Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19d8c68f-ca39-4e0e-a4b1-9ec881dd02aa.roa
File: 19d8c68f-ca39-4e0e-a4b1-9ec881dd02aa.roa (raw, json)
Hash identifier: FFVB6MwMVQPwualBRsgSg+1BNNETW6WyuHtWETXgNfs=
Subject key identifier: EC:13:74:1E:51:53:C9:F6:1C:B1:7B:1B:3A:8A:E2:21:AA:82:66:BC
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 70F42721FA974B388580D18A2F898E6035E29CC3
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19d8c68f-ca39-4e0e-a4b1-9ec881dd02aa.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf2:2040::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:f4:27:21:fa:97:4b:38:85:80:d1:8a:2f:89:8e:60:35:e2:9c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=51fcdf0c822e67ccffff9667869f739b0da3e4e8c80972c9b26b9eaa0f930a12, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:d0:ac:19:58:01:e7:5b:f4:d1:d8:59:25:
d1:27:e4:c9:ca:8a:a4:dd:94:db:e1:aa:fd:01:39:
30:37:f8:76:8c:82:94:c8:91:6b:b8:58:9f:12:4b:
9b:0e:22:57:31:83:a7:38:87:98:3a:a6:5b:3c:09:
46:4d:bb:b0:4d:40:18:5a:86:8d:6f:0d:03:4d:ff:
0d:02:0b:75:85:26:39:f9:d3:97:66:49:08:d2:1c:
b6:6e:e9:e2:9c:9a:4a:fb:29:42:95:e1:65:3c:4d:
ee:71:58:29:9b:e7:4b:a1:d4:2d:f8:a7:ed:dc:8b:
71:3b:e9:61:b4:dc:c8:5e:38:04:67:b2:08:32:32:
a0:5b:76:eb:68:71:25:ff:2c:86:da:c4:5c:a2:e2:
93:c7:45:b4:76:89:e4:d0:9d:66:df:18:b7:09:24:
17:02:9b:98:d0:a6:a4:bf:1b:c8:b0:82:35:47:4a:
27:d1:bf:72:a7:9e:e5:a6:b1:4a:09:17:02:8d:ba:
5d:b1:ec:07:22:97:92:fa:19:dc:fe:77:28:6d:51:
19:cd:26:e3:cb:b1:21:fc:64:93:a0:55:04:36:a7:
65:bc:02:24:b6:93:ba:2c:ae:48:12:c8:05:60:cb:
4b:6e:68:72:80:cd:cc:41:80:88:18:14:46:61:a3:
8b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:13:74:1E:51:53:C9:F6:1C:B1:7B:1B:3A:8A:E2:21:AA:82:66:BC
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/19d8c68f-ca39-4e0e-a4b1-9ec881dd02aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf2:2040::/48
Signature Algorithm: sha256WithRSAEncryption
c2:1d:45:11:45:e5:c2:3b:09:97:82:64:d1:ae:e9:65:60:cb:
ce:de:e3:5b:64:04:94:c1:ae:3e:ca:b8:95:b2:dd:5c:3d:9a:
58:8d:9d:59:f7:8d:62:8f:bd:cb:21:9e:18:de:c1:e5:cb:10:
8d:7b:05:80:d6:e5:b1:a8:1e:49:50:32:dd:8f:c3:03:c7:d5:
40:b5:19:7f:3f:3d:65:c6:74:5b:a3:90:0a:1b:1d:c0:6a:80:
e8:a4:f0:17:1c:4e:d5:d7:15:01:fe:5b:03:58:b2:9b:de:02:
4f:a9:d5:a2:96:81:86:be:4a:0d:d8:16:88:b9:94:8f:0f:50:
fa:05:95:bf:88:b9:e5:04:83:66:02:4b:57:ab:aa:14:4a:8b:
65:5e:de:b3:2f:54:e4:30:48:35:01:16:26:c7:dd:4d:a7:b0:
41:16:47:23:68:7f:fa:3e:31:37:14:8f:f7:83:76:40:a6:34:
b8:c8:b0:be:9b:23:38:d9:4f:6d:65:49:6c:1a:f3:1c:49:31:
b0:0a:e4:56:31:cd:d7:d6:dc:1f:d7:dc:42:03:1c:a3:61:56:
13:e0:ce:ac:7c:d0:eb:62:c5:94:11:8b:bd:9f:ed:70:1e:04:
07:31:de:5d:69:26:8a:6a:62:69:b2:a5:ef:d9:14:02:55:b8:
0b:a9:53:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:21:34 2025 by rpki-client