Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa
File: 2efb9bd0-475f-417d-8e72-8a50428e9da8.roa (raw, json)
Hash identifier: k4Wa3onUKbz9VjuuYquTIISMQeFYI42PREwgfNs8CU8=
Subject key identifier: 21:A3:44:93:BC:11:6F:72:63:64:B8:48:AA:56:4C:4B:6F:64:7F:46
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1CB16E59EB03F223D69F47E3150B86B49E8DCDE1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa
Signing time: Fri 28 Mar 2025 17:23:16 +0000
ROA not before: Fri 28 Mar 2025 17:23:16 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 1.179.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:b1:6e:59:eb:03:f2:23:d6:9f:47:e3:15:0b:86:b4:9e:8d:cd:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 17:23:16 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9e:79:6a:a3:8d:0e:32:0f:61:38:34:d7:65:
67:56:d0:02:8c:a8:4b:eb:0e:35:0e:8b:dc:47:d4:
3e:99:47:01:c7:81:cc:c3:79:92:09:f9:41:86:09:
25:e2:6f:6c:34:77:65:85:3d:4b:dd:8b:ae:9e:3f:
e8:50:5d:97:10:be:cb:9f:e3:74:da:44:4e:51:eb:
5a:b3:99:85:fe:50:cc:38:c0:13:2a:bc:c6:4c:af:
8e:11:0b:c7:40:ed:8e:dd:fb:b7:c7:0a:a7:d2:77:
84:62:71:64:f8:9f:10:f3:83:4a:ad:5e:d0:73:65:
7a:b0:f7:dd:7e:fa:52:32:9c:7c:50:ac:ae:4c:de:
72:7e:d4:ff:91:eb:b8:e5:73:ac:93:9e:08:f0:30:
07:50:8f:73:d8:5d:e8:09:70:8f:f8:3a:ab:31:f8:
fc:61:6d:7f:76:f2:64:3d:b0:2a:4d:ba:7b:12:51:
85:4d:a0:aa:a6:4b:4b:c0:32:e6:58:87:ca:a5:5c:
1b:03:51:2e:1e:7a:d5:64:03:2f:4b:f7:f7:69:90:
03:d9:0c:68:9c:44:51:9f:51:93:4b:10:44:b9:31:
67:23:c9:ad:1d:1c:32:03:b8:ac:41:e0:f2:f1:de:
ad:42:9c:dd:8f:19:49:4e:87:66:ff:65:03:a9:04:
10:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A3:44:93:BC:11:6F:72:63:64:B8:48:AA:56:4C:4B:6F:64:7F:46
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
1.179.52.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:50:23:e0:64:df:5f:e1:80:b7:59:e8:8b:1d:87:fa:5a:b1:
90:5c:e4:4e:6d:81:cf:d3:6e:2d:ee:52:4d:cd:f5:a3:8d:60:
e9:c4:34:11:49:72:18:b0:5e:d7:78:6a:a3:cd:79:28:51:13:
1e:94:3c:00:40:46:44:80:aa:c4:c1:76:51:36:99:e1:7f:54:
ba:f0:4f:c7:17:b4:4b:7c:9a:eb:cc:17:80:20:d8:da:8d:bc:
7e:95:a9:14:d0:b2:b4:71:31:02:31:60:b3:3b:8c:2f:dc:b1:
4c:dc:63:7a:45:72:ed:db:75:ea:27:28:1a:87:a5:0c:f1:ac:
d0:f0:cb:d7:1f:e0:46:27:d0:0a:04:4d:8c:e4:34:31:0e:d5:
87:c5:ff:2d:2d:4e:39:28:3c:f3:1b:f6:ae:69:82:c2:16:62:
f7:c2:ee:54:7b:fb:1d:5e:83:94:56:7b:6b:b2:e8:84:93:ab:
13:05:1b:93:ba:b1:c6:f6:45:e6:62:1e:c6:d6:9d:c1:f1:56:
f4:53:b4:ca:13:64:e1:07:16:6a:1e:b7:14:7f:34:83:4b:de:
df:50:f3:8f:bc:80:a2:35:71:e2:f0:90:b9:73:62:74:7f:12:
ca:49:4c:ba:f9:7f:13:c5:69:e3:6e:7e:e2:ee:69:e6:21:e2:
cc:fd:ce:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:57 2025 by rpki-client