Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa
File: 78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa (raw, json)
Hash identifier: ORdVZcAetqMlLJKsB1N74C9ocX2UhIfqDCepsdjLeM4=
Subject key identifier: 7A:E7:26:2D:0B:53:21:D0:6D:D0:59:D5:D2:CB:B1:66:9F:A9:B9:11
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 27E5C54691764C7AB19076251401EFEE73100EF1
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa
Signing time: Tue 18 Mar 2025 00:00:57 +0000
ROA not before: Tue 18 Mar 2025 00:00:57 +0000
ROA not after: Tue 22 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf5:9000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:e5:c5:46:91:76:4c:7a:b1:90:76:25:14:01:ef:ee:73:10:0e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Mar 18 00:00:57 2025 GMT
Not After : Apr 22 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f7:cb:86:44:4b:3f:16:8a:b2:b0:90:53:03:
bd:43:af:02:56:16:42:36:25:0d:87:94:0e:3b:2f:
01:a6:07:81:1c:85:6b:e6:03:72:02:36:41:31:6a:
a4:87:94:53:66:ff:fb:6e:5c:7f:97:43:62:9c:0e:
35:df:19:9e:fe:86:4d:ba:c2:29:82:c5:8f:f8:7b:
77:d7:f1:c7:ce:e0:8a:30:d3:5c:6e:cb:0f:5b:12:
1a:73:6c:48:55:15:02:cf:87:1c:58:cc:8e:13:97:
6f:dc:8b:1b:91:79:e2:78:49:d2:0f:76:72:65:40:
98:0b:78:b5:18:4a:d4:d7:1c:0c:54:f0:cf:6f:bc:
2c:2c:61:66:19:8e:8b:fe:16:05:c4:f8:9f:5e:83:
92:ab:c4:88:e1:4f:4e:9e:e3:22:63:23:91:ab:65:
72:c9:71:0f:7b:ff:68:64:ae:5e:38:7c:10:f4:53:
ef:d9:79:97:d9:42:1e:2f:92:74:d2:da:9e:b5:c1:
cc:fd:f7:40:c5:84:7e:f9:6e:c5:46:f4:28:9b:b6:
05:15:41:ef:63:89:00:64:c5:2b:09:c4:84:f4:46:
8a:df:97:a1:31:3b:a1:fe:f2:99:c0:1a:1b:24:82:
08:87:e3:d8:98:8e:fd:b4:cf:db:c9:3a:f0:1b:a6:
f6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E7:26:2D:0B:53:21:D0:6D:D0:59:D5:D2:CB:B1:66:9F:A9:B9:11
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/78343754-5d6e-4ded-9b4c-d9d70b6ccac8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf5:9000::/40
Signature Algorithm: sha256WithRSAEncryption
7d:03:22:9e:62:02:07:92:ee:3e:e3:cc:d5:40:16:ed:f8:e9:
e6:2b:51:70:29:ad:46:45:af:da:83:08:db:62:34:5c:3f:42:
3b:59:c8:af:ca:22:7b:20:50:0f:98:2d:49:24:ce:86:68:77:
0f:4c:fd:11:72:d6:d6:da:c6:b7:b4:b6:37:e4:f5:64:f5:d8:
ba:43:a5:57:47:fc:10:30:07:44:e2:8b:82:7a:bd:e8:1a:93:
25:e2:ef:e8:52:ae:8e:e9:b0:d5:dc:1c:61:13:7e:a9:c6:44:
ff:4b:f0:e7:d4:6e:33:ce:d2:e7:18:d9:ae:26:ef:53:62:d5:
4e:98:79:21:ed:3c:a4:05:22:46:fb:71:37:a6:20:95:cf:7a:
e3:19:54:a9:d8:bc:d7:e5:f6:91:e3:c2:b8:0b:fb:0d:49:20:
e5:be:16:eb:fd:fc:43:76:d7:21:47:6e:88:fa:47:3d:f5:ee:
a1:da:dc:ff:25:68:a3:e4:d5:5e:14:f9:19:6c:df:97:98:95:
e3:97:36:87:10:64:fd:2a:29:b0:f2:ae:b3:23:29:7d:78:fa:
e0:87:f5:7c:70:6c:7e:6b:fa:b2:e0:3a:f9:72:35:ed:1f:f9:
05:e8:b9:45:f1:7e:2e:2a:4f:4a:df:3f:f7:72:20:7a:f6:88:
c6:c5:de:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:00:05 2025 by rpki-client