Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19e514fc-84b3-4e18-a36c-84ba61d84273.roa
File: 19e514fc-84b3-4e18-a36c-84ba61d84273.roa (raw, json)
Hash identifier: QCEgPGZQulOMEnJ9fzOV7WlgUHF86XhnYj/MZeUu1iw=
Subject key identifier: 72:AC:5D:62:38:86:22:69:84:22:EB:57:CE:0F:13:90:CA:34:50:81
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 58824DE3A23E757C4594738E6D77D8D8A6B729D2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19e514fc-84b3-4e18-a36c-84ba61d84273.roa
Signing time: Wed 05 Mar 2025 00:31:10 +0000
ROA not before: Wed 05 Mar 2025 00:31:10 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 56.209.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:82:4d:e3:a2:3e:75:7c:45:94:73:8e:6d:77:d8:d8:a6:b7:29:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 5 00:31:10 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9b:a4:3c:dc:27:b4:23:13:f8:9a:8a:07:b1:
7b:58:b2:10:60:2d:2b:e8:99:ef:41:f9:ff:02:1e:
18:fd:2c:35:40:85:81:fb:c4:ad:ae:cd:9d:07:73:
e1:4e:dc:1a:ba:ed:48:8b:5d:25:66:08:8e:ef:f0:
62:56:d8:39:c8:82:91:ec:f6:f8:ee:a4:ea:1f:03:
1e:9c:51:6f:95:f1:53:65:51:07:c7:30:7d:08:dc:
c1:5f:25:7e:69:2a:4e:34:dd:fd:5b:fd:4d:dc:2a:
ba:a8:c3:30:be:55:e8:03:3b:62:29:30:e3:aa:00:
8d:c3:d4:bb:d5:db:e2:37:e5:f3:be:c2:b9:c6:01:
94:d8:32:8a:3a:af:b3:29:fe:e8:30:7b:6f:8e:30:
7a:8c:c0:54:04:4e:9b:fc:a6:ea:24:04:19:5d:ce:
c3:41:d9:c5:fe:bf:21:9d:7d:c0:70:9d:4b:08:a4:
3b:a2:a1:cc:f7:d0:45:ae:8d:f2:ab:ac:d6:d3:15:
62:3f:b0:bc:eb:61:02:bf:9a:b1:49:3a:a8:4e:0c:
ff:a6:c9:d7:54:5f:ac:ce:b4:36:c9:f5:8d:51:df:
7a:90:9a:33:cb:7b:93:56:7c:8a:9f:53:f6:78:2f:
32:88:c6:5f:30:ae:15:ac:27:89:89:24:ae:40:45:
7f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:AC:5D:62:38:86:22:69:84:22:EB:57:CE:0F:13:90:CA:34:50:81
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19e514fc-84b3-4e18-a36c-84ba61d84273.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.209.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:af:7b:c6:19:c8:ff:ab:f9:ed:79:26:00:f7:e0:c2:51:04:
92:3d:35:c9:d3:73:d0:94:a3:7a:84:a8:83:9a:34:69:c4:43:
87:64:63:e6:2e:73:82:10:13:90:c1:07:d2:36:66:1d:97:5f:
f0:a5:cc:9a:46:56:ff:80:e2:31:dd:e3:3c:68:ce:d5:1d:88:
b3:31:ba:60:a5:4e:38:87:d0:90:14:21:9f:cd:e2:9b:b3:30:
0f:89:ec:22:20:99:77:3e:8e:bf:0a:16:06:37:c4:ad:0b:29:
f3:53:4d:7b:b3:f3:9d:83:76:66:21:94:3d:6b:8e:a9:7a:71:
7b:57:0a:36:ae:c6:11:52:77:eb:e5:0e:c6:81:73:d8:3f:89:
8f:da:74:a4:e3:7a:de:6d:2a:f9:7d:fb:4b:26:22:ee:b4:2a:
e6:c1:8c:c6:4f:cc:63:c3:30:81:62:45:02:d3:88:28:74:64:
28:35:de:dd:d4:80:d6:65:f5:14:f8:8c:6b:64:56:05:a8:36:
c8:7a:17:5e:9e:19:dd:52:7a:d8:1d:fd:7c:e1:03:80:cf:13:
cc:6f:63:a9:91:92:2a:06:d0:e9:ee:f4:03:2c:24:52:ea:e7:
a8:3c:97:1c:70:45:44:d2:6c:dd:77:2c:ea:5d:68:38:07:0b:
8d:3f:82:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:12:58 2025 by rpki-client