Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90d3a0e7-4708-4742-80f0-23bb48bd8f35.roa
File: 90d3a0e7-4708-4742-80f0-23bb48bd8f35.roa (raw, json)
Hash identifier: GcJ3fVEJp6uPigvxYh4QuN3BRM2SEIs27tSWIJyLmdk=
Subject key identifier: 28:B5:01:E1:9E:E1:89:D1:A2:B2:9C:24:1F:00:0E:44:D3:FD:68:E8
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 224265918C84C544F47635A86B9E878BA06FA179
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90d3a0e7-4708-4742-80f0-23bb48bd8f35.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafe:7000::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:42:65:91:8c:84:c5:44:f4:76:35:a8:6b:9e:87:8b:a0:6f:a1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=036e21c62001a4b66257f561d07378d96983c4893e4310ebd96985dd59692a0a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:a6:ee:e8:d7:3c:64:c9:65:b1:c4:32:68:
f1:a3:f2:48:d9:65:93:9e:e7:2b:9c:6b:6b:dc:ac:
91:f1:db:22:ca:34:ea:20:b5:34:92:76:e7:27:6c:
ef:a9:ae:c9:55:eb:62:f8:b2:89:7e:59:6c:ec:e2:
a0:e1:cf:2d:a0:63:55:c2:7e:c5:c7:de:3a:d9:d1:
1b:55:81:13:22:46:44:48:6d:77:5c:e5:4b:79:e6:
26:ea:a0:5e:4f:36:fe:82:f8:cc:13:c5:2b:62:8f:
6f:5a:2a:82:a7:a1:15:e8:1e:a8:bc:62:18:8d:00:
d5:61:18:1b:d4:1e:95:0f:24:c0:7c:20:7f:15:e4:
d4:37:23:08:a4:62:d0:cf:24:04:84:ae:6e:80:1b:
34:20:2c:3f:6b:5e:c3:c3:fd:e2:4c:10:92:88:19:
eb:86:ea:34:73:1a:75:3a:71:97:48:5f:4a:84:8a:
18:ac:37:67:2e:53:2f:08:93:68:90:61:3a:d4:98:
1f:e1:df:f5:0a:e8:c2:1f:18:a6:c4:c4:2e:43:81:
73:06:c2:2c:0f:18:b4:a7:b5:a0:a9:7f:d5:cf:41:
ec:7a:a5:17:66:91:a2:75:ce:a2:76:89:09:29:7d:
f4:ec:fa:07:68:c1:c1:95:e6:2f:35:d2:25:48:7d:
57:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:B5:01:E1:9E:E1:89:D1:A2:B2:9C:24:1F:00:0E:44:D3:FD:68:E8
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/90d3a0e7-4708-4742-80f0-23bb48bd8f35.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafe:7000::/40
Signature Algorithm: sha256WithRSAEncryption
89:ad:8e:32:69:45:a7:92:9e:c3:39:a0:8d:86:05:c2:1b:d4:
86:72:85:49:22:91:9a:a3:3a:fd:d1:04:d7:26:56:e4:cb:e3:
18:b9:45:d4:0a:5f:c4:81:33:70:d5:57:19:c2:28:d2:6a:9c:
ff:c3:c0:8e:c1:15:75:58:9e:a6:95:b2:fe:91:ed:84:4b:34:
d7:b0:18:cc:c0:c4:83:36:18:f4:6b:97:b8:38:9f:d3:4c:04:
55:0c:87:a2:0f:4a:27:d1:af:d7:c9:8d:de:03:1f:d9:57:f4:
7f:1c:a5:b5:d9:5b:ce:85:c2:94:78:32:cb:aa:77:f3:a2:5c:
6a:ef:65:8c:aa:8e:f0:c9:1c:e7:f3:2c:c7:64:62:8b:cf:9f:
c0:39:3f:fb:21:8a:ea:38:70:ec:3e:ca:da:c0:5b:86:c9:54:
4f:6f:f2:83:b7:c3:1e:be:f9:21:cf:62:d5:82:48:e2:73:b9:
6c:0f:52:0c:7d:50:60:1a:0d:82:a9:e2:b7:f1:6a:f3:63:95:
22:84:a5:23:2a:84:fc:d6:52:67:ae:91:2a:d9:65:16:25:87:
a9:f8:39:af:49:da:6c:7f:46:9e:40:98:38:5c:9c:df:69:63:
31:31:16:38:05:ea:c7:6b:f9:6e:f9:71:9d:5d:2c:d4:cb:84:
d9:84:84:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:28:47 2025 by rpki-client