Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa
File: 788c3900-e4d5-439b-b231-3a69b5354901.roa (raw, json)
Hash identifier: mZCheR/MefsjmhwYAKGQDlzZdo26Hlc0bmKH1+5gq+Q=
Subject key identifier: 85:57:6D:D8:38:8B:9D:8C:BD:B4:D2:60:4D:DA:AA:8E:57:17:23:13
Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial: 2A258F804EFCBF75E3E43858494FD71A8802E362
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa
Signing time: Tue 14 Jan 2025 00:00:00 +0000
ROA not before: Tue 14 Jan 2025 00:00:00 +0000
ROA not after: Tue 18 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 240f:8014::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:25:8f:80:4e:fc:bf:75:e3:e4:38:58:49:4f:d7:1a:88:02:e3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Validity
Not Before: Jan 14 00:00:00 2025 GMT
Not After : Feb 18 23:59:59 2025 GMT
Subject: serialNumber=320f6b85490a3e0a4c595708023c8b9b36b1d356d680312ddc21a4f26ebca0ac, CN=4257e925-715f-47a2-893e-0e3f97ec7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2b:d6:45:84:3b:e1:b5:8e:23:f6:d0:be:e9:
4d:34:07:ef:3b:6f:90:c2:94:bb:21:7d:c2:78:0e:
78:04:40:52:5a:ac:b1:b0:83:d2:75:8b:cb:28:aa:
ba:36:49:fa:ed:4f:7e:e5:8f:20:0c:24:e0:2b:69:
95:27:5a:44:51:8e:ab:a3:33:b4:ad:dc:ec:a4:67:
a8:fd:f0:d8:18:dd:24:99:27:58:7c:dd:da:c7:ef:
ea:62:63:b4:4d:75:c9:05:64:d7:89:29:7a:45:c4:
32:42:ba:35:0c:b2:3d:07:7d:db:28:8a:22:1d:b6:
1c:4d:7d:13:29:a3:d4:66:98:b5:74:6e:f8:cf:22:
37:d3:2c:41:2f:84:f2:1b:39:87:60:0e:63:3c:2c:
79:f0:aa:ad:d3:b5:68:ca:3a:a7:09:c4:d6:f5:da:
d8:4e:0c:5f:f3:07:c4:20:4d:e1:e9:29:5a:66:ca:
6c:cc:93:71:b6:df:82:d9:fe:7a:a3:cd:c3:11:b0:
e1:71:da:68:01:3b:9b:7e:de:ef:3b:03:21:16:af:
86:b7:09:cd:e0:f8:60:67:f0:0d:cb:fc:c7:58:de:
5d:30:0a:49:95:8d:f1:d8:69:5d:b9:be:6c:01:78:
ab:d3:0f:7b:e3:3d:20:73:32:ba:99:06:62:1b:b2:
49:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:57:6D:D8:38:8B:9D:8C:BD:B4:D2:60:4D:DA:AA:8E:57:17:23:13
X509v3 Authority Key Identifier:
keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/788c3900-e4d5-439b-b231-3a69b5354901.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240f:8014::/38
Signature Algorithm: sha256WithRSAEncryption
8d:65:8c:a3:fd:ab:47:37:e4:fd:3b:65:8b:2c:62:bb:c9:f5:
4a:66:02:ba:5e:39:8e:a2:c1:a3:14:12:d9:3a:8c:34:45:2b:
43:cd:db:68:c9:58:24:a4:e7:3a:b3:71:72:9c:94:7d:0d:89:
4d:38:c7:83:a4:52:89:ab:31:2a:3d:44:cf:7b:6f:81:b9:2e:
f8:0c:ee:d5:2f:89:2d:f0:85:2d:70:44:9d:a0:3a:79:7d:69:
07:75:40:2a:4a:05:7a:8c:91:01:51:4a:73:b6:a4:d3:75:cd:
cc:6f:66:1c:25:99:21:97:2b:89:d4:3b:cd:3b:f2:7d:eb:6f:
ae:64:f4:c6:cc:67:e0:d4:7e:b8:9a:d8:89:93:e0:ef:05:3c:
c6:0f:88:fd:ec:48:fc:73:fd:9c:d6:ac:cf:10:83:e0:01:34:
27:69:ae:24:52:32:e6:8d:85:60:93:fb:0c:90:01:f0:8f:35:
e6:8d:3d:ea:93:3a:82:30:ea:45:d0:40:ef:d6:3e:44:e2:f9:
c3:a0:c7:2b:05:69:f1:be:96:be:d5:15:cc:29:38:23:9c:b6:
d5:2d:c3:38:e3:4f:ac:6a:fc:dd:c8:79:5f:2e:59:c0:0f:30:
52:1b:92:be:02:78:a7:f7:c6:e5:97:98:94:12:9d:ea:14:98:
bc:82:2e:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:29:24 2025 by rpki-client