Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa
File: 57e5a746-78cb-4122-b964-f449ba6f6e5f.roa (raw, json)
Hash identifier: 3Pi6WOOPTkh0rHHIxOj4wWyXeaw70KzCj3GUAOaEVfU=
Subject key identifier: 88:3D:38:0A:E7:10:F9:7B:EC:B4:B0:ED:46:CC:DF:7B:BB:12:CD:75
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 6566AB2C29C952A421198137A30B3064E94A7F29
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da38:a000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:66:ab:2c:29:c9:52:a4:21:19:81:37:a3:0b:30:64:e9:4a:7f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=38566459c0e1e6fed44619dee81f3cd1ae758de4403fcddfd618dc95a63f9656, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:94:25:57:0b:b6:45:c4:8e:86:9f:7c:f0:
39:93:19:64:b1:75:9f:79:1a:19:6d:d6:72:e7:35:
df:3b:12:94:e8:36:ca:85:46:8e:82:c5:eb:a5:92:
47:78:83:a4:df:bc:30:0b:26:3a:5b:66:47:a8:7d:
66:21:ed:bc:ee:b0:26:83:f3:b1:39:ca:00:a8:2b:
a4:4a:ce:00:c0:cd:53:a7:29:e5:e3:66:78:f6:1b:
44:ab:1f:60:5f:40:dd:eb:f7:4d:a7:03:90:5d:18:
06:da:4c:37:27:9a:38:67:ce:8a:fe:f9:1c:c1:71:
fb:59:4d:52:ea:db:45:76:b4:7d:ae:f7:35:7c:33:
30:77:3a:29:b0:be:43:6e:4f:01:c6:73:da:88:65:
cd:b7:85:3d:10:9d:ab:f6:33:f8:df:95:68:84:d8:
8f:d3:7f:e7:a1:7c:80:2b:ea:bc:f6:84:29:d9:c9:
8e:13:b7:e7:aa:97:81:f2:4a:44:17:fb:40:4a:6b:
fc:73:4e:08:e3:2c:de:31:cd:9a:c1:57:ae:5b:51:
f3:0d:28:87:d0:63:9b:8f:47:26:a3:fa:d7:28:23:
60:fc:1c:81:bb:d6:85:5f:9e:68:b1:34:f0:92:87:
d8:9e:7e:09:55:fc:2b:25:d5:19:04:65:67:13:f4:
c1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3D:38:0A:E7:10:F9:7B:EC:B4:B0:ED:46:CC:DF:7B:BB:12:CD:75
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/57e5a746-78cb-4122-b964-f449ba6f6e5f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da38:a000::/40
Signature Algorithm: sha256WithRSAEncryption
b4:5f:31:75:d5:6e:99:a8:c1:0e:2e:16:f1:9f:5a:1e:d1:79:
2e:55:ef:08:ac:94:6c:8c:17:fd:bb:e8:05:a1:7f:b6:a1:b3:
5d:c6:0b:e9:20:4d:42:e5:6c:ce:75:68:58:22:cc:30:ef:f8:
4f:c0:fd:bd:c2:55:bd:02:a7:74:71:e5:74:e9:50:2e:52:48:
53:f2:1e:77:d1:d6:30:1e:5d:b4:8d:ee:b1:5e:84:c6:45:98:
c0:56:8c:75:7b:da:bd:f6:04:99:bc:75:de:56:53:89:3e:c0:
71:99:77:82:62:cd:92:49:16:cc:18:72:cf:55:1e:8f:14:b7:
5e:25:5b:19:91:54:5a:0f:b1:e4:5f:a2:8d:7c:7e:96:0b:b0:
ed:0b:21:7e:f0:3e:9b:aa:02:fd:8d:a6:d6:65:3d:eb:74:19:
08:34:a3:a8:73:9f:fe:e1:56:4e:ef:0a:59:69:7a:52:bc:31:
2d:03:46:61:69:85:03:b2:aa:e3:a5:d7:d8:3e:5b:53:44:b4:
5d:65:70:95:30:a6:ec:4b:d4:06:69:58:10:95:dc:69:24:ce:
7c:ef:7e:95:f9:68:0b:62:df:a1:ab:d0:f8:88:42:66:31:8b:
02:da:ca:af:ac:32:81:46:db:39:31:86:63:e0:d8:66:ca:1e:
02:6e:7b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:26:09 2025 by rpki-client