:78:bf:e5:78:dd:c0:b0:
75:9a:73:e1:7f:e9:58:b6:55:2b:31:65:a4:8a:84:1d:38:90:
d5:97:31:48:19:fb:be:3c:83:02:0b:a8:24:71:82:d0:43:3c:
0d:1c:0a:e5:23:23:70:1d:1d:99:b8:52:9e:86:25:be:83:99:
85:96:57:0e:f9:dc:82:63:23:46:58:44:aa:80:31:9a:79:b7:
04:90:3d:5e:fb:19:a9:4b:74:b0:e2:09:c7:ad:53:d8:82:3b:
c8:10:8b:63:5a:ab:bb:57:17:aa:aa:36:4c:18:c3:bc:d6:f9:
3b:3f:f4:58:5c:97:53:55:be:cb:0b:1a:95:7e:8d:ff:1d:e8:
9b:41:4e:0e:94:2a:2e:70:1e:94:3f:bd:51:4a:46:87:6a:cd:
7a:35:10:71:40:ac:40:c5:84:e7:b5:de:11:52:a2:60:fd:67:
ca:48:bc:07:82:59:31:8a:bf:5c:32:d1:b6:f0:bf:d1:00:8b:
6c:b3:84:b1:d2:c8:12:82:53:92:43:61:a5:3e:3c:30:29:59:
58:fc:c8:f5:20:35:e0:a8:42:96:16:02:8b:95:8b:ff:a1:cf:
e4:9b:7e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net