Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
File: d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa (raw, json)
Hash identifier: wA2Rjw9cTX17GRl2WFpjvbX8e12gb2tLcx/tvix/5mI=
Subject key identifier: E2:42:51:B9:C5:63:15:A0:13:25:E9:9A:61:6D:81:3F:30:4B:EB:97
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 3E615F60352A91C013E67068E9FADCDAC4B7A2FD
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
Signing time: Tue 11 Mar 2025 14:52:34 +0000
ROA not before: Tue 11 Mar 2025 14:52:34 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc3:800::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:61:5f:60:35:2a:91:c0:13:e6:70:68:e9:fa:dc:da:c4:b7:a2:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 14:52:34 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:29:76:f9:fd:07:23:81:5d:6f:9c:11:7b:46:
da:8c:ec:79:de:01:e6:08:d7:9e:83:19:6d:c2:2f:
7d:d7:f5:39:f2:b5:62:51:a1:90:f2:b1:6a:e6:cf:
ec:71:91:a5:5a:f0:1a:8f:ed:1a:84:6a:4c:be:5a:
4f:f3:47:59:dd:1f:f5:ae:22:86:f9:cf:63:3a:9d:
7c:fb:0b:2b:e6:38:07:88:cb:1b:2d:4e:9a:24:0a:
f1:5a:dd:80:57:42:2d:ff:98:5b:fa:35:22:4a:11:
a0:37:f4:e8:0d:4b:6e:0a:fd:65:31:d1:12:eb:92:
2c:79:cc:9b:f4:ad:93:9b:d4:9f:eb:38:cf:f1:5a:
19:32:51:26:ba:d7:51:7b:48:cb:00:90:1d:3d:ec:
fd:8a:39:d5:ba:0c:4e:2e:74:b6:23:a1:98:49:e4:
0f:16:12:31:95:e3:b0:ab:08:df:bc:f8:7a:b6:2b:
72:94:f7:a9:c4:9c:0e:a5:39:09:b8:c7:12:f2:f2:
f0:ff:5b:1c:bf:b2:f9:1e:2d:a7:32:0a:ce:64:fe:
2f:dc:36:b8:31:a8:b7:ce:b5:12:75:ae:2d:2a:23:
31:eb:56:1a:98:aa:32:e9:bc:a0:6a:5d:57:14:f2:
c8:df:06:f2:3c:7b:95:d9:e1:40:80:c9:6f:f1:b7:
13:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:42:51:B9:C5:63:15:A0:13:25:E9:9A:61:6D:81:3F:30:4B:EB:97
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0c16247-cad2-4748-8340-6fe2e6d8ce6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc3:800::/40
Signature Algorithm: sha256WithRSAEncryption
4d:40:c2:76:05:bd:77:5c:0f:a0:19:91:dd:7a:f8:1e:dd:5e:
4c:6c:1c:15:d5:66:8b:ef:2c:e9:0d:b9:b5:b3:a2:51:c4:65:
0c:20:53:64:9e:ff:05:68:2c:f5:2b:be:03:3f:e6:00:4b:8a:
ca:1d:19:a9:bf:2a:2f:8e:7b:24:0a:34:08:5b:2f:f9:da:8e:
b5:7c:14:5b:0e:33:3a:de:7c:f9:25:6d:99:1a:82:b2:63:f0:
1b:53:f7:33:03:7b:6a:70:9e:3a:bb:89:1c:67:1e:9f:e1:8d:
46:31:98:6e:1e:a5:9f:c4:19:41:07:e1:87:8d:bf:6c:b3:91:
73:d5:9f:67:bc:5f:a9:01:0e:72:d6:95:6a:3a:eb:8f:47:61:
7e:9e:74:a7:97:67:9e:9b:91:11:4a:77:75:de:e3:29:97:53:
93:42:e0:6d:78:54:65:e8:82:15:30:96:5a:fb:05:28:d3:63:
22:40:56:ae:88:29:3d:05:55:30:0d:1a:c6:44:30:aa:af:81:
a5:a5:4b:ef:b0:d7:b3:fd:4d:2a:2b:1e:ec:51:4c:8d:97:b8:
11:a6:47:05:36:7b:39:c1:90:44:be:b7:b2:e9:fb:72:4f:59:
2b:78:7a:98:71:c9:de:e9:e5:84:81:49:80:10:8a:38:fe:5c:
89:f7:af:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:31 2025 by rpki-client