Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/13f5f01a-ab8f-4788-ba91-6bc86de44e18.roa
File: 13f5f01a-ab8f-4788-ba91-6bc86de44e18.roa (raw, json)
Hash identifier: 6uqNWXk4Ry6ZljMxFLQ82d/ho1yhL86zN24Kf8b9e9E=
Subject key identifier: 63:77:97:41:AD:23:E8:82:50:A3:C6:57:E9:1E:7E:D5:43:53:A0:2E
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 1C5835D5288D6B6A5114F5070A9EDB581712B82A
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/13f5f01a-ab8f-4788-ba91-6bc86de44e18.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafe:9000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:58:35:d5:28:8d:6b:6a:51:14:f5:07:0a:9e:db:58:17:12:b8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=9b2a10bffbb708ada3f2d9f0e3357bf4b1f1433c36a3b19326d9fa6fddaf0063, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:37:18:84:73:51:32:92:18:ba:32:15:db:83:
cc:c3:2d:44:74:80:39:d5:0c:17:f0:f1:c1:9a:04:
99:ef:37:4b:9b:0e:e0:68:39:34:95:61:1f:93:43:
03:a9:b4:52:44:2d:f5:60:3d:b2:41:c9:41:f7:c8:
0f:d7:32:21:17:2a:e8:6f:f5:88:4f:16:27:80:f2:
48:f5:b9:b3:b0:67:bd:84:0d:0d:58:7c:e0:4b:7e:
21:92:d7:3d:e5:fa:6b:05:ea:24:54:8d:4c:9a:69:
f5:69:e3:df:40:c6:44:44:98:ca:ea:9c:f4:51:c4:
64:fe:b6:0e:60:ed:c8:5e:d7:60:25:84:70:89:48:
c9:91:e6:c8:f3:10:89:ee:ca:a4:ee:5f:49:0a:f9:
57:69:ad:31:74:e4:84:30:82:f0:78:3a:83:b1:5c:
28:ee:0b:f0:5e:5e:14:5d:05:c6:2d:ee:c6:6b:f8:
80:60:2e:ba:91:31:d3:2b:27:bc:05:12:a7:0e:fc:
b4:28:ef:07:45:79:cb:05:03:76:42:37:7a:38:da:
68:31:0e:9e:75:ca:ba:ff:84:f7:6f:4c:84:04:70:
b0:67:88:b1:5b:78:36:44:e3:d8:d1:9c:a4:24:dc:
5b:8c:3a:19:78:be:58:ac:6e:22:42:39:9c:2c:50:
aa:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:77:97:41:AD:23:E8:82:50:A3:C6:57:E9:1E:7E:D5:43:53:A0:2E
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/13f5f01a-ab8f-4788-ba91-6bc86de44e18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafe:9000::/40
Signature Algorithm: sha256WithRSAEncryption
2e:e0:90:04:13:bb:97:a9:81:a5:3d:90:be:c4:ac:62:62:74:
63:33:8e:51:78:9f:6a:b1:ca:57:1c:07:1d:d1:08:1f:c2:27:
be:a2:5b:e6:93:b2:7a:9d:1d:33:8c:fb:8a:6b:40:ca:50:ec:
08:f7:a2:c0:a8:1f:21:a2:7f:de:16:33:b9:6b:b8:fc:03:74:
25:88:b0:59:c0:0a:ee:e5:0b:25:fa:13:48:ec:8f:f9:9d:45:
ce:22:02:f0:0e:a1:6e:da:65:40:99:b9:b7:04:4a:22:a9:5e:
9f:f4:98:88:b6:31:20:fd:62:70:88:b2:13:b4:6b:b9:39:9c:
d9:e7:19:8e:47:38:a8:7d:a6:1f:6d:bb:9e:ef:ec:e5:b0:32:
59:7b:e1:80:22:8b:a5:94:89:ad:5f:ef:df:ca:79:66:cd:b8:
db:97:14:14:9f:cb:1c:34:17:5c:f5:ec:3f:9c:e6:f4:c8:0c:
dd:52:12:ef:b8:4b:56:ad:0f:95:fe:bd:03:bb:8f:e7:d4:84:
2a:45:cd:6c:72:d4:47:ba:6e:47:61:42:ba:93:fa:6e:48:a3:
99:e1:57:70:72:99:cc:b7:b8:5c:72:c4:fa:af:f2:1c:14:79:
22:ff:96:01:b2:37:14:ad:f2:80:0e:ed:6b:1c:3e:43:d0:a8:
ec:b9:2e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:30:07 2025 by rpki-client