Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
File: e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa (raw, json)
Hash identifier: ICf5A1jEHH6UGHaK2oMQX5fkK0jhj2x8/AZC5M24Ta0=
Subject key identifier: 9E:30:5B:4F:56:42:AE:6A:AB:45:DE:6D:1E:23:1F:D4:5F:1C:0C:34
Certificate issuer: /CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Certificate serial: 37B569FC3215ABF48625290AFD0B17E34BD29CF4
Authority key identifier: 4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
Signing time: Tue 11 Mar 2025 15:06:54 +0000
ROA not before: Tue 11 Mar 2025 15:06:54 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2001:3fc5:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:b5:69:fc:32:15:ab:f4:86:25:29:0a:fd:0b:17:e3:4b:d2:9c:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e9f45fd65cea47fce533f11cfc15c475554dfbc
Validity
Not Before: Mar 11 15:06:54 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=f6903138-420a-4c84-bf3d-9aea81f23eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:cf:a1:f3:b5:75:4d:a9:2c:62:d9:e5:6d:bd:
b9:1d:59:5f:29:9f:fb:61:58:5f:f4:60:4b:2b:47:
2e:5d:be:70:0b:33:fe:11:07:f6:c9:c9:64:18:18:
94:09:cf:91:ba:39:31:d8:4e:d1:1c:88:06:19:42:
cb:0c:d1:ce:32:74:d4:de:8d:6a:09:27:f2:9a:3a:
e9:19:da:2a:10:fd:eb:52:5d:c3:66:18:d8:1e:7c:
14:83:be:b6:a7:98:09:46:96:b9:ca:ae:a5:e2:0d:
01:a6:0c:e4:a3:24:04:5f:06:01:77:5f:e2:87:f6:
6c:08:b8:af:fc:1e:c0:c3:27:8e:b7:45:c4:81:8a:
ba:71:11:57:44:15:98:3a:62:f4:c0:75:62:3e:f1:
11:15:d9:d1:f6:42:d5:e2:75:a9:f1:29:3b:d6:7e:
cd:28:2d:2b:62:07:f6:21:d2:ba:15:77:54:a1:77:
23:fc:6d:ee:00:a5:96:79:73:e7:27:71:b6:1c:85:
ed:aa:a7:38:f4:5e:59:97:9e:ff:e3:52:b9:d3:68:
2d:16:0f:2f:8a:41:c7:db:89:94:a8:95:d2:24:af:
12:ac:bc:c0:2b:52:0b:6d:03:20:b2:63:70:42:e4:
0e:1b:04:fd:e5:2a:ff:fc:86:47:c9:36:5a:bf:e1:
ea:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:30:5B:4F:56:42:AE:6A:AB:45:DE:6D:1E:23:1F:D4:5F:1C:0C:34
X509v3 Authority Key Identifier:
keyid:4E:9F:45:FD:65:CE:A4:7F:CE:53:3F:11:CF:C1:5C:47:55:54:DF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tp9F_WXOpH_OUz8Rz8FcR1VU37w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/e8f1c1f7-8389-4faf-87c9-f4a180e7bcdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/cfadba4d-134c-4a1e-9d9c-64e8c5d613f3/Ov-his08I996RofT9UA-owflnzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3fc5:8000::/36
Signature Algorithm: sha256WithRSAEncryption
8c:b8:9e:ca:df:a8:8c:37:6b:4d:39:81:64:3a:ad:97:c5:8a:
7f:b4:94:79:27:f3:a1:5a:2a:64:c2:95:26:4e:ca:ba:a7:d5:
5d:76:d1:9d:21:46:4b:1b:39:07:3b:67:55:cd:17:bf:e4:d9:
f6:f2:0e:a0:8a:5b:f7:68:cd:bd:6d:0a:3d:5f:0f:a5:6f:ae:
75:93:77:77:3e:19:20:0a:bf:19:1e:38:17:bd:f1:35:8c:b3:
72:ce:5c:41:53:15:7c:53:2e:dd:d5:62:d8:87:45:4e:2d:e5:
46:32:fc:f4:4a:05:00:33:3c:b3:a9:d5:ff:54:92:36:ab:38:
39:c9:0f:74:46:f8:62:03:bc:94:bc:cb:90:ac:79:ad:c4:8d:
9a:ed:b0:8e:f9:42:c5:9c:33:14:60:12:22:8f:93:4c:bf:73:
db:b9:ed:79:04:56:ac:4a:36:8c:5b:c7:dd:d6:cb:b2:ed:ab:
51:2b:4e:83:11:4a:98:99:5c:97:6c:79:77:c2:a1:b3:36:ca:
9b:d8:9e:70:84:17:a8:b0:35:ec:80:e5:f4:cb:e6:e5:37:71:
32:2e:b5:cd:2d:6b:fd:dd:af:cf:94:27:94:af:6f:ed:28:de:
1b:93:56:b5:e9:68:de:b5:1e:9a:78:65:a4:db:14:b6:3b:e2:
cf:81:d2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:25 2025 by rpki-client