Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa
File: 17428170-47b5-40b1-8882-bb95915d3ed7.roa (raw, json)
Hash identifier: QKaEzIJ4hapag4JNauBGINnosVWP3cN8fyw3OOZ3Al0=
Subject key identifier: F1:2E:25:E8:CA:56:69:9A:44:93:CF:B0:25:84:46:D5:2F:D4:73:EA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1CD8BB19547B0A67AF0FB8D68592E9B008E8B8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa
Signing time: Fri 21 Mar 2025 00:21:21 +0000
ROA not before: Fri 21 Mar 2025 00:21:21 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 66.109.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:d8:bb:19:54:7b:0a:67:af:0f:b8:d6:85:92:e9:b0:08:e8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 21 00:21:21 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:c8:32:2b:e7:53:a7:98:a3:81:ab:22:d7:
ab:14:f6:b7:12:b2:1b:ca:d4:b0:bc:19:0b:07:d1:
18:b0:dc:7e:0d:51:75:be:b8:bb:62:29:3e:71:ef:
16:82:b5:a8:7f:38:fd:1e:ff:1e:43:b3:18:cb:9f:
7a:e6:06:9d:fa:01:30:8f:fc:af:87:4b:6b:34:fb:
b5:ec:27:60:74:bb:6b:64:23:4f:ee:66:e5:72:35:
59:4f:7e:32:1d:d1:e7:f9:88:12:6e:20:5f:17:51:
63:f9:12:51:b5:c7:91:a9:5d:38:89:25:b7:81:90:
50:8f:14:a2:02:4d:06:16:c1:b3:f3:0f:6d:89:4b:
1b:e3:90:69:d7:f0:15:b9:c1:ca:62:1e:bb:73:9c:
f1:13:6d:7b:f4:05:c9:a5:e6:92:2f:99:18:52:46:
37:92:e9:aa:e4:7c:72:28:37:cd:5f:d2:bc:47:8e:
75:f3:95:63:90:dc:d3:e7:b7:b8:3c:50:e7:ba:3d:
3b:70:f0:59:9f:e6:a5:5c:24:2d:76:51:cf:0f:5d:
ec:2c:c9:bb:a9:a4:e6:27:36:51:5b:d9:3d:8b:dc:
8a:6b:fe:14:1b:3a:d1:56:7a:91:a3:fe:60:9b:5a:
8d:a5:92:38:23:98:cf:62:4c:a2:41:8e:5d:ab:d7:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2E:25:E8:CA:56:69:9A:44:93:CF:B0:25:84:46:D5:2F:D4:73:EA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.109.64.0/20
Signature Algorithm: sha256WithRSAEncryption
25:9e:a8:86:b4:13:7b:63:1c:1c:f4:80:6c:76:a6:62:e4:7c:
97:03:9f:d1:48:85:da:72:01:17:7e:9c:6f:69:8b:49:16:b3:
b0:10:9b:cd:f7:55:8b:1d:7e:30:a1:f4:02:a6:29:92:16:cf:
b2:d9:e4:51:dd:94:f3:74:5c:7c:cb:0d:2e:a2:9b:3a:c5:ea:
2c:4a:79:3e:3d:c5:15:29:8a:da:30:cb:93:d9:a4:f2:59:34:
f8:1c:a5:91:30:46:5c:f2:ae:38:6c:64:13:19:29:2d:b5:0f:
59:cd:42:32:41:bb:8e:7c:1e:e0:83:83:95:99:f0:6f:c5:6e:
2d:a1:95:68:bc:0b:52:dc:12:d2:c8:fe:e6:1f:61:68:df:31:
f7:fe:04:ee:59:db:e4:af:df:7c:03:d5:43:7d:94:c3:fb:f8:
95:88:62:a1:1b:df:51:99:ba:c4:5d:8c:94:af:7b:49:33:49:
71:5f:85:0b:a3:8e:9e:78:7f:81:60:1d:4f:b6:6d:8f:5f:f2:
23:d1:dd:14:fa:48:39:99:59:7e:18:34:a4:7d:90:53:a9:e4:
86:e3:bb:ab:9b:23:c4:f8:33:5a:58:95:32:57:c9:84:2b:95:
d5:c4:5b:a5:c0:d2:43:83:2a:a6:fa:04:06:6e:09:2c:ed:a7:
d9:35:3f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:06 2025 by rpki-client