Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/44eab036-1e27-432b-88e4-7853ea21e1a6.roa
File: 44eab036-1e27-432b-88e4-7853ea21e1a6.roa (raw, json)
Hash identifier: LXIrI2OytoEp05N968BiE1t91jHtGulPyOe2pyhahvM=
Subject key identifier: 77:3B:F8:33:9C:8C:6E:E2:05:1E:B3:C1:37:66:A1:AC:D4:4F:04:4B
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 0DF8A071A0EA6B942E26BCA8D70D2CA90456945C
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/44eab036-1e27-432b-88e4-7853ea21e1a6.roa
Signing time: Tue 11 Mar 2025 15:06:40 +0000
ROA not before: Tue 11 Mar 2025 15:06:40 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc7:7800::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:f8:a0:71:a0:ea:6b:94:2e:26:bc:a8:d7:0d:2c:a9:04:56:94:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:40 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2f:62:4e:71:6f:69:ff:cd:61:70:05:93:a8:
e7:10:39:dd:fe:d3:ca:75:61:47:cd:6c:52:ff:6b:
0e:05:3b:ef:50:39:90:fd:ad:57:49:65:04:d1:f2:
52:c5:36:62:bf:e0:ab:69:e6:35:90:0f:31:77:35:
2c:ec:dc:81:6a:57:ca:00:f6:8b:84:59:ec:2b:60:
bb:07:21:71:c9:73:83:9f:c8:47:8b:64:ea:ed:be:
23:4e:97:ac:f5:5f:4f:de:40:de:2f:3c:e4:1c:30:
ca:8f:00:f4:40:59:84:63:6c:e2:2e:94:cd:4f:32:
2d:d7:33:19:4b:b8:f7:fe:4b:3f:32:ce:99:63:79:
d9:14:ee:9d:0d:9e:b8:86:a8:91:4b:84:13:71:6b:
b0:1e:5e:6a:00:59:15:b3:ce:f3:7f:11:b7:ff:ed:
1e:81:dd:82:92:6f:34:12:e9:a4:db:ad:e9:62:07:
10:20:f7:4d:c7:2c:5f:92:35:03:80:8b:59:65:7d:
3f:a5:77:87:38:15:40:16:ec:bc:cb:88:ac:fa:25:
14:1e:29:e8:b4:1a:70:a6:55:9c:aa:28:9c:e4:e8:
50:68:9b:d8:a3:14:1f:49:8a:36:69:13:5b:dc:17:
5e:91:99:0f:de:f7:cd:75:b8:11:98:96:78:a6:06:
cd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3B:F8:33:9C:8C:6E:E2:05:1E:B3:C1:37:66:A1:AC:D4:4F:04:4B
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/44eab036-1e27-432b-88e4-7853ea21e1a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc7:7800::/40
Signature Algorithm: sha256WithRSAEncryption
22:21:05:98:3a:7f:70:47:58:9c:a8:98:b4:86:3a:f7:b9:43:
3e:17:5c:2d:b6:ff:89:18:78:e8:11:15:17:13:91:f2:4c:fc:
07:63:ff:d3:3d:20:15:6c:28:a8:36:8d:aa:da:38:12:5c:58:
d6:11:be:f3:bb:ea:6c:57:59:e3:f5:1a:34:f1:53:2b:12:3c:
62:46:11:09:4b:b2:6c:fd:b8:db:52:ad:b5:31:1c:cd:2a:ad:
01:73:b3:de:c8:22:42:93:e9:62:1d:5d:79:b0:00:54:e7:f9:
0b:76:d5:7f:c5:69:d6:b8:46:c6:51:20:89:2e:62:2d:d5:67:
ec:db:a5:01:cb:92:9e:70:6f:28:b7:d7:76:d9:a8:0f:ab:ba:
0a:55:e0:fe:e2:05:18:1b:cd:c0:bc:08:54:fc:92:75:cc:fa:
86:01:9d:de:c6:b3:20:7e:88:26:5c:42:95:1c:93:b2:78:40:
38:48:c4:dc:e2:9e:62:b5:70:3c:a5:3b:77:41:20:d5:b9:76:
c8:04:5b:8f:96:6f:d4:a6:52:58:bb:99:1d:e9:7b:20:36:71:
f6:2a:ae:02:10:0f:0f:f3:1b:1a:1a:3a:66:aa:25:49:f7:80:
0d:d6:e2:95:cf:1a:8e:2e:aa:69:38:13:bd:d3:14:ec:f3:63:
be:ec:dd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:29 2025 by rpki-client