Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
File: 25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa (raw, json)
Hash identifier: FMzwRqXbtCNz1jfYpInNXR7j7riDGdTVolly8rJURLQ=
Subject key identifier: E6:FB:89:E0:93:41:40:6B:AE:D1:2B:DE:60:30:31:8F:1D:07:C4:68
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6AA783DEE7149B561F4A647783AC7F32FFC2C6DF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
Signing time: Sat 22 Mar 2025 00:11:04 +0000
ROA not before: Sat 22 Mar 2025 00:11:04 +0000
ROA not after: Sat 26 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 78.12.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a7:83:de:e7:14:9b:56:1f:4a:64:77:83:ac:7f:32:ff:c2:c6:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 22 00:11:04 2025 GMT
Not After : Apr 26 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:46:27:b7:b8:f7:c4:0d:64:ee:68:8c:2c:
69:a3:4c:0c:24:4f:05:c0:cd:02:69:eb:42:b3:97:
89:b0:5b:c9:a5:98:a2:6c:9c:82:26:9c:49:93:b4:
04:be:18:f7:67:38:ae:b9:57:db:df:10:cf:ba:5e:
36:1d:7c:a0:a2:d2:c6:bb:c0:d1:ea:7d:72:80:52:
1f:8a:55:63:b1:ab:ae:c3:97:98:6e:b4:8d:d5:2d:
fa:6b:72:dc:c9:03:19:f3:ba:77:e0:e0:82:2f:a9:
4a:1a:09:22:3a:b2:b6:7d:3b:30:85:9b:50:1b:ee:
56:83:d1:64:16:61:48:1b:2f:fe:44:81:77:db:31:
76:8b:2d:fa:ad:69:0d:e1:b0:96:03:14:52:8d:6d:
d3:61:04:a4:44:2c:c6:e2:ab:1f:24:81:a7:45:a5:
80:44:f0:e5:c7:21:ce:2f:c4:59:2a:c6:8d:58:4f:
91:b2:1e:9f:f4:05:29:df:dc:94:4f:ed:dc:1a:46:
cc:83:b1:3c:ca:12:7b:dc:58:d9:3c:c1:5a:86:b8:
a8:6e:38:f7:fb:0e:77:16:4b:dd:49:20:a7:e2:1a:
1a:55:6e:ff:93:38:4c:9b:64:80:43:86:88:eb:46:
fb:1d:f9:ef:37:51:0b:20:d3:40:ab:45:d4:6b:7a:
1d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FB:89:E0:93:41:40:6B:AE:D1:2B:DE:60:30:31:8F:1D:07:C4:68
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.12.0.0/15
Signature Algorithm: sha256WithRSAEncryption
67:37:71:2a:f8:ce:f2:bb:0d:9d:35:2b:03:30:45:b1:e7:99:
55:ce:65:1a:d8:e7:b0:c2:6e:39:f7:47:3e:ee:96:66:24:39:
ee:4f:d0:dc:c6:e8:ce:91:eb:d7:cc:30:52:04:d5:eb:b3:cc:
cc:ca:77:72:f3:7f:22:e8:6b:1d:42:72:8d:08:04:1c:33:17:
e6:80:e0:f8:49:35:6e:01:86:31:7c:53:6b:a1:f4:df:6a:4c:
b4:84:cd:50:3c:fd:1a:6a:db:df:b9:c9:d9:07:8a:d3:c2:50:
e8:e1:e0:3c:9d:ec:fe:c4:05:52:48:14:7d:ee:57:78:16:a6:
da:72:b8:55:dd:0e:33:26:47:70:2e:f5:e6:43:14:ab:d3:94:
df:6e:11:7d:70:bd:bb:eb:b0:d6:d9:51:3d:ac:84:d7:ee:80:
7e:46:d7:7f:da:a7:ea:74:c4:e5:d5:c9:5d:cb:f9:05:b9:94:
be:f5:a6:a8:8c:7e:dc:0b:4e:08:3e:e0:f1:ea:34:62:3e:3f:
c8:8a:aa:97:91:57:8a:ce:28:d1:9e:68:96:36:50:d5:54:78:
13:67:d3:6e:1e:9c:e2:52:20:c9:43:33:e7:17:93:1e:54:58:
a0:16:e3:90:67:5b:ca:8d:ec:bc:2d:75:0c:fa:ca:8b:8e:90:
e0:fc:7e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:17:38 2025 by rpki-client