Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0cd9905-72c5-4ff9-98df-6b0d1c12a4c1.roa
File: d0cd9905-72c5-4ff9-98df-6b0d1c12a4c1.roa (raw, json)
Hash identifier: Iq4sc5hJkW4eQ///CRKyGhRQCsX76cgmWWWmJJ6CAuU=
Subject key identifier: E5:45:66:12:80:5D:B7:91:2A:97:FE:2F:51:6D:F8:2B:01:0B:09:A3
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 3235542D4457612870C0731BA569E5D76897F206
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0cd9905-72c5-4ff9-98df-6b0d1c12a4c1.roa
Signing time: Tue 11 Mar 2025 14:52:21 +0000
ROA not before: Tue 11 Mar 2025 14:52:21 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc4::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:35:54:2d:44:57:61:28:70:c0:73:1b:a5:69:e5:d7:68:97:f2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 14:52:21 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4c:36:ad:17:df:9e:72:0c:4c:32:19:c7:26:
fd:65:aa:1a:0a:c4:59:e2:d2:e4:e8:4f:bf:a8:1f:
e7:0d:16:7c:5a:73:c3:22:89:1f:7f:95:fa:c0:5b:
d5:9a:b7:ff:25:c3:49:f2:57:fd:3e:cd:97:d9:fa:
96:47:76:ab:99:8e:20:c7:45:bf:2f:76:18:75:4b:
bd:e0:27:1e:1d:b5:51:7b:d0:ea:3f:bb:28:e1:ce:
4a:fc:a0:cb:b8:25:83:8a:30:7b:01:1c:29:20:b2:
bf:af:fd:35:96:f9:1b:26:ce:07:6f:98:aa:2e:55:
29:1c:46:2a:b3:01:0f:4b:03:79:93:59:4d:29:a3:
9c:d8:cb:41:da:9f:7f:4d:b8:5f:d4:cf:64:1c:aa:
54:d9:76:77:70:27:c5:cb:ab:9a:6f:76:9c:b7:8e:
00:86:bc:d9:8c:b5:eb:a2:e5:e8:e3:1e:29:2b:ac:
41:3b:a8:14:22:99:46:3a:f6:01:62:4b:e4:26:0e:
fa:31:72:d3:64:24:89:d7:a7:3d:14:ce:ce:7c:46:
e6:2b:2a:6a:d8:90:96:26:67:93:2e:72:5b:99:21:
ba:bd:10:98:87:4b:99:48:72:e2:27:85:c9:b7:58:
7b:be:bc:b8:4e:8f:69:28:1c:fb:89:1b:bc:bd:e7:
b2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:45:66:12:80:5D:B7:91:2A:97:FE:2F:51:6D:F8:2B:01:0B:09:A3
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/d0cd9905-72c5-4ff9-98df-6b0d1c12a4c1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc4::/36
Signature Algorithm: sha256WithRSAEncryption
5f:23:3c:34:b7:1e:d6:a9:d9:fd:2d:7b:a6:df:fe:fb:21:13:
df:bf:61:68:b4:0a:00:1e:3f:be:01:ca:35:0b:ea:ed:2a:bb:
49:cf:48:d8:6d:0a:8d:2b:08:98:b1:5e:32:dc:8d:45:da:12:
8f:44:cb:76:00:24:f1:57:0d:71:92:4b:88:d7:1d:83:03:b6:
42:43:71:9f:94:66:64:c1:a1:a8:ff:f1:9b:5f:a8:b6:c9:17:
51:14:f1:ea:1d:4b:44:75:39:d0:da:8f:44:3c:d8:51:d3:cf:
ce:28:a2:88:1e:cf:e4:2b:ff:7c:a6:0c:97:37:ce:eb:6b:23:
1a:a6:d8:e2:73:94:14:d6:12:60:6e:6e:4d:54:62:24:04:72:
6a:f2:b2:f9:8e:31:c2:6c:67:93:64:7e:9a:db:e4:ed:58:15:
d3:c8:71:48:6d:62:86:20:37:09:93:fa:a3:bf:19:a8:69:ce:
4b:40:ec:6b:ac:ad:a9:8e:74:08:f5:b6:d9:71:3d:0a:33:bb:
85:3d:c4:14:3b:81:56:6f:61:45:f2:1f:f1:9f:24:1d:2c:b8:
d2:f1:9a:fa:54:26:6b:ae:d7:c0:7a:cd:9b:e6:4a:1f:fe:93:
7a:10:c4:2a:70:16:f2:c3:44:60:d6:34:ae:a5:1b:57:ae:f3:
4e:f4:c7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:50:05 2025 by rpki-client