Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa
File: 06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa (raw, json)
Hash identifier: JlDI188bRJwX+MH6g97S5ho4vA1jcqEnhCPxHLW5CW4=
Subject key identifier: 73:2A:8C:E8:0B:E6:CE:30:A7:F4:74:69:4E:51:96:D0:D8:63:83:88
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 325A66685F49577D0D5CBBEEF9D1248F46DFDAA3
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa
Signing time: Tue 11 Mar 2025 15:06:51 +0000
ROA not before: Tue 11 Mar 2025 15:06:51 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:5a:66:68:5f:49:57:7d:0d:5c:bb:ee:f9:d1:24:8f:46:df:da:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:51 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:87:8c:13:c0:51:32:40:14:f1:a2:6c:16:d7:
37:71:40:63:07:56:97:d6:59:01:fe:ef:c9:8d:03:
30:3b:23:32:e2:b2:cd:f6:f0:09:50:f5:38:41:58:
14:cc:53:a8:b7:b0:be:c2:78:78:26:42:b3:7a:b5:
66:2a:52:fb:5a:62:5c:51:78:82:28:1b:a1:b6:4a:
5e:44:d6:3d:c9:2f:ff:0b:b7:08:d6:b1:22:8a:c4:
06:19:03:d1:a6:a1:98:f6:cc:57:55:8c:f4:a3:90:
00:71:9c:d2:db:4e:ed:c8:05:fc:26:6a:10:62:d1:
90:9f:f5:cd:ae:ed:22:5e:4b:1a:68:c6:94:97:d6:
7b:c5:b5:c7:1f:ce:19:25:45:f6:90:43:e7:93:46:
dd:92:b2:cc:7f:51:03:0d:e4:54:c2:b1:48:25:5c:
6a:12:c6:25:14:37:da:be:0b:e0:6f:5b:77:90:5d:
89:e0:3f:99:bf:73:b9:05:0a:32:62:b4:00:90:ba:
cf:c3:55:87:6f:2a:c6:f5:4d:e9:fc:fa:5c:d1:39:
ba:3f:8f:52:1c:d8:93:dc:67:5b:db:15:ac:20:7a:
9e:89:88:cc:a6:fc:6b:de:c6:41:90:45:35:74:4d:
2f:10:86:ae:93:e4:51:e4:81:af:e5:8b:89:8f:ee:
f9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:2A:8C:E8:0B:E6:CE:30:A7:F4:74:69:4E:51:96:D0:D8:63:83:88
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/06f5324f-fb2d-4212-b1f7-6ca0b172bf22.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3:8000::/36
Signature Algorithm: sha256WithRSAEncryption
42:1d:21:d5:b4:96:bd:26:af:7e:b1:da:75:c8:3a:01:9a:7c:
51:5c:20:58:ea:c1:c8:b3:cd:98:00:36:02:43:d6:a7:92:8a:
a3:47:48:03:36:3d:a6:e3:97:b2:02:c1:e8:71:90:e5:7f:23:
ab:5b:6d:44:c3:3f:7f:b8:b4:2b:99:be:17:03:95:08:5f:53:
88:ba:37:33:8e:04:26:95:05:7f:5b:47:2e:2a:f9:f4:4c:2c:
21:09:5e:43:28:0d:87:29:98:e3:53:e2:1c:c6:32:f1:59:0b:
e6:6e:cf:12:4c:5a:ca:5f:19:80:07:05:2e:f3:9d:a2:b9:29:
b9:0f:9a:78:b4:2c:a6:02:55:c2:55:65:b1:f3:29:2e:06:64:
81:8c:68:23:5f:32:c8:1f:e5:69:be:ce:ab:60:bd:e8:94:fd:
d8:41:fc:f6:22:65:d6:90:75:ef:19:e7:73:82:78:15:48:38:
bb:9e:a1:72:ea:b0:2f:fe:17:b7:7f:36:4e:17:2a:87:a8:d5:
a5:b9:c4:a5:df:fa:99:90:c0:a2:0b:38:a8:f8:d3:71:c6:6b:
d6:b0:ee:c5:12:b8:51:43:bb:8a:60:37:55:97:6a:98:5f:20:
98:49:1d:0b:bb:f4:8e:09:8f:46:fa:57:49:b9:d7:2a:b3:ad:
7d:21:a9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:08:49 2025 by rpki-client