Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa
File: 6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa (raw, json)
Hash identifier: 2MNdL/yl6rqvE6V3u/J52Igmy9acpPEJJ6ZU/x29xXg=
Subject key identifier: CE:34:4B:63:C8:81:81:5E:08:A8:67:2E:4E:57:9F:28:4F:99:08:8B
Certificate issuer: /CN=A91509EC0000/serialNumber=16F524F8E0EC7CAE0769C42E50FFB3A2B564A6AC
Certificate serial: 5883D0D303AE4714F54F789CF8FDA30F203DD04E
Authority key identifier: 16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa
Signing time: Sat 29 Mar 2025 00:00:05 +0000
ROA not before: Sat 29 Mar 2025 00:00:05 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 175.41.194.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:83:d0:d3:03:ae:47:14:f5:4f:78:9c:f8:fd:a3:0f:20:3d:d0:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91509EC0000
Validity
Not Before: Mar 29 00:00:05 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=58810403-9ba0-403a-809b-c78252ab7f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:00:61:c4:97:37:37:8c:84:92:dd:3a:29:
a3:c6:cb:a2:75:a2:6a:03:f9:fa:28:19:12:a5:7d:
c1:fa:de:4e:a9:b8:1d:62:34:c7:1c:c8:d0:80:5d:
b4:7a:b4:dd:07:97:03:11:6a:94:08:7c:01:68:1a:
56:5e:6d:1c:df:6b:89:5f:f5:e6:0b:cd:fc:45:16:
07:9b:34:20:73:74:b9:1b:21:f6:3a:39:ee:77:91:
6c:be:0f:27:d4:cd:97:cd:84:7a:28:35:ca:fc:2f:
cb:f4:cf:6c:fa:e1:be:ad:36:32:5b:14:06:3e:77:
a1:8b:4d:ff:00:cc:88:10:fa:ff:e5:c9:fb:8b:82:
3b:76:2a:63:9f:7e:60:d6:5e:9b:31:49:69:51:c9:
7b:01:c2:73:7c:d2:bf:c3:3f:c2:06:49:70:f8:65:
ff:c1:9d:36:45:c7:67:fc:59:df:dd:51:98:9b:d7:
06:95:1b:6b:f6:21:d7:ed:d4:72:88:fe:bb:10:68:
42:3e:d5:9f:7a:48:ff:4a:c5:1d:fc:32:38:e2:84:
1b:3a:2a:b1:68:2c:6f:27:e7:43:08:d4:1a:55:e4:
ee:be:d6:a8:76:62:c5:41:ea:cb:a7:1b:bb:9e:2d:
66:41:ff:a9:42:0a:42:b6:e3:ee:d5:8f:b4:88:e0:
15:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:34:4B:63:C8:81:81:5E:08:A8:67:2E:4E:57:9F:28:4F:99:08:8B
X509v3 Authority Key Identifier:
keyid:16:F5:24:F8:E0:EC:7C:AE:07:69:C4:2E:50:FF:B3:A2:B5:64:A6:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FvUk-ODsfK4HacQuUP-zorVkpqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6cf57aa6-6ba3-43af-bbd5-44485e3b9f67.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/db9a372a-09bc-4a32-bfe4-8c48e5dbd219/6ecb3cca-488d-43b9-a50b-d37c0c55a9e1.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.41.194.0/23
Signature Algorithm: sha256WithRSAEncryption
11:0d:74:74:b2:01:ef:42:36:eb:53:da:1d:53:b0:75:21:d0:
f9:7c:1a:0e:97:f3:b7:58:81:ef:0c:7c:c7:bb:57:db:af:7c:
e1:93:38:99:43:2c:81:ad:3a:f7:ee:c0:3c:86:57:4d:f2:4b:
a7:07:db:bf:54:f0:c5:38:69:e6:5d:0e:79:db:d2:71:0d:92:
ec:28:b6:ab:78:cc:92:15:7e:2e:ba:96:24:ec:3d:77:10:82:
35:4c:f5:e0:95:8e:68:43:19:19:86:d1:4e:a2:c8:c4:84:0c:
af:05:65:39:00:25:61:59:fd:c8:3e:69:75:4e:e2:40:12:e0:
50:c6:04:8d:e4:8b:c7:53:ac:21:05:5c:b9:31:6c:42:12:af:
15:8e:00:f7:38:70:52:2d:eb:0d:e6:34:fb:37:59:10:48:fc:
b7:d2:ab:10:9d:9d:82:3d:0f:35:ee:74:48:75:71:69:93:c8:
5f:63:14:74:eb:ac:c4:b8:82:a2:38:1f:1e:e6:18:9b:3c:e1:
5f:78:bc:33:1f:48:98:6d:ca:00:09:b1:f6:b8:fa:11:88:43:
ad:07:8b:c7:e6:64:a6:28:d6:67:85:94:d7:7e:8d:2b:3f:16:
77:f6:65:88:11:3b:01:56:12:a4:fc:2c:95:c1:6b:41:80:da:
04:0f:36:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 08:28:19 2025 by rpki-client