Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/c9fc58bf-3415-4839-940e-603e1b7d42f6.roa
File: c9fc58bf-3415-4839-940e-603e1b7d42f6.roa (raw, json)
Hash identifier: sDR63E7pFfr4mMQaSB0nOqdFUwWv50+J5p150DCrgOw=
Subject key identifier: 19:9B:F1:72:65:1C:51:5C:A9:66:A7:18:32:73:29:1D:93:78:DF:70
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 2FB0084B84F34B0094137B4F83D24967C68F5E74
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/c9fc58bf-3415-4839-940e-603e1b7d42f6.roa
Signing time: Sat 05 Apr 2025 00:20:12 +0000
ROA not before: Sat 05 Apr 2025 00:20:12 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc7:e000::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:b0:08:4b:84:f3:4b:00:94:13:7b:4f:83:d2:49:67:c6:8f:5e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:20:12 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=1c14d2941e19580533a1616d81b5cb73b6cefed098c11934fec24c87a63cf4d8, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fc:b6:b2:65:c5:ea:58:75:1f:0a:11:01:2c:
74:38:d0:ac:e5:77:29:97:f1:20:b5:a7:e7:02:82:
eb:38:a2:d2:18:d8:bb:f0:f4:0c:1d:ba:1b:dc:21:
1f:a3:3d:ac:37:1a:98:46:b1:3a:fe:a4:07:83:3c:
44:f6:82:a3:f4:c6:b6:b9:92:73:2f:ab:91:0e:61:
4d:3b:42:44:fa:e0:db:e3:34:43:67:03:cd:60:84:
ac:05:db:c6:7d:c2:31:42:0c:1e:a0:fa:93:37:25:
47:a4:eb:10:78:e5:55:a7:0b:4c:a0:98:86:d5:ea:
77:6e:3b:4b:21:83:a9:a2:03:80:9a:d1:e4:ee:d2:
4d:7a:55:c7:a1:a5:52:1f:95:4a:59:29:7d:99:04:
ea:49:25:36:95:b1:8f:71:88:1f:31:50:87:6c:ef:
8f:59:d9:36:bd:6d:5a:06:74:89:3a:d3:f2:b1:c5:
5b:30:9c:41:c3:2f:d2:70:d5:45:5c:bd:9a:19:00:
50:88:04:01:e5:d4:54:25:a5:7a:09:e7:83:01:ba:
91:34:35:cc:e9:08:5f:a1:17:19:21:57:f6:ad:6b:
a6:ff:e6:de:f9:a7:b3:13:78:f8:29:29:2c:9b:db:
91:a3:fd:c2:f7:01:65:5c:d3:58:e3:59:96:20:07:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9B:F1:72:65:1C:51:5C:A9:66:A7:18:32:73:29:1D:93:78:DF:70
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/c9fc58bf-3415-4839-940e-603e1b7d42f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc7:e000::/36
Signature Algorithm: sha256WithRSAEncryption
1b:1e:8b:94:9d:0b:43:3d:ab:6a:5a:51:fa:1a:1d:9c:76:66:
ad:61:85:36:37:00:05:03:34:18:bd:29:b8:65:2e:e3:42:05:
4f:5c:e4:12:66:c0:88:38:8c:d3:d6:00:3a:64:74:db:da:7b:
72:78:60:f6:dc:a9:de:89:b1:a6:08:56:b6:2d:9e:83:f8:54:
29:fb:18:b0:8e:22:77:14:36:12:83:6e:61:bd:78:82:88:a8:
f3:c9:7f:5f:32:3f:76:4e:5f:21:0a:b3:cc:74:d0:e9:7c:29:
76:0e:9d:06:e1:61:e5:cc:84:38:c8:fc:41:37:10:38:e6:ce:
37:bf:4f:f4:b1:6d:61:7f:f7:17:2d:44:06:cf:dd:eb:d8:6d:
54:62:c8:0d:63:51:0a:d4:b3:17:4d:3d:b3:0b:f5:ba:b8:35:
5e:ae:90:6b:57:3c:77:9d:5b:db:f0:d1:af:06:37:22:f0:54:
b9:f2:87:1e:ce:3a:cb:cc:c4:d8:b3:e4:65:f3:38:50:d5:da:
40:36:ef:7c:e0:76:9d:3e:0e:26:21:92:86:05:37:65:a9:2a:
7a:2f:28:c5:c2:6c:8e:0c:92:fa:0b:f0:82:37:93:77:31:b4:
1f:6f:c9:72:d9:4c:5d:5b:84:22:9a:1a:4f:1f:68:f9:65:99:
a2:7a:6d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net