Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a92f1e22-e67b-4fa9-9cac-0c0051ee13d6.roa
File: a92f1e22-e67b-4fa9-9cac-0c0051ee13d6.roa (raw, json)
Hash identifier: DuAZFVACOG8svrLsbHr4cUAdjbg8ZIo40aGb2k1oF/0=
Subject key identifier: AC:B5:81:52:C6:2A:7E:D2:C2:31:CC:91:EF:02:44:10:6B:0F:55:16
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 23D384A58C66E730793DC8E05BD4660B4907C412
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a92f1e22-e67b-4fa9-9cac-0c0051ee13d6.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da38:8000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:d3:84:a5:8c:66:e7:30:79:3d:c8:e0:5b:d4:66:0b:49:07:c4:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=8c70b948290349b1c731238f57e613c9eaa3c8214e354285b0ac553a17f4917d, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b0:f5:14:9a:7e:f4:28:c3:d6:dc:ef:2e:ce:
86:b3:da:a1:ec:90:bb:5b:86:45:65:de:d1:1c:0f:
be:2a:46:19:7f:36:48:2a:1b:09:a1:39:1a:d6:ec:
3e:81:16:37:e1:a1:ce:39:bd:85:97:06:8d:1b:e2:
49:22:f1:7a:43:4b:ec:6d:00:e7:52:c9:24:4c:44:
d6:92:e3:84:dc:08:bf:37:f3:ae:97:29:33:55:5a:
95:79:ea:0e:e7:04:a0:ee:7c:f1:fd:aa:a0:a4:8f:
45:a5:36:54:ea:d9:ae:a8:d4:52:32:45:d2:05:5e:
08:33:57:e0:f5:11:29:3a:b2:2f:05:17:0c:e0:32:
29:08:f3:a3:52:b7:f5:95:49:9e:dc:3b:3c:5d:b3:
63:94:2f:23:0a:76:ae:26:e3:4c:5e:2f:88:eb:a6:
bd:31:33:4e:7d:91:97:9a:c2:24:53:72:d1:82:f5:
df:46:8e:bd:c5:68:42:c7:78:9d:18:b8:cd:1c:11:
98:08:dd:53:91:8b:5a:de:12:03:ae:5d:5f:95:95:
fb:8a:52:db:53:ed:6b:72:88:4a:6e:fa:be:ab:db:
6b:64:be:68:da:f7:99:f0:33:9a:45:1e:b0:4d:13:
c8:8f:46:43:d9:67:3b:77:06:2b:b9:00:be:7b:80:
66:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B5:81:52:C6:2A:7E:D2:C2:31:CC:91:EF:02:44:10:6B:0F:55:16
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a92f1e22-e67b-4fa9-9cac-0c0051ee13d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da38:8000::/40
Signature Algorithm: sha256WithRSAEncryption
51:c0:14:7c:2a:d2:9f:a9:9f:ed:fd:c9:05:99:99:f7:24:c5:
6d:7e:c7:74:5e:60:f9:fe:69:3c:41:90:94:9d:18:01:27:a3:
ae:15:30:11:ef:59:80:88:3b:78:a1:32:6a:b0:55:d1:08:21:
e1:8f:79:6d:6f:d9:c4:3f:72:d4:4d:3b:62:d2:3a:6a:6c:96:
01:f4:85:3f:ef:14:8a:77:b5:31:34:84:25:43:42:f5:51:1a:
08:3a:82:8f:d6:a0:0c:45:a3:3c:9d:86:e2:62:6a:83:90:8c:
97:fc:3c:34:93:0a:0d:8e:54:ba:24:29:88:f7:d8:5d:bc:5c:
60:6f:4b:4b:5b:55:31:78:71:c4:cb:ed:47:67:98:60:5c:fb:
74:78:e3:73:6f:6c:a2:9e:86:2a:88:92:20:4b:d7:c7:9d:99:
4a:9c:fe:80:10:1f:6d:a3:cb:47:99:97:8c:03:1e:38:f2:72:
b3:6c:ea:c9:cb:bb:5f:f1:e1:d5:25:e3:a4:55:70:7a:05:a2:
fd:0a:33:9c:34:59:3a:e0:91:b6:b4:40:0e:6f:f3:01:96:b5:
15:da:8a:c2:83:f2:e4:70:27:aa:ef:89:f1:42:89:f6:8a:8e:
1a:55:64:c3:f0:9d:b4:30:ee:1c:94:68:d7:8b:ae:4b:59:71:
fa:18:97:a1
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIUI9OEpYxm5zB5PcjgW9RmC0kHxBIwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEwNzAwMDAwMFoX
DTI1MDIxMTIzNTk1OVowejFJMEcGA1UEBRNAOGM3MGI5NDgyOTAzNDliMWM3MzEy
MzhmNTdlNjEzYzllYWEzYzgyMTRlMzU0Mjg1YjBhYzU1M2ExN2Y0OTE3ZDEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6rD1FJp+9CjD1tzvLs6Gs9qh7JC7
W4ZFZd7RHA++KkYZfzZIKhsJoTka1uw+gRY34aHOOb2FlwaNG+JJIvF6Q0vsbQDn
UskkTETWkuOE3Ai/N/OulykzVVqVeeoO5wSg7nzx/aqgpI9FpTZU6tmuqNRSMkXS
BV4IM1fg9REpOrIvBRcM4DIpCPOjUrf1lUme3Ds8XbNjlC8jCnauJuNMXi+I66a9
MTNOfZGXmsIkU3LRgvXfRo69xWhCx3idGLjNHBGYCN1TkYta3hIDrl1flZX7ilLb
U+1rcohKbvq+q9trZL5o2veZ8DOaRR6wTRPIj0ZD2Wc7dwYruQC+e4Bm5QIDAQAB
o4ICSjCCAkYwHQYDVR0OBBYEFKy1gVLGKn7SwjHMke8CRBBrD1UWMB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
L2E5MmYxZTIyLWU2N2ItNGZhOS05Y2FjLTBjMDA1MWVlMTNkNi5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAbaOIAwDQYJKoZIhvcNAQELBQADggEBAFHAFHwq0p+pn+39yQWZ
mfckxW1+x3ReYPn+aTxBkJSdGAEno64VMBHvWYCIO3ihMmqwVdEIIeGPeW1v2cQ/
ctRNO2LSOmpslgH0hT/vFIp3tTE0hCVDQvVRGgg6go/WoAxFozydhuJiaoOQjJf8
PDSTCg2OVLokKYj32F28XGBvS0tbVTF4ccTL7UdnmGBc+3R443NvbKKehiqIkiBL
18edmUqc/oAQH22jy0eZl4wDHjjycrNs6snLu1/x4dUl46RVcHoFov0KM5w0WTrg
kba0QA5v8wGWtRXaisKD8uRwJ6rvifFCifaKjhpVZMPwnbQw7hyUaNeLrktZcfoY
l6E=
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:28:43 2025 by rpki-client