Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa
File: 28d9b1ca-9364-4ed2-997e-dd893686a86b.roa (raw, json)
Hash identifier: J3ekjpqvHH+F9LaKrfNBWzaTTfAnia9IFm4y305l+bI=
Subject key identifier: 06:48:18:98:8A:01:A2:AE:0D:06:89:C6:81:3D:3D:F6:5B:DF:A8:74
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3EF6B5FF83AF522B48F96292AF728E33DC6C6A87
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa
Signing time: Fri 28 Mar 2025 20:07:02 +0000
ROA not before: Fri 28 Mar 2025 20:07:02 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 114.56.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:f6:b5:ff:83:af:52:2b:48:f9:62:92:af:72:8e:33:dc:6c:6a:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 20:07:02 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:35:d4:af:9b:cb:71:d6:2e:4d:e0:f7:d1:81:
d2:63:d7:c0:61:4d:b5:e7:0e:f7:8a:e7:02:5c:1f:
0a:68:8c:34:cf:31:6b:25:6a:c3:08:c3:0d:a1:e3:
86:de:9e:92:51:5f:be:b7:e7:b1:60:20:f6:e5:1a:
9e:57:83:6c:19:f9:c5:08:5d:fa:13:4b:c0:f9:e3:
05:f6:87:9c:ab:48:6e:5d:c1:37:6d:fb:65:ac:91:
0a:d6:71:74:e4:bc:c7:cb:66:e5:04:8a:7b:2e:25:
a7:d7:f0:22:8f:4a:62:34:f6:9d:01:5b:c6:75:24:
92:17:25:a4:25:6a:50:e8:ea:1a:85:ed:61:d6:e0:
4a:19:78:b8:e0:6b:f2:4f:6d:1e:3c:fb:d9:29:a9:
1d:4a:08:f5:da:ba:03:66:94:da:43:ef:75:6a:82:
1d:63:73:bd:4f:2d:3d:08:cd:ba:b0:74:24:c5:61:
3f:95:d9:d3:56:24:de:f9:68:41:fd:c7:90:ae:a5:
37:d7:76:76:2c:37:9a:58:e6:1a:80:f0:2f:13:85:
df:f7:0d:c4:f2:45:3b:75:11:70:83:62:48:5d:0e:
ba:87:60:3d:41:b8:0d:ef:06:9d:53:bc:d4:32:ad:
5f:cd:0b:f3:f9:91:6c:32:ed:b9:81:fb:c5:c7:30:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:48:18:98:8A:01:A2:AE:0D:06:89:C6:81:3D:3D:F6:5B:DF:A8:74
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.56.187.0/24
Signature Algorithm: sha256WithRSAEncryption
62:86:34:ac:81:05:9d:8e:4c:d3:90:12:f9:3f:e5:2c:c1:84:
22:6d:01:17:73:a9:81:8c:c5:bc:98:18:7a:19:6c:ce:84:38:
54:9b:c5:b5:bc:3f:00:74:94:36:cc:e3:9a:33:15:97:43:a3:
81:a5:ff:98:66:e9:ad:22:db:a3:1f:18:48:d8:4c:c9:02:52:
29:e3:bc:df:d5:9f:60:4e:27:02:9d:03:8c:58:e1:a2:bc:88:
a2:ab:a5:3f:9d:a3:ca:d7:d4:37:8e:f6:2f:de:8b:3c:81:82:
f2:01:2a:bd:7d:e1:cb:c6:e2:e6:3f:36:bd:aa:3c:72:26:61:
3a:04:be:bb:7a:07:76:61:97:c7:69:87:ff:93:1e:b3:dd:44:
22:2e:2c:9f:fb:59:4f:c2:56:5a:2c:63:ee:a0:3c:3f:50:3f:
1b:86:c9:f2:71:b2:f5:0f:da:af:14:87:9d:0e:70:28:58:3e:
9f:3e:eb:91:78:49:ec:60:c7:c0:34:75:02:bf:d3:ef:ca:c3:
bf:ab:57:58:2c:09:8d:61:df:77:79:f0:99:81:7d:65:f5:75:
31:fe:21:af:ce:ad:d0:45:c8:f3:02:9c:f9:be:e4:64:b4:6a:
c6:46:54:a9:c0:30:06:3f:32:6a:97:4e:29:1a:7d:f2:3d:a3:
70:bc:02:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:45 2025 by rpki-client