Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa
File: 1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa (raw, json)
Hash identifier: 38JJN4RWQ22HGDt1sEE0ZlIrPf1gFe8FMZ7B7Ff/ZTQ=
Subject key identifier: D5:C1:18:34:1B:F2:7B:7F:94:A0:4A:F3:1E:66:8B:5B:AD:2D:DE:20
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 04BEB0CC872864872A7280A5A63AD80ABAD3CD4C
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa
Signing time: Tue 11 Mar 2025 15:06:46 +0000
ROA not before: Tue 11 Mar 2025 15:06:46 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc1:8c00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:be:b0:cc:87:28:64:87:2a:72:80:a5:a6:3a:d8:0a:ba:d3:cd:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:46 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:02:fd:38:29:88:aa:c8:47:58:a4:56:00:44:
5c:60:42:a9:95:ae:16:d1:10:cb:8d:29:a9:9a:f6:
c4:0a:e9:a0:8f:17:c2:dd:62:dc:b7:e9:44:e3:4d:
af:a5:d6:32:7b:b4:0c:65:36:af:45:fb:c1:a5:60:
74:07:1b:e3:c6:75:13:04:63:d1:5d:ea:1d:6f:b1:
d3:5d:3f:21:61:ac:fd:d9:e3:f5:60:9a:05:24:02:
a7:65:01:93:01:09:76:25:da:b2:d3:4d:40:52:7a:
5c:c4:f3:2f:06:f0:1a:d3:55:70:b3:6a:9b:13:97:
36:01:41:ea:57:24:99:4e:94:89:c9:e2:53:fc:be:
a5:d4:e5:5b:c7:d9:8d:43:35:61:45:e9:07:0d:97:
47:8d:b2:a4:fd:01:0b:c1:2e:61:82:85:f1:28:72:
e2:46:f9:32:46:9c:fd:63:81:57:05:81:bc:04:cc:
f1:5b:2a:14:82:c5:dd:a4:db:fb:3e:bc:7d:2a:f7:
9b:7d:e9:55:a6:e6:3e:e7:28:0e:c0:60:7d:fb:f1:
d8:dc:8e:54:56:da:bd:05:17:2f:3a:69:cc:ef:33:
3a:b2:de:ad:f1:90:81:ca:62:96:79:cd:b4:a3:06:
b1:18:da:94:36:a1:43:a2:77:fa:80:79:88:b4:ce:
f4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C1:18:34:1B:F2:7B:7F:94:A0:4A:F3:1E:66:8B:5B:AD:2D:DE:20
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/1f7b2e34-a041-4b12-a5b0-5af0d6f43b9a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc1:8c00::/38
Signature Algorithm: sha256WithRSAEncryption
59:60:1f:bd:cd:89:94:1c:25:c6:09:07:b3:a9:53:00:1b:cc:
75:94:e7:c1:01:61:02:b6:cd:90:7f:a4:6f:7c:97:f4:0e:b5:
a3:94:4e:2c:ed:c7:d1:85:5e:ff:2f:db:2b:db:bd:aa:82:89:
d4:e4:1c:09:0b:f8:5d:2b:7b:ab:2b:c3:53:05:31:a5:cf:2c:
3d:ad:98:2c:e5:b9:f6:84:42:e2:be:7d:ca:26:de:d1:74:05:
06:4f:f4:bb:49:7c:ca:78:ef:fe:1d:09:b5:16:45:31:d8:d7:
8d:9e:d8:07:81:90:00:a4:ff:51:1d:dd:ab:c6:dd:79:4b:b1:
e8:c5:23:78:3b:da:6b:03:2e:3e:03:26:7d:4c:84:fb:e7:ca:
37:c4:0f:b6:ba:70:9a:4f:96:37:57:38:12:04:1a:6d:50:1e:
f0:c1:f6:bc:06:c9:bc:42:55:5e:73:3e:f4:24:a3:7b:af:82:
ce:03:d6:56:06:05:b2:7e:63:d1:86:fb:1e:dd:47:25:98:b9:
a7:e8:cf:60:0a:69:db:8e:8f:ec:59:36:22:d5:5b:9d:5c:6d:
9b:93:d8:50:0d:19:e4:57:8b:f6:ab:e3:2b:3d:9e:0f:4b:5b:
74:68:1e:36:1a:ad:f1:ac:43:88:e5:11:2f:48:79:74:7f:79:
67:44:d5:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:00 2025 by rpki-client