Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
File: 1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa (raw, json)
Hash identifier: +yQ5jDc2o4eAAily9C1pEwCco/ExL5ZUgD4ALdFbMSY=
Subject key identifier: 97:01:5D:EA:CC:8A:3F:EA:6F:32:FA:4A:84:99:09:FF:7E:EB:F8:05
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4EEF1C93DB467D11C54E977DA188BC6EC747DBC7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
Signing time: Fri 28 Mar 2025 17:00:59 +0000
ROA not before: Fri 28 Mar 2025 17:00:59 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1f::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ef:1c:93:db:46:7d:11:c5:4e:97:7d:a1:88:bc:6e:c7:47:db:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 17:00:59 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bd:a8:1e:08:2e:b1:ef:81:7b:89:6d:28:75:
c6:a2:9a:bf:c7:2c:57:30:2d:d2:24:bc:60:24:19:
d3:0c:db:52:36:07:9d:00:ce:bc:b4:4c:4f:02:de:
8c:c9:b8:cf:c4:48:87:98:24:c9:30:9b:57:f1:92:
42:4f:37:e2:f9:e5:e9:f9:98:02:1a:5f:4a:cb:50:
78:69:50:12:55:05:b9:49:b9:b8:0a:e3:2c:a4:cf:
73:4c:42:ab:6c:fe:1c:d5:1a:30:9e:47:8c:15:67:
49:94:9b:99:f9:44:1b:0e:b0:07:90:54:7f:88:0f:
6e:eb:3b:00:f4:49:cb:ea:cc:f6:3d:41:76:01:a7:
d4:56:bf:e5:f3:e8:08:a1:f5:9d:ec:2d:ba:6f:0c:
0a:d6:a5:c4:e7:4b:93:5a:ef:a1:1d:00:23:59:5c:
aa:d8:37:7a:de:e3:b3:5f:dc:e7:63:53:ce:85:02:
4b:97:4e:f8:5e:f4:85:eb:25:3a:f0:f8:0d:1e:98:
94:ba:0d:7c:e1:ef:85:11:56:b9:5c:df:e9:1a:a4:
66:15:dd:cd:8a:0e:28:f9:ba:25:a5:db:8c:07:d9:
05:94:68:ad:e2:39:b9:b0:5b:57:72:18:6a:4e:54:
e0:8b:28:59:09:08:72:8e:a1:67:46:b8:cb:61:89:
a2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:01:5D:EA:CC:8A:3F:EA:6F:32:FA:4A:84:99:09:FF:7E:EB:F8:05
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1f::/37
Signature Algorithm: sha256WithRSAEncryption
15:4d:4d:36:b5:e7:70:78:f8:83:27:72:6b:e9:e3:d6:56:f9:
5b:42:44:f5:fe:b8:52:23:53:92:b7:72:16:6a:cb:cb:18:05:
47:50:e6:ff:58:70:dd:48:a2:08:c9:18:54:84:62:fb:a5:c4:
1a:1e:20:5d:bb:91:58:4d:a3:59:2e:72:19:96:a6:96:69:8f:
f6:d7:63:be:7e:af:63:e8:ec:d2:19:89:e5:a6:2e:57:b2:f3:
31:9a:d9:fd:ee:87:de:89:7f:73:53:43:e8:f5:fe:35:9d:c3:
e6:16:46:47:ab:f0:69:3b:f1:d2:de:2f:8a:08:cf:18:e0:94:
bd:80:1d:be:45:14:ac:54:65:59:54:4a:17:fa:54:b6:3c:bd:
e4:09:7d:7d:a9:4b:5a:1c:55:43:a3:6d:b7:bf:6a:3c:a1:7a:
bd:ba:30:77:9a:15:fd:14:15:76:af:14:88:4d:54:75:67:f5:
0f:ac:ba:41:67:6d:d5:44:03:b8:b1:47:4c:69:86:54:47:16:
d5:42:9c:bd:8a:00:cb:31:c8:f6:1e:09:76:19:93:7e:d9:c5:
8d:09:d2:bf:9b:c8:5c:32:e2:b8:e1:cd:59:25:3e:9c:b2:25:
af:bf:e9:74:07:1a:75:64:d5:f0:82:a8:4a:f7:52:40:ea:6d:
89:24:fa:44
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:16:39 2025 by rpki-client