Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1d757286-8eda-42c2-aecf-19a8c013dc64.roa
File: 1d757286-8eda-42c2-aecf-19a8c013dc64.roa (raw, json)
Hash identifier: 7rPGovKEKZIZpV2RL9KI73BZY2fp/oNOm5j4xUlQ+4o=
Subject key identifier: 46:58:51:DA:FF:10:15:3B:75:02:2E:1D:26:F4:1A:5A:CA:07:B3:13
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 13A883A312B9C5364551F69ED44E41561BEA952B
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1d757286-8eda-42c2-aecf-19a8c013dc64.roa
Signing time: Tue 11 Mar 2025 15:06:45 +0000
ROA not before: Tue 11 Mar 2025 15:06:45 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc1:8400::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:a8:83:a3:12:b9:c5:36:45:51:f6:9e:d4:4e:41:56:1b:ea:95:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:45 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:33:d1:d6:04:23:7c:d6:ca:ed:04:a0:77:84:
6a:05:3b:9f:80:49:46:61:71:a3:b4:92:47:4e:cc:
6c:6b:d6:a9:9e:d7:37:5a:48:22:3f:e8:38:94:98:
3d:30:44:55:62:45:d1:f1:4b:00:a7:47:bb:cc:1c:
c9:6e:68:d9:f4:b9:3a:0c:26:da:e6:2a:7f:55:8d:
08:c2:64:98:db:58:64:76:ac:60:52:8e:bf:74:8d:
67:73:a5:cf:4c:b9:c3:74:d4:bf:45:27:43:a7:c5:
1a:df:23:ac:75:4c:7d:da:02:36:8f:1f:93:c1:78:
d2:16:a0:63:cc:b5:70:db:ff:89:30:ea:cb:52:87:
bf:9b:6c:d9:b0:ad:fa:ec:ed:a1:85:fe:8a:7d:5b:
70:d6:8a:ac:20:89:bc:13:95:16:c0:fa:cb:a5:60:
a8:8b:9b:53:7c:ca:07:b0:cf:24:f9:77:20:57:00:
4e:53:58:76:c0:c3:90:61:2c:d2:d9:2b:f4:0d:a5:
4b:1a:13:9a:0b:8a:1b:aa:73:2d:85:ec:2f:70:d7:
7f:a3:a9:0e:a1:1f:63:85:2c:6e:7e:81:c7:32:9a:
80:54:5d:9f:0a:74:83:04:8f:69:b2:0c:93:5e:87:
6a:e1:75:d7:89:d3:f9:4e:a8:5f:f7:c3:01:a6:d7:
a5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:58:51:DA:FF:10:15:3B:75:02:2E:1D:26:F4:1A:5A:CA:07:B3:13
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1d757286-8eda-42c2-aecf-19a8c013dc64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc1:8400::/38
Signature Algorithm: sha256WithRSAEncryption
4e:03:47:27:4d:a7:39:1b:3f:0f:59:b5:ab:73:81:91:db:45:
55:ee:72:21:34:e9:ca:88:e8:d6:74:92:24:84:14:9f:12:78:
23:31:e1:3c:19:24:db:0c:56:47:07:50:2c:e7:22:e4:b5:d3:
85:91:1e:81:4e:4e:c5:ff:bf:f4:f0:23:95:28:42:4b:c4:6f:
6a:aa:ae:a1:37:8e:e3:95:b4:2f:4b:b1:7a:48:26:83:58:64:
df:45:f5:aa:20:f6:f2:ac:5f:76:3f:6c:33:a1:93:6f:ef:f3:
fa:50:a5:cc:7e:be:bb:99:33:68:e7:c8:ec:2c:2b:1d:af:5c:
d4:f6:35:8d:29:5f:b6:f8:00:d2:ad:f5:36:41:02:92:ef:6e:
99:f4:4b:75:81:0c:c5:6b:8b:56:a9:3b:b8:06:df:f9:72:77:
47:67:74:06:b2:71:b7:98:fd:09:08:76:b6:0c:e5:47:2d:82:
a8:ba:1f:01:59:30:6d:4d:52:60:fd:f8:cd:ba:b5:10:ed:86:
2b:bf:ad:88:59:24:85:b5:1c:23:7a:cc:97:31:88:38:cc:e7:
bb:38:e5:cc:c0:8b:57:4a:7b:fe:c1:b1:cf:b8:35:69:30:e2:
4b:ed:e8:a1:d5:1d:42:a6:19:59:c6:22:06:c6:6a:fa:68:53:
a1:52:77:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:08:46 2025 by rpki-client