Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/7da13080-67e7-4ae7-b0bb-d85b087719b7.roa
File: 7da13080-67e7-4ae7-b0bb-d85b087719b7.roa (raw, json)
Hash identifier: LDtT3DDXzPTSRGKbLaPf6PfQDFpYKM2cvzDk/+LnX4E=
Subject key identifier: 4F:5E:47:62:F9:A3:F8:8C:06:46:D8:E0:71:76:05:CC:BA:DE:C9:9B
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 7A804AC4BC2D8F6D4A1313BD6C0518D7B6465241
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/7da13080-67e7-4ae7-b0bb-d85b087719b7.roa
Signing time: Tue 11 Mar 2025 15:07:36 +0000
ROA not before: Tue 11 Mar 2025 15:07:36 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc7:7000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:80:4a:c4:bc:2d:8f:6d:4a:13:13:bd:6c:05:18:d7:b6:46:52:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:07:36 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:d8:b6:c1:73:ac:e9:c1:16:a9:46:86:58:
9a:3c:7b:1d:49:ad:15:ae:9b:7f:32:eb:d5:09:d7:
0d:98:48:83:21:3b:ca:a1:65:49:6c:bf:5c:c3:5e:
3b:f6:5e:19:45:a5:de:7f:8a:7e:57:f3:f9:d4:db:
57:86:ad:24:4e:31:b3:87:7f:7d:bf:58:cc:18:18:
9a:90:82:23:7d:07:0c:e1:e0:79:e4:f1:fc:bc:ab:
86:e9:2e:59:cd:07:79:8b:94:91:a3:78:ef:6b:74:
cd:23:75:5e:95:ba:ee:ab:78:55:11:55:7e:d6:c3:
25:94:a6:a3:2e:8d:ef:30:c9:27:b8:7e:23:87:9f:
da:1b:af:1c:c6:6d:3f:14:fc:c2:34:39:c2:05:e1:
3d:53:46:16:32:9e:c8:76:d3:bb:32:b6:64:32:21:
4c:34:5c:05:ec:0f:a1:2f:ce:05:5d:65:b1:eb:b1:
e7:59:e0:ea:24:45:60:b2:c2:e1:1b:ae:b3:09:b8:
b6:e1:27:cd:ec:45:3b:e6:9a:e7:b8:c2:c6:65:87:
6f:46:ea:8b:11:b9:aa:42:de:f5:5c:2e:b2:6c:18:
e6:71:9a:a0:b2:b6:25:3c:f3:c5:c2:a3:f5:3c:5e:
39:fe:d9:e7:c9:da:8c:a4:e4:2c:7a:00:23:e5:bf:
dc:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5E:47:62:F9:A3:F8:8C:06:46:D8:E0:71:76:05:CC:BA:DE:C9:9B
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/7da13080-67e7-4ae7-b0bb-d85b087719b7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc7:7000::/36
Signature Algorithm: sha256WithRSAEncryption
94:e6:7d:32:71:bc:78:ea:b0:68:a6:b8:f0:05:0f:c5:47:de:
a2:56:f0:9c:55:25:2a:8d:cd:f8:10:c5:6e:55:d9:f8:45:c9:
8d:a8:ca:42:2e:c9:2f:b4:cf:f1:9b:f3:17:9a:b3:74:f0:b8:
42:aa:b8:2c:02:4e:87:dd:be:36:2d:80:45:28:90:97:d2:d6:
ab:74:78:7d:e6:91:0c:55:26:cb:3e:cf:ba:b1:bf:e5:7f:f3:
52:55:5f:a1:e0:d6:52:1a:ba:30:95:35:1c:12:2d:f6:5b:4b:
ce:f2:b1:a3:b0:90:7f:d2:d1:49:c9:c4:64:ef:26:67:c5:0a:
80:38:fb:c0:57:39:c2:b5:a0:7e:83:38:42:a3:d0:73:a0:a0:
26:5d:38:28:85:35:43:1d:a4:53:39:05:76:02:a1:0b:03:5a:
61:a4:0d:7e:16:c1:a2:84:03:61:30:2b:f8:d2:26:63:c3:6f:
b5:b2:1a:a6:68:62:71:26:bb:d5:73:c9:90:17:47:ac:cd:b3:
c8:ff:ae:ad:68:6a:48:9c:24:e2:2f:b4:5e:97:6f:97:88:f6:
11:3c:32:30:c0:39:7f:4c:98:61:b8:78:c0:3e:d5:57:e8:a6:
3b:f3:20:70:66:67:26:ef:c3:42:a4:31:d0:88:bd:6d:56:4b:
78:b3:af:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:52:17 2025 by rpki-client