Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdd5c2fa-813f-413d-8c2d-8d355361f2fc.roa
File: fdd5c2fa-813f-413d-8c2d-8d355361f2fc.roa (raw, json)
Hash identifier: VTK5rm6+vJcvXGxWdfQ1y3GyxgsPaXRLQWw4YW0C5ic=
Subject key identifier: 57:26:4C:85:97:BD:79:E8:20:39:15:4D:90:30:73:01:80:57:D3:C0
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 4BE810A941F495033FE45136226D18FFAC5B396F
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdd5c2fa-813f-413d-8c2d-8d355361f2fc.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da00:4800::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:e8:10:a9:41:f4:95:03:3f:e4:51:36:22:6d:18:ff:ac:5b:39:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=092f872e0d4d265380ef00803957f2aa70ae25e193cb692da8fb0db16065bb50, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d1:5d:40:b0:3a:f4:dc:7d:30:95:22:1a:e1:
d9:9b:2c:0e:e4:ec:fe:82:a8:72:fa:56:86:ab:1c:
c7:da:3d:9e:3a:60:c4:52:39:2a:2f:f8:80:32:8c:
12:d8:b4:57:14:e3:52:07:3b:88:0f:f6:56:d6:38:
4b:49:3f:3a:a0:9c:38:f0:8e:2f:43:86:29:5d:7a:
bd:14:6f:e0:c3:b1:2c:85:50:b7:18:5b:1d:75:f4:
c8:5d:08:24:99:82:2c:50:08:f6:8f:07:5e:ee:e7:
ba:15:55:a1:ee:54:3a:1d:a1:5a:94:bb:2c:8f:bd:
b7:c4:e2:90:c9:d5:a3:41:ff:3f:e6:07:fb:54:32:
c9:b0:b0:58:6a:05:ea:7f:a4:ad:73:f3:0e:72:d9:
49:85:1d:67:53:42:46:c6:e8:cd:39:d4:df:eb:d7:
4a:9a:f3:ac:06:90:8d:9e:86:b7:7d:dd:75:7c:9a:
00:33:09:c6:44:a9:90:7e:c4:08:eb:f5:9e:95:5d:
5d:0e:0e:1b:4e:10:ec:d8:77:63:c9:c8:53:d5:e3:
9c:2b:1d:a8:0f:dd:94:1a:8b:99:74:f0:54:06:28:
fb:9f:44:7b:64:5e:9b:2c:3b:72:38:52:6f:7d:1d:
73:d5:e4:da:c1:8f:32:70:c7:61:e3:a7:1e:60:5d:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:26:4C:85:97:BD:79:E8:20:39:15:4D:90:30:73:01:80:57:D3:C0
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdd5c2fa-813f-413d-8c2d-8d355361f2fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da00:4800::/40
Signature Algorithm: sha256WithRSAEncryption
5f:51:da:01:e9:b5:46:e1:5a:d6:70:1b:22:79:61:e4:c5:b0:
3f:f1:f9:f7:64:39:a2:62:36:bf:c9:14:c3:b7:7a:e4:04:f2:
59:33:e1:b3:7b:1f:51:84:c4:ac:77:c6:90:5e:34:f7:e0:d2:
e2:30:e6:3b:ff:9b:23:d5:10:4a:f0:18:c8:03:42:e6:2f:c5:
cb:ed:02:72:77:81:be:16:a6:4c:22:1b:c3:4d:0e:72:8d:00:
28:db:0d:e8:5b:d6:59:99:22:23:3e:b0:a0:c6:11:81:cf:93:
d8:52:5b:de:92:d8:cf:b2:1f:45:cd:ff:25:78:05:67:1c:77:
b9:8f:fd:94:74:e0:a8:da:6a:62:ea:0a:6c:af:ad:01:f6:7d:
86:f2:97:45:dd:03:06:46:96:ce:a9:d2:6f:60:96:e6:79:8e:
47:b7:aa:e4:8c:13:74:d5:19:cf:0b:d6:32:7f:8e:10:a3:f0:
a9:ec:d5:16:e5:65:c6:6c:04:2f:8b:2e:b2:e9:fe:9e:7b:c3:
cc:28:79:04:68:18:ca:0d:53:be:d2:75:e1:73:20:6a:5a:27:
9b:2b:f7:10:3f:25:11:a3:c5:33:c1:9b:8f:93:b0:2f:99:83:
b4:ac:2a:5e:bb:bb:39:6b:56:e8:1f:80:47:f6:3d:2d:9c:34:
62:93:0f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 05:28:36 2025 by rpki-client