Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0035674-15ff-434e-b4d2-44fc6010a1aa.roa
File: f0035674-15ff-434e-b4d2-44fc6010a1aa.roa (raw, json)
Hash identifier: GHPRfqRBsQyEKGsv4MVEpG0Y2lYii6aJO4pMDr+4RYU=
Subject key identifier: BC:34:C4:59:FE:53:68:C0:BE:FF:A8:FE:D6:F3:37:06:3B:C3:93:56
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 7E9FCE5D003706B10136CB5DCE03C43BD0E73CEE
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0035674-15ff-434e-b4d2-44fc6010a1aa.roa
Signing time: Tue 25 Mar 2025 16:10:06 +0000
ROA not before: Tue 25 Mar 2025 16:10:06 +0000
ROA not after: Tue 29 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da68:e000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:9f:ce:5d:00:37:06:b1:01:36:cb:5d:ce:03:c4:3b:d0:e7:3c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Mar 25 16:10:06 2025 GMT
Not After : Apr 29 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:90:1f:de:a9:f9:d6:66:da:e9:db:0f:dd:a5:
df:17:2e:14:34:3e:60:13:44:46:ff:60:93:ab:66:
e9:55:79:e9:36:af:f5:ae:c1:ea:8f:6e:14:40:66:
82:84:d3:d6:ab:8b:fa:64:d0:b8:f6:55:47:d6:77:
14:44:13:27:3b:46:ea:ef:8e:5a:79:bf:24:80:c8:
bb:31:30:59:91:ee:c5:50:3d:6e:5f:35:bf:24:11:
cb:c3:c5:be:0e:24:7c:6d:80:4f:3c:94:07:8d:1d:
c2:ad:00:73:9d:60:5b:a7:01:c2:22:89:2a:8b:de:
aa:ea:ef:5c:c7:a0:fd:8e:e0:f4:3f:d3:38:47:e1:
07:e8:b2:f7:bd:d8:64:b4:3c:e9:f8:72:b8:d5:18:
9e:24:cf:d7:18:99:01:52:74:52:40:99:b9:2b:48:
58:62:56:4c:1c:5a:5d:d3:b7:36:5c:c2:e0:3a:4b:
51:84:cf:f3:e7:8f:57:c9:50:48:27:da:b8:ee:d9:
0b:19:c3:82:da:e5:73:73:c7:41:64:29:fa:32:41:
7e:0b:c0:a5:fb:e6:49:6f:06:4f:35:99:e0:9a:97:
e2:e1:d3:1e:90:59:9f:81:4f:a3:9a:b1:03:25:fc:
79:b5:84:3d:7b:e3:dc:3f:e3:ef:2f:38:0f:e8:f6:
7d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:34:C4:59:FE:53:68:C0:BE:FF:A8:FE:D6:F3:37:06:3B:C3:93:56
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/f0035674-15ff-434e-b4d2-44fc6010a1aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da68:e000::/40
Signature Algorithm: sha256WithRSAEncryption
6b:92:91:57:69:0b:8a:b4:8c:e9:52:ff:2c:11:be:b7:39:1f:
ab:b1:b2:52:7f:b7:81:22:5c:2a:3d:92:8a:05:45:ef:e3:d5:
1a:51:3f:e2:0d:63:ff:54:d8:72:8d:9e:98:1e:b0:e1:ae:71:
ed:d4:3f:f5:c5:46:fe:22:9d:26:2b:db:d8:cf:23:7d:a4:9e:
55:55:ae:c3:83:c0:6f:41:ca:60:04:f9:03:66:ff:10:57:1c:
0e:6e:c2:1d:d0:12:b9:e6:d4:35:03:e7:90:07:78:73:30:67:
14:b4:cb:3f:0f:3a:a9:e7:14:ce:49:70:4f:f5:fe:2a:72:44:
12:b2:b9:cf:33:0b:f5:c1:fd:05:60:d2:f0:7b:49:a5:f4:38:
40:be:eb:79:ce:fd:26:06:6b:67:45:35:ba:84:97:4f:20:c3:
eb:72:90:ce:fb:75:b7:c4:6a:07:4c:cf:99:44:a7:cf:43:8f:
59:3b:61:81:cf:85:80:5d:c5:92:eb:de:9a:81:7f:5d:8a:99:
85:74:ba:3d:1f:e9:e9:1b:18:12:d7:46:16:3c:e4:87:5b:d7:
82:4a:d4:aa:49:04:50:46:42:34:b4:ed:6b:71:bb:1c:41:a5:
ea:74:a5:cb:ca:19:2d:ea:6a:a3:09:59:34:20:21:1d:0b:a6:
d6:b3:b1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:12:32 2025 by rpki-client