Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa
File: 6ab0b120-4886-40dd-bd1e-286dca434f7f.roa (raw, json)
Hash identifier: 7i7WdRVwbPzOFudiUeW4Rg6HpNV4ArRhNhoDIFKz620=
Subject key identifier: 8C:AC:16:2D:A7:05:0D:AD:C8:21:9B:A2:ED:80:B3:C1:ED:87:D1:DB
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 0B3FE3F3C3852EC27A4CC2E973A9273F32ACE5B8
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa
Signing time: Tue 11 Mar 2025 15:06:45 +0000
ROA not before: Tue 11 Mar 2025 15:06:45 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc1:8800::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:3f:e3:f3:c3:85:2e:c2:7a:4c:c2:e9:73:a9:27:3f:32:ac:e5:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:45 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:07:12:f8:26:fd:9c:c2:a2:36:98:47:f4:22:
aa:c1:b1:1f:e8:21:7e:b1:04:25:c8:cb:92:9a:e1:
7f:39:1d:77:d6:6c:6b:76:c1:40:76:23:01:b1:c1:
23:3a:0f:b6:98:b1:c1:9b:ea:61:46:4d:5a:39:2b:
60:d4:6d:b9:43:c8:51:2b:03:48:3c:e3:5c:d3:e2:
4e:55:32:f0:24:ee:37:93:14:c0:2e:ae:62:74:43:
88:04:8a:55:8a:48:24:b9:fb:c5:25:ad:44:62:51:
e7:05:87:cf:63:55:00:7d:2a:c0:96:09:7a:b9:06:
8f:96:8d:8f:a3:7a:30:76:37:2b:fd:93:68:a8:87:
ef:2f:91:00:9f:9c:31:a2:2a:90:e0:ad:eb:28:47:
9e:02:87:98:93:e0:a7:03:3f:8b:0a:17:d2:6f:f0:
25:fe:8b:f0:8b:11:e0:bb:0c:97:c8:a0:0d:ac:69:
9c:06:56:c3:fb:bc:4d:97:d5:47:88:b9:83:a9:85:
2d:e9:45:95:f2:e6:38:44:17:8d:31:49:a7:d1:86:
39:04:95:8c:a1:70:31:8f:2c:8c:86:f0:1e:09:96:
5c:07:92:94:e6:cf:f4:a5:43:d5:61:bb:47:45:5e:
a0:9f:9c:b4:5a:df:5b:a3:7d:c0:1f:bb:c9:0a:31:
71:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:AC:16:2D:A7:05:0D:AD:C8:21:9B:A2:ED:80:B3:C1:ED:87:D1:DB
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/6ab0b120-4886-40dd-bd1e-286dca434f7f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc1:8800::/38
Signature Algorithm: sha256WithRSAEncryption
94:67:fc:e8:d9:11:6c:a8:3b:f9:56:32:60:ab:03:bf:af:2c:
2b:5a:fa:6a:cf:07:b2:3a:4a:13:58:c6:d9:fc:ad:3c:ee:bb:
17:72:13:2b:bd:77:b4:42:41:83:97:1d:ca:33:8c:b5:02:e1:
b0:63:ee:32:df:8f:b3:ff:e1:06:12:1e:7d:00:24:cc:46:52:
a4:4f:31:50:ae:5b:3b:81:86:2b:dd:a2:b1:58:18:c3:3e:e5:
0b:c6:d7:d8:cf:67:63:1e:59:9c:b9:1b:8f:fb:87:b5:ec:63:
4b:4a:d1:d7:44:80:30:ef:b5:26:a9:05:00:79:9d:19:28:ec:
49:8e:54:07:05:00:2b:51:a5:ac:7c:77:32:a0:e3:5f:78:b5:
84:76:cb:13:81:56:97:3f:58:04:89:2a:42:0d:44:77:79:da:
08:05:bd:97:c7:24:33:32:e8:df:fe:ae:99:58:49:21:4d:fb:
12:fc:fb:67:d0:c9:2b:c0:5a:75:7b:6f:31:b3:98:26:5e:07:
48:f1:7e:1e:7c:99:ca:f2:49:a6:50:fe:f5:3a:22:40:e7:b5:
92:62:fe:66:d9:f7:e3:7b:e5:d7:87:1e:79:67:5f:13:87:05:
d7:7d:dc:3d:32:f2:48:0d:ce:b4:7a:39:52:6e:8a:66:2e:88:
68:7d:d1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:21 2025 by rpki-client