Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/727c896b-445c-4fe4-af0f-9c0c9d7ae3b0.roa
File: 727c896b-445c-4fe4-af0f-9c0c9d7ae3b0.roa (raw, json)
Hash identifier: fJJzxSI5PNpZvi0B92G+iIgujUlFP9tuxvdiwr54uNU=
Subject key identifier: E2:33:A3:F6:69:FF:5B:D1:F2:0C:FE:26:F2:B6:F4:19:42:C7:89:E2
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 0E0AE0EF0D255BEB94A80CA56F8E53ADB7B2B32E
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/727c896b-445c-4fe4-af0f-9c0c9d7ae3b0.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daff:7080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:0a:e0:ef:0d:25:5b:eb:94:a8:0c:a5:6f:8e:53:ad:b7:b2:b3:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=f9b189c3f72438c4ff2dd6d130e3fed0d34ff2ebc3510b193f8dc92ec8460776, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:16:e7:c2:ad:c7:3a:51:38:18:50:df:1e:b6:
a0:05:19:04:14:5e:f7:9c:e3:20:4d:60:a5:0a:a5:
e5:b2:8d:76:33:2e:58:77:b6:73:1e:ca:41:a7:dc:
36:2a:9c:f8:fe:f0:b5:74:bf:61:a8:19:fd:2c:25:
79:dc:d3:dc:fa:bd:5f:9b:89:6e:fe:5a:ac:9d:13:
c1:90:41:99:0a:df:68:cf:58:c9:83:f2:bb:da:d9:
ce:73:46:0d:00:51:15:ab:ef:da:eb:e6:ac:2d:97:
87:68:d5:d3:b3:af:b7:97:af:e4:34:05:09:17:95:
8a:ea:24:da:f0:a4:0e:51:d1:4b:18:c3:0f:e4:63:
5d:82:84:a2:06:27:a9:23:2f:16:e0:0b:96:ad:0b:
9b:66:24:9f:99:6e:79:8e:0a:93:0d:25:b4:ec:24:
c5:a4:68:ec:56:75:ae:9b:e1:6e:6f:00:b1:8f:bd:
97:12:14:ae:46:a7:04:9e:c9:22:2f:6d:67:ce:00:
d0:9b:59:d9:25:37:b8:b9:7f:e1:69:e9:9f:0b:04:
5a:de:0a:c7:98:99:ca:58:ea:11:35:fa:ef:2b:a7:
b7:d6:0a:1a:f4:98:3e:2d:36:05:07:c6:7f:c5:73:
fe:77:4e:f2:d0:a1:f5:e9:a6:01:24:00:f2:79:11:
45:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:33:A3:F6:69:FF:5B:D1:F2:0C:FE:26:F2:B6:F4:19:42:C7:89:E2
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/727c896b-445c-4fe4-af0f-9c0c9d7ae3b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daff:7080::/48
Signature Algorithm: sha256WithRSAEncryption
94:6e:0d:ec:e1:39:1e:4f:35:aa:bc:69:b7:75:81:92:96:7d:
55:73:05:6a:40:2b:49:ba:bc:cc:2a:82:1b:50:ca:fe:44:9d:
7c:97:0f:fd:23:99:c0:a5:34:42:6a:31:1a:26:2b:d7:a1:1b:
c4:ac:a2:a2:4a:1d:0c:15:4b:87:b5:e9:2b:94:9c:76:40:c5:
a8:d8:84:0f:d0:b8:5e:78:ec:2a:69:0b:f3:e1:e9:04:ca:aa:
ac:f5:e5:09:88:ad:ec:96:cf:e5:2f:b4:2b:41:45:e0:f5:01:
f9:b5:04:6f:f6:6d:b4:3a:53:00:ff:fe:ef:b8:2e:4b:13:88:
d8:57:54:02:68:96:66:b3:77:6d:cd:fc:74:57:c4:92:a2:6a:
ec:53:84:e9:bc:00:a4:10:6a:29:9d:84:47:84:48:d9:4d:bb:
78:fc:b4:68:ca:d3:fe:3c:26:e1:40:ea:31:fb:55:7a:17:e0:
ea:e0:49:19:9e:f0:46:a8:5b:dd:27:db:dd:0d:bb:aa:08:ee:
51:54:55:4e:de:90:94:e2:7d:63:03:c0:2a:75:2b:f5:0b:01:
a9:c4:73:fa:86:3d:4a:a0:cc:cc:8d:a9:39:fe:c2:4c:1d:0c:
9d:02:a8:26:30:10:1d:10:f1:9f:9a:e8:a0:7b:40:d4:c9:74:
94:79:8f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 09:53:36 2025 by rpki-client