Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d2d775cf-eb5c-47e2-90da-83e9d3f6ed06.roa
File: d2d775cf-eb5c-47e2-90da-83e9d3f6ed06.roa (raw, json)
Hash identifier: W/jnOjKJDjwIMGQ5Qxu6HicNR+P/VN7ZqSIcyxHYGuo=
Subject key identifier: EC:84:39:3C:35:3A:1B:29:CB:72:C8:3F:3A:13:6A:1F:4F:10:81:FA
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 30B107BEA4E65E25780EB647E23F5B680D924EB1
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d2d775cf-eb5c-47e2-90da-83e9d3f6ed06.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf7:e040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:b1:07:be:a4:e6:5e:25:78:0e:b6:47:e2:3f:5b:68:0d:92:4e:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=88aefd2aa39bd893a0c890cd6c7818fc3f403ad87f1d9044b8e9f5fe13513ba0, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:7c:22:e0:75:2f:5e:2e:cc:b1:2e:be:8e:
3c:c4:cb:98:b3:c5:6b:8b:9c:f3:d3:fd:ba:d0:f6:
03:8e:bc:37:78:da:f4:c3:51:d7:cf:3f:36:aa:bd:
cd:de:c3:da:70:a0:57:5c:01:40:31:ef:60:66:da:
7f:74:9d:e4:77:42:97:1d:e6:61:b9:4e:e1:bc:75:
3e:a9:ae:fa:51:2a:24:4a:52:90:37:84:c8:a4:a5:
fe:70:1a:2a:f1:4f:11:4f:91:f7:38:82:f6:83:61:
d1:b4:09:96:8a:16:d2:0a:05:95:69:58:45:7e:84:
a2:6d:e0:df:06:38:3a:22:5c:87:57:23:9a:62:e2:
60:51:c1:f6:ed:55:7e:65:8d:3b:2a:4a:fc:13:f6:
6b:21:e3:8d:cd:0c:7c:bc:b2:67:2e:3b:7e:42:de:
5d:46:8c:64:48:05:eb:15:b8:41:b4:eb:76:2f:ed:
0c:d2:30:f6:e1:6a:2a:62:6f:84:9d:2d:57:ef:4d:
6c:d7:57:b4:87:84:bb:be:e5:95:f0:02:84:b9:fe:
45:bc:61:e5:97:6d:06:53:32:0d:08:ad:5e:a2:99:
7f:66:ad:1c:6c:e1:43:4a:da:d1:c3:4e:8a:b4:60:
b7:6c:5f:4b:9b:b6:2c:94:e3:3e:13:63:bf:c9:e7:
d6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:84:39:3C:35:3A:1B:29:CB:72:C8:3F:3A:13:6A:1F:4F:10:81:FA
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d2d775cf-eb5c-47e2-90da-83e9d3f6ed06.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf7:e040::/46
Signature Algorithm: sha256WithRSAEncryption
a5:96:64:0f:0f:1f:ce:ed:54:a5:a9:1e:17:9c:c9:3e:70:0d:
4e:06:34:f4:d8:d4:81:2f:31:27:35:c0:e6:55:d3:b4:d9:d6:
fc:2d:0e:e7:24:48:60:c5:72:c7:1e:8e:d2:74:1b:ce:0f:df:
6f:2b:09:23:f5:50:f5:8a:11:39:1a:22:cd:1e:7b:36:82:32:
c3:25:9f:e9:ba:30:99:c8:4a:0c:f8:e2:29:6e:8b:8b:44:07:
67:e7:d1:0c:8e:dd:5a:7e:24:d7:35:12:66:bf:1f:e7:d7:44:
78:fe:8c:a5:02:9d:75:51:46:6e:9a:d6:1d:22:1c:17:6d:8b:
87:03:aa:aa:5c:dc:26:2b:39:1c:f3:d6:fd:3f:6f:0f:03:df:
a4:94:50:12:7d:a0:83:c0:c7:fe:96:0d:b0:1f:c3:3b:00:e7:
16:82:ca:71:28:b4:6c:b0:24:e4:b5:83:b7:18:03:0f:00:0d:
af:c6:d7:2b:e7:78:f5:01:91:84:0b:91:5c:32:e8:fd:08:f0:
c4:b8:4b:a2:a1:57:46:00:d0:95:62:60:85:5c:77:a2:17:b9:
27:d5:a2:24:47:4e:41:c8:c9:94:b3:a6:45:07:e2:ae:a1:f3:
9a:1d:bc:0e:be:77:46:49:8c:00:9b:01:b3:4f:58:01:37:0d:
25:c4:da:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:11:53 2025 by rpki-client