Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24ce6680-4055-4278-9a9d-a2a2f3e1edb0.roa
File: 24ce6680-4055-4278-9a9d-a2a2f3e1edb0.roa (raw, json)
Hash identifier: zTB0Qovfod4mebZv5cbV55A20baSH6UBNfJRG6KlAEo=
Subject key identifier: C3:C2:83:1C:3B:F5:E9:06:47:7C:EE:B0:A8:A1:C2:F9:71:15:63:CE
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 68BA43858A6CA4A9B413C43D2304DA9E60EB5B01
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24ce6680-4055-4278-9a9d-a2a2f3e1edb0.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da00:8080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:ba:43:85:8a:6c:a4:a9:b4:13:c4:3d:23:04:da:9e:60:eb:5b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=8669b5d86ef8b5a15f092cb1350b49afaa846576f51244cc0c73037c1053a6f6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8a:0a:94:3d:2c:87:25:56:78:62:99:19:16:
c8:31:59:cd:13:32:c5:eb:f2:77:64:86:71:80:ea:
30:02:67:ba:93:54:92:cd:46:93:af:6b:7e:7a:a8:
5c:f4:f2:60:83:e0:21:34:43:00:a7:14:fc:7b:93:
b0:fb:3a:94:b6:e7:5d:e8:a9:4e:44:23:f8:28:94:
e7:e0:1e:44:ac:11:ba:f2:bc:85:95:42:9e:fb:88:
55:ab:a0:b7:f1:8b:2d:e9:5c:f4:d0:8d:83:0f:70:
e8:1c:bb:fb:18:74:5f:4e:be:de:d7:74:e3:b8:ba:
98:f4:fd:94:37:10:1e:6c:c3:99:94:b5:cd:bb:24:
2a:c0:bc:11:b3:36:f0:3e:1c:e0:3a:35:1b:62:29:
12:40:76:89:5a:4e:4b:01:13:fa:bf:bb:61:90:85:
49:d8:3e:2d:15:7c:5d:2c:44:30:72:09:ef:91:0f:
6e:bc:30:d4:8e:11:62:7f:bd:b1:29:8b:99:56:7b:
71:50:bf:ad:e1:64:fe:89:98:92:62:1f:0a:7d:1e:
f6:25:71:fb:76:23:bb:9d:e9:ea:e6:b6:e0:b2:bb:
be:d3:b5:89:0a:e0:00:d0:ef:ff:6f:a5:06:de:80:
50:2f:b2:34:b3:f3:11:51:ae:c7:d4:f8:b6:f1:25:
36:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C2:83:1C:3B:F5:E9:06:47:7C:EE:B0:A8:A1:C2:F9:71:15:63:CE
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/24ce6680-4055-4278-9a9d-a2a2f3e1edb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da00:8080::/48
Signature Algorithm: sha256WithRSAEncryption
bd:4c:ca:fd:e9:b2:a6:c4:8c:54:ec:8f:6d:3a:27:21:1f:7d:
69:60:6b:62:b6:06:39:32:7b:76:f3:f1:29:5e:e2:70:62:5c:
2b:fe:b3:a2:c1:cc:ff:ca:42:6c:de:1e:6e:31:4a:07:41:bb:
f5:be:67:9e:7d:1b:92:23:1c:51:1d:ea:ac:70:c3:ad:dc:82:
9e:2f:c7:9d:ed:e3:65:19:73:5f:b9:e9:25:a4:b2:08:64:40:
95:bb:36:ee:b6:43:a7:b9:1a:8c:53:2e:64:2e:bc:3b:fe:6e:
bf:52:64:e0:bf:67:07:dc:3b:1b:66:45:ef:ed:07:9b:02:60:
eb:bd:d0:88:30:07:46:1a:55:dd:b2:95:11:e8:44:5b:c6:cb:
07:14:49:c0:79:e7:61:a4:eb:31:0c:b5:8b:68:b9:a2:5b:c3:
85:79:27:66:1b:80:55:9d:88:a6:1b:fb:08:f0:2f:21:e6:f2:
1e:a4:5d:87:7f:10:86:64:0c:22:3f:79:41:2f:a7:6f:ff:b8:
17:ea:a5:aa:bb:bc:9d:32:5b:4a:59:bf:17:1f:1d:dc:bc:a2:
47:9f:07:36:e4:43:d3:59:84:3b:ef:cf:6e:9f:91:50:f8:b3:
08:58:87:26:73:e8:7a:b5:e2:98:54:f4:4d:68:5e:2b:d7:a7:
c6:d1:3a:3a
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgIUaLpDhYpspKm0E8Q9IwTanmDrWwEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEwNzAwMDAwMFoX
DTI1MDIxMTIzNTk1OVowejFJMEcGA1UEBRNAODY2OWI1ZDg2ZWY4YjVhMTVmMDky
Y2IxMzUwYjQ5YWZhYTg0NjU3NmY1MTI0NGNjMGM3MzAzN2MxMDUzYTZmNjEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvooKlD0shyVWeGKZGRbIMVnNEzLF
6/J3ZIZxgOowAme6k1SSzUaTr2t+eqhc9PJgg+AhNEMApxT8e5Ow+zqUtudd6KlO
RCP4KJTn4B5ErBG68ryFlUKe+4hVq6C38Yst6Vz00I2DD3DoHLv7GHRfTr7e13Tj
uLqY9P2UNxAebMOZlLXNuyQqwLwRszbwPhzgOjUbYikSQHaJWk5LARP6v7thkIVJ
2D4tFXxdLEQwcgnvkQ9uvDDUjhFif72xKYuZVntxUL+t4WT+iZiSYh8KfR72JXH7
diO7nenq5rbgsru+07WJCuAA0O//b6UG3oBQL7I0s/MRUa7H1Pi28SU2eQIDAQAB
o4ICSzCCAkcwHQYDVR0OBBYEFMPCgxw79ekGR3zusKihwvlxFWPOMB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
LzI0Y2U2NjgwLTQwNTUtNDI3OC05YTlkLWEyYTJmM2UxZWRiMC5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP
BAIAAjAJAwcAJAbaAICAMA0GCSqGSIb3DQEBCwUAA4IBAQC9TMr96bKmxIxU7I9t
OichH31pYGtitgY5Mnt28/EpXuJwYlwr/rOiwcz/ykJs3h5uMUoHQbv1vmeefRuS
IxxRHeqscMOt3IKeL8ed7eNlGXNfueklpLIIZECVuzbutkOnuRqMUy5kLrw7/m6/
UmTgv2cH3DsbZkXv7QebAmDrvdCIMAdGGlXdspUR6ERbxssHFEnAeedhpOsxDLWL
aLmiW8OFeSdmG4BVnYimG/sI8C8h5vIepF2HfxCGZAwiP3lBL6dv/7gX6qWqu7yd
MltKWb8XHx3cvKJHnwc25EPTWYQ7789un5FQ+LMIWIcmc+h6teKYVPRNaF4r16fG
0To6
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:14:02 2025 by rpki-client