Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b0a2ed07-afde-4341-b34f-44bfbdfef09f.roa
File: b0a2ed07-afde-4341-b34f-44bfbdfef09f.roa (raw, json)
Hash identifier: 5f5mfOh0mjwhSyhWNlbLlP+P/V27BqaHZBiNP4onVL0=
Subject key identifier: 15:AA:96:61:9A:B7:36:66:3A:34:9A:6F:FA:0B:81:53:B2:DE:A2:C7
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 072212646C79AA69426F5104C28306E55517265F
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b0a2ed07-afde-4341-b34f-44bfbdfef09f.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daff:c0c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:22:12:64:6c:79:aa:69:42:6f:51:04:c2:83:06:e5:55:17:26:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=02ecc2380e2c5cf3ae05bce07b7463e55c75fae27a4f75cb9242fd13a11cbb6e, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b5:e0:cc:90:0b:48:fa:f9:ef:b3:1b:16:82:
22:2a:ea:b6:6c:a0:3f:e8:3e:ae:69:fe:58:ce:5c:
35:36:f6:1d:95:31:0e:34:23:48:24:b6:d6:12:fd:
f3:bd:af:d6:15:09:17:fa:d0:df:c2:cd:4e:1c:ca:
e9:ef:82:e7:2d:b8:f4:34:29:bf:63:58:aa:0f:f8:
6c:f5:f9:a0:e4:b1:ac:56:dd:19:8c:2a:99:5a:2c:
31:3c:23:24:d3:c7:57:3d:f5:93:c6:3c:89:15:15:
23:fe:d1:65:bf:3b:b9:fd:f8:7f:e7:a1:fd:f5:b7:
64:12:f5:97:02:39:8a:40:35:2c:35:01:8f:79:1e:
41:00:44:24:92:f0:62:0a:b4:43:ac:f6:b5:a9:23:
69:97:72:b4:01:d1:23:7e:0d:51:53:e5:d8:19:1c:
4e:b4:b5:28:28:2f:49:dd:65:cf:a7:bb:b0:b9:3c:
00:d6:f8:06:b4:62:d8:02:96:52:0a:bd:0c:63:1b:
63:f2:89:cd:cc:97:fe:2d:24:b6:ea:d7:56:04:94:
a3:9f:f9:1b:aa:f0:ad:e9:41:29:42:56:ce:ad:ae:
94:06:9b:5b:af:79:92:2e:6a:64:aa:f9:77:45:59:
da:c6:eb:26:38:b9:3d:19:40:44:b4:22:3d:6d:2f:
cb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AA:96:61:9A:B7:36:66:3A:34:9A:6F:FA:0B:81:53:B2:DE:A2:C7
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b0a2ed07-afde-4341-b34f-44bfbdfef09f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daff:c0c0::/48
Signature Algorithm: sha256WithRSAEncryption
42:1c:cb:32:8f:39:6e:35:fc:69:c8:b7:5d:64:83:3c:7b:7c:
41:e8:40:6b:20:5e:7b:d6:77:ce:f5:e5:0e:e1:20:11:b7:ef:
d5:9a:3b:a9:9e:ad:bc:58:83:60:ee:22:98:a2:7f:9b:07:15:
07:10:62:18:72:aa:84:5d:f4:a3:50:b4:93:3b:03:67:50:05:
7e:37:f8:eb:ad:bb:b9:b1:57:66:58:b2:f7:7b:b2:f1:5f:41:
23:cd:34:31:6c:4e:35:8e:81:e3:88:38:3c:8c:68:b0:cc:4c:
e4:72:02:9a:74:cc:fb:8a:1a:fb:a1:3b:70:75:bd:ab:b3:07:
f0:1d:cb:27:94:65:9a:52:ff:21:5e:e3:bf:89:3c:93:f2:b4:
1a:83:d2:f4:90:05:a8:d0:f8:fb:94:c2:68:30:4a:c9:9e:85:
19:58:bf:eb:e2:46:8e:71:30:ad:98:10:2e:2b:1c:3d:48:60:
da:4c:fc:fb:93:ee:40:0f:57:da:e5:af:37:b0:b6:ec:ec:dd:
86:16:86:00:b6:ef:52:6e:bb:9c:6c:d1:6c:41:33:5c:2d:a5:
77:da:18:ed:59:15:61:f5:fd:89:7a:3c:2f:4d:34:62:b1:18:
2a:e6:1a:c0:39:3c:0f:e5:39:f0:ce:4e:2c:a0:92:6f:4b:9c:
91:c3:c4:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:20:56 2025 by rpki-client