Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
File: d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa (raw, json)
Hash identifier: pb3Ls5vsqF/u7zf1e5Dxhq/CxMdn0JkwBNIRCVcdzu0=
Subject key identifier: BF:ED:D2:03:66:15:71:49:7E:3E:50:3A:DA:97:9E:01:4F:DB:D0:DE
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 70EBE47C2C1545CF65425577E2FF2585A8E7EADB
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
Signing time: Sat 05 Apr 2025 00:20:59 +0000
ROA not before: Sat 05 Apr 2025 00:20:59 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3:800::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:eb:e4:7c:2c:15:45:cf:65:42:55:77:e2:ff:25:85:a8:e7:ea:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:20:59 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=3222c2a3fa0bf781570482758109c784954cd3fc2be6c57df1a6a9f662f24fe4, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:45:6d:2f:0b:f3:16:49:03:f8:71:75:5e:f7:
77:2d:63:c6:74:fa:9d:bc:2c:3e:99:1a:7d:c0:c2:
91:86:fc:91:75:fd:15:08:3e:b5:62:f1:ab:bc:a8:
b6:d9:f6:de:3a:da:61:09:96:3f:20:c8:ff:ba:ab:
93:ad:a7:c9:e1:b8:3c:29:b2:92:71:f3:b7:6b:16:
24:a3:f6:db:dd:a0:0a:d2:67:a1:e2:e9:b4:1c:95:
59:a2:70:9a:ae:1a:cd:33:86:45:02:c7:8a:7b:83:
a6:ca:78:03:c0:e7:41:1a:00:41:63:72:4b:ea:3b:
7e:a1:59:d9:0b:84:e7:aa:92:6b:05:d4:48:b5:56:
e6:aa:f4:ad:85:6b:04:ba:90:93:6a:5f:a1:d1:0e:
d6:bc:eb:56:7b:2c:83:6a:97:2c:65:92:01:46:71:
85:1c:63:5f:2e:30:6e:30:d7:95:0f:17:f5:e3:23:
f7:43:2c:67:19:f2:c2:79:68:ed:22:10:fb:62:e3:
23:8c:e6:c7:af:cd:7f:6d:6c:f1:ef:0e:95:30:0c:
a7:7e:b4:5d:41:9b:a2:8d:8a:52:b3:24:fc:6b:2d:
18:4e:99:f4:af:f0:5c:64:11:3a:00:78:0f:67:20:
65:10:44:16:e9:3b:fb:d8:4a:ff:5a:8d:49:e2:da:
03:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:ED:D2:03:66:15:71:49:7E:3E:50:3A:DA:97:9E:01:4F:DB:D0:DE
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3:800::/40
Signature Algorithm: sha256WithRSAEncryption
8c:3c:8e:40:7c:9a:21:b4:c2:f0:16:a1:50:5e:8b:db:71:3d:
49:35:6d:54:ec:67:08:d2:22:5e:2e:1d:3b:25:73:10:aa:84:
b2:3f:ee:22:22:10:45:c1:13:4a:93:fe:47:0e:a8:9d:3e:76:
14:da:51:5e:f3:0f:9e:4f:73:5b:1a:e6:6b:9f:2e:90:d1:94:
cc:ae:3d:5b:fc:5d:28:45:25:ee:93:0c:a1:e5:4b:d9:5d:9e:
43:c9:8d:53:6a:f6:27:ad:11:68:c9:09:ea:4a:68:89:8b:e1:
61:bc:11:45:56:5f:be:48:92:18:0d:68:00:97:71:05:a6:ae:
31:17:a8:5c:d4:5e:82:4f:4e:b2:ec:86:dd:80:e2:18:72:c2:
00:64:1d:58:50:65:75:18:7e:af:95:08:37:6d:f7:dd:5b:35:
65:a9:d9:3f:af:b7:46:c9:b2:5a:37:8b:c4:1f:c0:e8:35:aa:
74:81:08:b4:57:50:99:08:da:57:c0:a9:16:04:57:5b:b2:b1:
76:df:8d:69:f4:4e:b4:03:9a:02:12:15:fa:d1:f9:f8:96:2b:
23:fc:6b:12:87:8b:3e:f7:81:cb:c8:a1:98:a4:b9:b2:2d:bc:
03:cd:94:5c:07:17:24:6e:89:88:b4:d7:88:3d:67:ed:fd:00:
1d:2e:3c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net