Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa
File: e19d78e4-93af-46a2-b178-56ac1a3905e7.roa (raw, json)
Hash identifier: FyBYluE4EbTrMUsst276A81WzsiQM7aLrget8lph1lI=
Subject key identifier: 7B:C9:BE:E8:AB:86:28:46:74:56:15:14:38:83:4A:F6:41:0E:C6:29
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 38C0E19B02730F7759F29661E21592E6653D4AD3
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da00:4080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:c0:e1:9b:02:73:0f:77:59:f2:96:61:e2:15:92:e6:65:3d:4a:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=b06486a79ecee9ed59af9a7b0a9832ee044966649a69f6758d9c0ed2ce1a61c5, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2e:7b:97:04:1f:a1:8f:4a:55:ef:11:9f:6d:
06:48:ab:7a:b9:45:28:80:72:24:46:07:80:af:b3:
3a:e3:8b:ad:27:1c:f5:a5:41:f9:f9:cf:78:ac:44:
3b:5e:6d:a0:96:54:5f:12:f7:8a:53:7a:94:bc:45:
fd:70:56:8b:c0:9b:58:2e:ea:42:d3:8b:eb:21:56:
62:7c:c7:6d:20:af:3c:74:ed:d0:3a:a3:74:1a:27:
9f:24:8d:f2:b3:5e:e9:66:64:31:2a:8d:2d:46:9b:
32:b4:86:c1:34:cd:21:37:92:3e:2e:20:bf:9f:cc:
33:aa:79:bf:d6:f8:87:d2:13:9f:43:8f:3d:e6:0d:
40:60:e4:f3:cb:b2:aa:ce:6f:96:33:b0:05:82:5a:
17:a6:ff:dc:5b:95:da:6f:97:8c:23:c4:e7:b8:48:
61:6a:e0:61:96:96:86:8f:cf:af:b2:f8:e9:b4:5e:
f2:a6:05:28:b4:01:4a:e2:86:4a:ad:22:80:72:4d:
68:45:59:e4:5c:7f:4f:a2:78:fb:27:41:85:33:1f:
6e:32:56:64:bc:ef:34:a9:8a:5e:69:f7:1c:b5:e5:
e7:79:93:5a:99:09:b7:5a:9b:52:11:88:ca:21:ec:
8c:f7:aa:07:eb:e0:c6:45:a4:ae:b9:6e:8e:3e:e3:
2e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C9:BE:E8:AB:86:28:46:74:56:15:14:38:83:4A:F6:41:0E:C6:29
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e19d78e4-93af-46a2-b178-56ac1a3905e7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da00:4080::/48
Signature Algorithm: sha256WithRSAEncryption
9a:90:ad:0a:4d:c8:ea:ad:b2:28:b2:ae:b4:45:aa:09:4f:0b:
d4:d2:f6:d0:89:e5:11:e9:d2:da:ad:b5:95:82:54:d9:f4:ad:
52:6c:a3:4c:80:62:84:7e:11:eb:2b:bf:91:29:d9:e7:ef:d1:
eb:3c:18:74:4f:dd:d7:41:5e:cd:bf:da:c1:b0:46:66:63:8d:
89:2e:74:d3:ae:f7:3b:24:d4:cf:cb:d4:3d:ba:c9:13:5e:08:
57:a7:ed:85:95:d0:e7:03:76:2f:71:ac:08:78:ae:c2:33:bc:
a0:00:a9:bc:31:f0:be:46:3e:ce:65:64:c4:46:e0:03:8c:f9:
0f:9e:c7:b0:cb:87:74:41:d8:fa:20:1c:19:a7:9a:f1:08:54:
72:98:1c:0a:53:f1:70:cd:cd:ae:43:d0:7f:1e:c2:50:2b:86:
85:c7:1d:7d:b9:f5:58:95:89:6c:26:52:5e:74:17:86:0d:f5:
a1:6d:ea:65:55:01:89:14:79:33:48:b5:84:9a:69:70:bd:c8:
e4:17:79:f9:ae:87:a1:6c:50:19:b3:33:c5:60:36:67:b5:7e:
6a:36:4c:bf:7c:f9:4a:fd:91:92:a2:9c:20:4d:9b:01:f5:28:
bc:cd:dc:ca:62:5e:88:81:21:e4:31:58:b0:cf:b9:91:b9:58:
2e:b6:ef:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:42:39 2025 by rpki-client