Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
File: e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa (raw, json)
Hash identifier: ppcO8fxbRUxnenvwalIL243vy97Ff429znomdJerTqY=
Subject key identifier: 7D:38:7A:8D:A5:84:EE:FC:97:70:A3:2A:D6:5C:3F:E9:C4:37:75:F6
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 711C9DA9D72B27130BEE97EF05792314E4242159
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
Signing time: Sat 05 Apr 2025 00:10:47 +0000
ROA not before: Sat 05 Apr 2025 00:10:47 +0000
ROA not after: Sat 10 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc5:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:1c:9d:a9:d7:2b:27:13:0b:ee:97:ef:05:79:23:14:e4:24:21:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Apr 5 00:10:47 2025 GMT
Not After : May 10 23:59:59 2025 GMT
Subject: serialNumber=08c4bf5b5963b9ed233c55b04273e591c6723ef78e2b69c64d2f5e3868e60484, CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7a:26:bc:c6:f6:ff:4f:fb:2e:12:58:e4:de:
2b:53:93:01:ec:85:f9:c4:4c:77:76:11:a3:6b:4f:
3c:8b:24:23:50:f9:e0:1f:78:fb:9a:7c:ab:6f:a8:
c1:83:77:8e:f8:3e:3a:05:42:e4:19:f0:57:13:7b:
7c:26:a5:25:86:08:ff:c9:fc:dd:44:a1:32:80:a1:
87:61:0c:a0:fa:d1:f7:13:eb:d1:81:8f:10:54:ca:
3c:50:77:db:04:1e:af:63:c5:f5:36:96:8b:a1:5f:
14:6a:31:b6:69:e7:17:f0:ac:c7:99:be:63:f8:49:
aa:f0:73:8e:3a:b2:ef:84:d3:c2:0f:9d:ca:de:6d:
c7:62:43:08:58:e9:00:9d:83:c5:2d:a1:5d:40:e6:
05:7a:58:f7:3f:fd:8f:d7:94:99:33:83:f9:9d:72:
6f:d5:24:84:b6:86:7c:dd:88:18:e2:db:38:95:5a:
ec:96:58:30:ac:c6:46:6f:93:97:e4:bc:ba:9e:1c:
ba:d5:78:71:e0:7e:44:4c:d9:b4:f2:1b:56:7d:07:
57:fc:21:a4:d9:52:d0:ef:c3:d3:25:2f:48:5e:97:
67:20:04:1c:73:90:50:fb:78:c1:37:9a:a7:16:02:
0f:b4:bd:7a:e0:d5:db:15:be:06:cc:28:ca:3c:0b:
bd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:38:7A:8D:A5:84:EE:FC:97:70:A3:2A:D6:5C:3F:E9:C4:37:75:F6
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc5:8000::/36
Signature Algorithm: sha256WithRSAEncryption
8a:79:26:81:ff:6d:ad:27:aa:fb:3b:e8:c2:3c:45:d6:c4:9b:
40:e9:6a:ff:6f:1f:f7:ba:a5:80:4f:c4:1d:22:fb:d8:cc:d6:
cd:7b:48:6c:6b:30:f6:61:99:56:69:55:cb:7f:04:a8:07:eb:
25:a5:30:e0:7d:b8:92:b7:be:c6:0b:11:36:15:14:a7:56:a9:
81:33:b7:ef:ab:b2:5a:d4:ba:bd:cd:c2:0d:dc:4a:5c:d7:e1:
77:48:8a:f1:62:e8:f4:f4:39:54:c0:f5:52:52:ff:22:ff:7b:
a8:f5:5c:4e:98:f3:1c:52:2c:1c:14:12:83:1c:9f:05:71:40:
f7:5d:aa:b0:15:35:3c:9f:78:b4:0b:3b:8c:16:06:b0:04:40:
9f:df:e0:78:89:3b:d6:5d:52:0b:25:3a:d9:9f:d5:22:a4:8a:
f4:83:a8:52:ce:12:02:33:ac:5e:14:fe:5d:b7:54:5f:d1:b1:
e4:72:f1:b1:54:50:39:4c:8f:9f:9a:2f:c4:13:4f:b6:f2:cf:
10:86:6a:3a:dc:5c:69:7a:e6:77:ee:f2:02:21:05:e7:61:58:
18:94:b8:a3:a3:bc:b9:22:c3:e4:08:1f:8e:cf:60:e1:46:43:
cb:84:f7:91:38:b1:65:c0:b9:f9:3d:69:1a:ec:a2:ba:16:ae:
85:c5:08:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:11 2025 by rpki-client on console.sobornost.net