Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10f375fc-67be-4c47-bb4d-67eb5ba5fb92.roa
File: 10f375fc-67be-4c47-bb4d-67eb5ba5fb92.roa (raw, json)
Hash identifier: 2f0mdeyXPqyO4pyrIiWJ+NkbBckS2NE2n/WPVu5t33Q=
Subject key identifier: C5:41:31:A7:E5:71:BB:4B:BA:C1:E1:4D:04:CB:44:F7:08:60:CE:7C
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 340F4BB43332E39F166539A3E7041AC6FD079F51
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10f375fc-67be-4c47-bb4d-67eb5ba5fb92.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da36:4000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:0f:4b:b4:33:32:e3:9f:16:65:39:a3:e7:04:1a:c6:fd:07:9f:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=86f8c217a4d2739f1c199dad8eccc83f8593c308d470a5badc356f3e146bd2e1, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:65:13:c3:a9:1a:73:17:89:f4:63:ff:cf:6d:
49:63:c1:0a:5a:8a:d8:c2:bc:05:97:8a:3a:14:8d:
27:3f:e3:85:c3:f7:08:43:66:ec:59:72:57:15:78:
de:04:c8:78:f9:0d:75:50:5a:f9:94:f5:e8:46:19:
ad:d9:9c:fa:7e:a8:68:b8:82:88:82:f0:4f:6d:34:
47:62:9f:83:c6:fc:0b:10:be:71:75:ac:2e:08:aa:
ff:f6:d4:26:3b:20:96:41:0d:ce:19:d1:bb:44:47:
59:ce:ef:49:3d:19:c8:68:dd:05:bd:50:8a:6d:3c:
63:3e:bf:b3:cd:0b:34:49:0f:aa:e1:52:a6:ef:cc:
db:cf:a0:c3:75:4b:5f:35:8a:0e:3d:ab:92:83:da:
f8:6b:b4:08:4c:93:a1:91:ab:cb:36:84:d9:76:43:
c7:91:d9:de:b9:bc:e0:5f:06:78:af:69:37:65:b7:
2f:c4:20:7d:ae:53:03:6a:8c:85:49:03:0f:20:64:
ef:1b:e0:c5:b4:5f:a0:da:bf:d2:0b:51:cc:bb:6c:
e3:13:ef:ab:e4:ae:2f:37:ce:a6:bb:e4:7b:76:0e:
96:2b:cd:cf:fa:6f:83:2c:73:43:c9:0a:7d:fb:e0:
84:79:30:cf:9b:47:d2:89:0a:fa:69:3c:8d:0f:6e:
2f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:41:31:A7:E5:71:BB:4B:BA:C1:E1:4D:04:CB:44:F7:08:60:CE:7C
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/10f375fc-67be-4c47-bb4d-67eb5ba5fb92.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da36:4000::/40
Signature Algorithm: sha256WithRSAEncryption
40:eb:07:80:11:dc:44:0d:63:20:79:a0:7e:1e:58:31:62:24:
f2:4e:e2:bc:f9:97:7a:98:b3:df:09:b7:fc:0d:54:45:1c:78:
df:92:8a:e5:c8:f7:f5:1e:38:ec:c9:ed:19:de:97:f3:5b:61:
c8:c8:10:c7:7b:0c:77:45:da:61:13:2c:08:76:a8:13:24:55:
48:c2:d2:cf:59:1b:2c:41:31:84:ad:11:23:fc:23:ae:20:e9:
5c:93:92:a0:82:dc:be:3f:f5:06:a0:57:56:94:5f:60:6d:fe:
67:06:fc:1a:0f:ad:09:a5:4c:a4:05:68:bb:80:20:23:14:b0:
0f:3d:59:92:90:bc:27:45:8f:4e:32:a1:a8:45:eb:14:13:4e:
05:f2:6d:36:d8:f9:e2:62:fe:bd:4b:fb:d1:62:33:8c:dc:19:
66:a2:f3:0b:8c:78:47:ab:b4:1a:20:8d:30:fa:37:08:76:96:
81:2e:41:70:d9:3c:11:58:9d:25:61:67:0a:b5:dc:67:c2:8f:
84:8e:06:cd:92:d3:85:56:75:b0:b1:30:90:0b:07:95:be:e6:
1d:45:ed:84:ec:17:f2:9e:97:0a:0f:9f:93:1d:ee:b8:1a:c1:
39:f3:52:5a:ad:81:23:01:cf:3c:3a:3a:39:71:63:a7:70:a5:
78:25:f1:98
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIUNA9LtDMy458WZTmj5wQaxv0Hn1EwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEwNzAwMDAwMFoX
DTI1MDIxMTIzNTk1OVowejFJMEcGA1UEBRNAODZmOGMyMTdhNGQyNzM5ZjFjMTk5
ZGFkOGVjY2M4M2Y4NTkzYzMwOGQ0NzBhNWJhZGMzNTZmM2UxNDZiZDJlMTEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4mUTw6kacxeJ9GP/z21JY8EKWorY
wrwFl4o6FI0nP+OFw/cIQ2bsWXJXFXjeBMh4+Q11UFr5lPXoRhmt2Zz6fqhouIKI
gvBPbTRHYp+DxvwLEL5xdawuCKr/9tQmOyCWQQ3OGdG7REdZzu9JPRnIaN0FvVCK
bTxjPr+zzQs0SQ+q4VKm78zbz6DDdUtfNYoOPauSg9r4a7QITJOhkavLNoTZdkPH
kdneubzgXwZ4r2k3ZbcvxCB9rlMDaoyFSQMPIGTvG+DFtF+g2r/SC1HMu2zjE++r
5K4vN86mu+R7dg6WK83P+m+DLHNDyQp9++CEeTDPm0fSiQr6aTyND24vXQIDAQAB
o4ICSjCCAkYwHQYDVR0OBBYEFMVBMaflcbtLusHhTQTLRPcIYM58MB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
LzEwZjM3NWZjLTY3YmUtNGM0Ny1iYjRkLTY3ZWI1YmE1ZmI5Mi5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAbaNkAwDQYJKoZIhvcNAQELBQADggEBAEDrB4AR3EQNYyB5oH4e
WDFiJPJO4rz5l3qYs98Jt/wNVEUceN+SiuXI9/UeOOzJ7Rnel/NbYcjIEMd7DHdF
2mETLAh2qBMkVUjC0s9ZGyxBMYStESP8I64g6VyTkqCC3L4/9QagV1aUX2Bt/mcG
/BoPrQmlTKQFaLuAICMUsA89WZKQvCdFj04yoahF6xQTTgXybTbY+eJi/r1L+9Fi
M4zcGWai8wuMeEertBogjTD6Nwh2loEuQXDZPBFYnSVhZwq13GfCj4SOBs2S04VW
dbCxMJALB5W+5h1F7YTsF/KelwoPn5Md7rgawTnzUlqtgSMBzzw6OjlxY6dwpXgl
8Zg=
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:30:15 2025 by rpki-client