Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e09950bd-07ca-4e5c-bd3d-a17fcc36729c.roa
File: e09950bd-07ca-4e5c-bd3d-a17fcc36729c.roa (raw, json)
Hash identifier: EnfEovTwuMuqAmBzOQ2URHAh5DFDoHPMic6NPP1j9+s=
Subject key identifier: 9F:B5:D8:84:59:37:6A:ED:C0:20:CE:D7:4F:9C:6D:F4:7F:38:BC:69
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 18D78E6F5199D5529635CD0BF6691B133C465D58
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e09950bd-07ca-4e5c-bd3d-a17fcc36729c.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da61:f0c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:d7:8e:6f:51:99:d5:52:96:35:cd:0b:f6:69:1b:13:3c:46:5d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=56ca1b39c62bab1db19e6dcd3f1f36a25072e6b280398b3da60f35a57982c123, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f7:94:83:b3:4c:c3:33:3b:6d:82:ca:83:c0:
31:a3:e2:5e:65:3b:1a:33:ca:35:0c:1f:c6:9b:bd:
d6:66:c4:66:28:9d:cf:33:a6:07:83:1a:e4:02:e4:
9f:c2:c8:10:53:34:70:f7:d1:33:c3:1a:7d:c9:ef:
3f:f2:16:11:9a:cb:55:8c:62:fe:be:24:ca:b2:c7:
5c:6f:c0:a3:0e:cd:9e:f4:55:10:86:be:ff:bb:5f:
b1:03:a4:20:a7:71:15:fa:3c:37:43:5d:de:c3:4e:
c5:8d:28:b1:70:f4:d9:72:2b:56:e0:41:b6:9d:a3:
7b:30:2d:4f:5a:d6:c7:2a:a8:a3:2f:3c:82:ae:f1:
9b:50:a8:6a:e9:c5:ff:ab:62:16:12:53:93:ac:69:
5c:41:63:69:02:5d:fb:5e:5f:f5:fe:4f:39:5b:c2:
8c:3a:51:c7:a2:33:9f:c7:79:3e:65:9b:18:b4:1e:
8a:6b:37:e5:7c:0b:ca:11:2a:7d:69:89:ea:92:bb:
30:3d:74:e9:fc:3d:b4:f0:cf:00:1a:89:b4:33:44:
76:10:c8:23:16:96:ed:29:39:88:f1:e7:53:98:56:
f7:45:55:6b:f4:42:65:24:56:fe:1a:d5:4b:98:ec:
f7:d3:c9:6c:8c:1d:76:a9:b6:c9:d9:f5:8a:ad:6d:
ea:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B5:D8:84:59:37:6A:ED:C0:20:CE:D7:4F:9C:6D:F4:7F:38:BC:69
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e09950bd-07ca-4e5c-bd3d-a17fcc36729c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da61:f0c0::/48
Signature Algorithm: sha256WithRSAEncryption
3f:be:cf:9d:14:50:85:a7:48:53:28:a4:26:cc:7c:81:8d:1c:
82:77:e6:66:46:65:b6:26:a7:dd:bc:07:cb:90:26:97:8f:83:
06:8b:e0:db:d0:ae:4a:4b:5f:01:bc:dd:aa:81:16:35:41:be:
b6:fc:b3:ec:a7:0a:f3:d3:14:25:06:08:2c:e3:69:89:12:0b:
f2:fb:96:bd:54:71:cf:0a:03:de:f6:58:5a:08:df:c3:19:de:
50:66:5d:af:09:82:8f:ad:11:97:db:cc:18:f4:6a:e5:05:42:
5a:37:f2:bc:ab:97:e6:32:8a:59:bd:9d:aa:e4:84:82:8c:85:
56:a1:72:d6:c0:0b:a6:1e:f7:f7:92:84:79:8a:45:cf:67:a6:
93:16:cc:98:31:bf:b1:56:d3:31:10:54:33:50:0a:68:02:cc:
04:f2:88:65:27:8b:14:49:73:ed:22:1f:82:46:d8:af:28:7e:
6e:65:be:f4:78:37:41:dc:34:0e:55:ad:a7:22:29:57:b1:e1:
5f:0a:fc:5f:0c:9c:b8:fc:0b:2f:72:66:05:39:ea:07:e4:1a:
e7:be:8a:ed:a9:9c:b8:45:52:2a:7b:d9:67:3a:be:fa:15:2f:
e7:95:3e:88:d5:a8:78:10:a4:5a:65:12:b6:86:63:e3:76:d0:
85:1c:51:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:20:25 2025 by rpki-client