Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa
File: 90570a0e-67ef-4f08-bf15-1ca7df062e62.roa (raw, json)
Hash identifier: gto3M4QBlsMnbGCm2Roq9yTQvMfMIHyxg8dnvZF4jaY=
Subject key identifier: F4:B4:EB:4E:47:15:B9:AE:D8:12:F8:1B:08:11:DA:03:DD:CD:4A:C9
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 391BB9C1AF3CB791D9558CC9E31601926645BF55
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da1e:c00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:1b:b9:c1:af:3c:b7:91:d9:55:8c:c9:e3:16:01:92:66:45:bf:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=cc4f6e14ee1adc9822aac0463a52fad9bc8e74d1691084bf932827943670b86d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ba:dd:35:09:67:2f:27:0b:ec:e4:78:79:cf:
b7:99:b0:90:ed:93:2a:f4:42:0a:d8:58:81:40:7a:
60:90:4e:76:1c:0f:c9:d1:99:59:78:a6:62:e0:bd:
9d:cd:8a:4d:3b:75:00:9f:70:78:0b:de:62:63:2e:
c1:d5:2d:ae:61:f3:05:16:f6:bc:1d:8b:dd:b2:a1:
32:37:6d:aa:e7:c9:77:68:65:dd:69:fd:80:34:b8:
4d:ca:c0:99:cd:ee:c4:e4:c8:b7:99:b2:bb:20:60:
b4:cb:34:c7:51:fe:63:56:0c:23:f6:c6:d0:d7:f5:
10:c3:81:53:a6:bc:3a:9a:0d:59:2d:f8:d6:ea:34:
e9:e3:b6:76:d3:c5:18:4b:8a:ca:a8:d9:a3:94:11:
98:8a:5f:63:47:f3:be:ec:d9:98:ee:00:9c:3e:cc:
70:8f:c7:6c:9b:20:c4:08:ef:ff:7b:6d:c4:cf:0c:
27:74:ad:24:7a:30:71:e9:e8:73:c5:82:48:e4:b4:
4f:3f:29:00:f4:45:7a:5c:6e:6f:c6:17:dd:76:fa:
aa:e6:fb:23:09:5b:65:f7:a6:26:fc:f7:89:83:0d:
e7:e0:06:f7:c4:ad:33:47:32:48:ee:31:c3:a3:b7:
41:12:06:c3:5a:77:75:00:08:6e:50:74:ef:22:e5:
93:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B4:EB:4E:47:15:B9:AE:D8:12:F8:1B:08:11:DA:03:DD:CD:4A:C9
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90570a0e-67ef-4f08-bf15-1ca7df062e62.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da1e:c00::/38
Signature Algorithm: sha256WithRSAEncryption
c3:4d:b0:39:b0:bb:cc:34:27:d9:a6:ae:f6:3d:62:1b:e6:bf:
3e:6b:11:64:0f:40:22:cf:8a:01:50:22:ce:cb:3f:19:59:34:
e2:b7:df:28:d0:38:a2:a2:3c:07:6c:79:c1:99:e1:9e:37:df:
94:48:96:51:90:f7:0d:83:ed:64:13:54:2e:db:29:d2:62:38:
d7:ce:2e:ee:fa:85:7b:66:04:40:8e:ac:95:6a:40:3b:4e:83:
73:f7:3b:ca:c9:be:9f:26:c1:9a:22:dc:14:27:30:52:8a:c2:
79:27:fe:0b:02:75:2a:7f:c9:77:8c:39:ae:63:3b:d7:55:43:
9e:2d:4b:34:36:b5:d2:76:0b:f4:c3:c1:7b:ae:5a:09:1e:b6:
30:97:fc:94:c8:97:da:5d:76:ee:03:15:9b:9f:c1:2b:03:5e:
1a:37:8c:24:78:d5:28:47:e9:85:4a:e1:54:c8:ca:cd:26:dd:
24:18:3f:2d:a9:f1:23:c8:42:a3:9d:af:48:ef:11:d9:e8:61:
19:5d:9d:77:c8:1a:83:5e:03:e6:e9:9a:1b:35:61:7b:aa:3b:
eb:f9:e6:a3:84:56:fc:75:55:1f:a0:81:45:4d:63:cd:df:e1:
42:4e:2f:1e:19:40:9b:6a:0f:9b:cd:e8:d6:43:b7:79:a0:f3:
31:af:8b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:14:31 2025 by rpki-client