Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa
File: 2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa (raw, json)
Hash identifier: 3pUr2KBCXDoMME1YwvVZVp1zVblqNScI8gnwyWRZPhY=
Subject key identifier: 51:0A:9F:5F:0F:7B:BA:54:A5:17:06:D1:B8:9D:FB:77:A0:A3:39:B5
Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC
Certificate serial: 4E50EFBACDF3A7FC0F0999999405C765D5884323
Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa
Signing time: Sat 29 Mar 2025 00:00:02 +0000
ROA not before: Sat 29 Mar 2025 00:00:02 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 175.41.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:50:ef:ba:cd:f3:a7:fc:0f:09:99:99:94:05:c7:65:d5:88:43:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91509EC0000
Validity
Not Before: Mar 29 00:00:02 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=58810403-9ba0-403a-809b-c78252ab7f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:91:80:92:08:a4:11:80:f5:49:30:d4:8a:01:
b0:a6:b6:31:f7:e9:a1:9c:70:34:20:4d:96:86:68:
6a:c0:25:5b:3f:4d:b5:68:4c:a4:7e:ba:6d:ae:4a:
01:3b:a8:fb:e7:34:c0:d7:c6:f8:56:96:55:7a:17:
51:2f:b0:cd:71:86:9d:43:a1:5f:33:12:be:ad:f0:
72:8e:4b:83:bd:62:3d:b4:37:e5:8f:fc:83:f8:f7:
81:ed:15:7e:f7:42:2a:98:ee:59:af:d8:d0:7d:89:
1f:53:5a:ed:41:62:f1:e5:8b:94:f2:25:69:f6:4e:
f9:11:e7:dd:ed:91:24:3e:f7:98:3d:20:54:2c:0e:
0d:94:e0:9f:33:64:48:6a:c8:0a:39:3c:4a:5a:55:
3a:96:b6:aa:60:1c:54:9d:31:ab:02:6e:e9:5c:df:
eb:54:99:a9:af:56:ca:8a:b5:69:e5:d2:e0:6f:c6:
ce:5a:ad:c3:4b:71:d3:39:d2:68:97:a3:90:78:bb:
96:37:04:97:d2:2c:06:f2:4b:c0:aa:36:c8:11:70:
32:9d:d2:27:07:eb:c3:b2:9c:50:59:a6:e1:ad:f6:
8c:fb:9e:d4:63:b4:a5:9c:c9:7b:f2:88:37:25:4d:
73:31:f6:f9:f9:fa:11:a6:28:a0:a1:f4:13:de:e3:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0A:9F:5F:0F:7B:BA:54:A5:17:06:D1:B8:9D:FB:77:A0:A3:39:B5
X509v3 Authority Key Identifier:
keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/2f47dcdd-c384-4eb2-aefd-f4ad64f26cce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.41.193.0/24
Signature Algorithm: sha256WithRSAEncryption
23:5d:65:10:ef:48:a2:fe:e9:17:03:ad:93:f5:48:37:88:cc:
f6:0a:77:73:9e:ea:83:dc:78:23:a1:45:df:2b:85:13:b2:29:
d0:47:97:b5:f2:3e:d9:13:e6:4e:ec:f2:9c:88:50:52:04:7e:
50:c7:0e:31:e6:ed:ae:a1:40:a7:25:71:55:17:6b:f4:ef:5b:
95:d3:50:50:45:f7:f4:8c:9e:20:be:1f:21:0c:a9:db:d7:a4:
b2:10:8d:58:d5:82:c9:cf:64:00:a1:7a:26:78:0e:4b:0f:12:
7b:71:64:79:63:03:30:1e:56:2c:d4:d0:f7:7e:4d:fa:ec:21:
a9:f3:52:c9:b2:3a:bf:37:8c:3a:f8:97:e7:36:ea:27:e8:3b:
23:b6:73:48:b3:75:3f:5b:65:fe:45:6e:b1:5c:31:5a:77:86:
bd:eb:6e:39:9a:97:df:31:0d:6b:9c:7f:12:a2:76:00:1d:81:
96:65:29:e7:5f:b4:6a:b5:84:f0:49:18:c3:9e:28:f5:5b:7d:
4c:51:62:6f:db:5c:27:bb:8e:72:83:6e:94:0a:21:7b:5d:d4:
0e:e5:f5:bc:c0:71:23:35:70:71:74:b0:67:d5:f5:fe:a7:25:
e0:9b:7f:92:8b:fe:7e:d0:de:a3:f9:8a:e9:c4:0b:6b:f0:59:
cd:7d:e6:e4
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIUTlDvus3zp/wPCZmZlAXHZdWIQyMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNTA5RUMwMDAwMTEwLwYDVQQFEygxNkY1MjRGOEUw
RUM3Q0FFMDc2OUM0MkU1MEZGQjNBMkI1NjRBNkFDMB4XDTI1MDMyOTAwMDAwMloX
DTI1MDUwMzIzNTk1OVowejFJMEcGA1UEBRNAYWYxZjE0OWZhOGMyYTkxOWYyNjk5
NTk1MmY1ZDJhZjYwMmVhMzJlNDc5YTk5ZmFjN2FlYTcwM2U2Y2U5MWIyMTEtMCsG
A1UEAxMkNTg4MTA0MDMtOWJhMC00MDNhLTgwOWItYzc4MjUyYWI3ZjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpGAkgikEYD1STDUigGwprYx9+mh
nHA0IE2WhmhqwCVbP021aEykfrptrkoBO6j75zTA18b4VpZVehdRL7DNcYadQ6Ff
MxK+rfByjkuDvWI9tDflj/yD+PeB7RV+90IqmO5Zr9jQfYkfU1rtQWLx5YuU8iVp
9k75Eefd7ZEkPveYPSBULA4NlOCfM2RIasgKOTxKWlU6lraqYBxUnTGrAm7pXN/r
VJmpr1bKirVp5dLgb8bOWq3DS3HTOdJol6OQeLuWNwSX0iwG8kvAqjbIEXAyndIn
B+vDspxQWabhrfaM+57UY7SlnMl78og3JU1zMfb5+foRpiigofQT3uNM2wIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFFEKn18Pe7pUpRcG0bid+3egozm1MB8GA1UdIwQY
MBaAFBb1JPjg7HyuB2nELlD/s6K1ZKasMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9GdlVrLU9E
c2ZLNEhhY1F1VVAtem9yVmtwcXcuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvZGI5YTM3MmEtMDliYy00YTMyLWJmZTQtOGM0OGU1ZGJkMjE5
LzJmNDdkY2RkLWMzODQtNGViMi1hZWZkLWY0YWQ2NGYyNmNjZS5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS9kYjlhMzcyYS0wOWJjLTRhMzItYmZlNC04YzQ4
ZTVkYmQyMTkvNmVjYjNjY2EtNDg4ZC00M2I5LWE1MGItZDM3YzBjNTVhOWUxLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQArynBMA0GCSqGSIb3DQEBCwUAA4IBAQAjXWUQ70ii/ukXA62T9Ug3
iMz2CndznuqD3HgjoUXfK4UTsinQR5e18j7ZE+ZO7PKciFBSBH5Qxw4x5u2uoUCn
JXFVF2v071uV01BQRff0jJ4gvh8hDKnb16SyEI1Y1YLJz2QAoXomeA5LDxJ7cWR5
YwMwHlYs1ND3fk367CGp81LJsjq/N4w6+JfnNuon6DsjtnNIs3U/W2X+RW6xXDFa
d4a96245mpffMQ1rnH8SonYAHYGWZSnnX7RqtYTwSRjDnij1W31MUWJv21wnu45y
g26UCiF7XdQO5fW8wHEjNXBxdLBn1fX+pyXgm3+Si/5+0N6j+YrpxAtr8FnNfebk
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:51:28 2025 by rpki-client