Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa
File: 33a8e79a-f50b-45fa-87c0-dad918540ac7.roa (raw, json)
Hash identifier: 34nyrVzkDteMVar00oE5qSMXAYoYs3jjODmOPoYCpsQ=
Subject key identifier: 4A:06:BF:3B:E2:E7:3D:3C:44:1E:8A:CC:60:E2:BB:2D:AC:E2:B6:E0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1278933E2257241168EA5B5652826D53688D1823
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa
Signing time: Fri 28 Mar 2025 16:51:50 +0000
ROA not before: Fri 28 Mar 2025 16:51:50 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f15::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:78:93:3e:22:57:24:11:68:ea:5b:56:52:82:6d:53:68:8d:18:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 16:51:50 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:78:fd:ce:50:ae:80:4b:ec:80:c0:08:80:13:
92:5d:de:f9:26:26:fc:ae:b4:d6:ef:12:74:4f:3c:
f4:8a:4b:e8:7f:2d:c4:3e:c6:de:20:9d:2c:45:1d:
9b:50:51:90:80:a5:d9:63:b8:35:9e:14:05:e0:5c:
35:ea:ca:da:80:a4:b3:ef:b9:17:31:9b:a2:b6:7f:
ac:2b:eb:60:59:3a:a2:64:0c:9a:bd:36:67:f5:f5:
0d:c9:ce:f0:4a:ff:fd:71:2d:c0:a1:69:14:d8:21:
e7:7c:d5:81:a2:34:69:9e:c1:4b:96:8b:5f:88:43:
af:0a:ab:8e:bc:3c:58:30:6d:04:d5:a0:a3:39:59:
8b:de:d2:1f:fe:eb:65:1d:87:63:0d:1d:98:8b:06:
78:cf:e1:fd:8c:f0:5a:a6:6b:3f:0b:80:2d:f9:55:
82:f5:f4:2d:f8:18:1e:a0:0a:80:6e:a8:ac:54:9a:
ca:97:82:30:18:46:e0:65:d5:04:92:ab:08:00:1d:
58:b1:0c:67:1e:b2:8f:68:76:81:7e:bc:09:b8:4c:
72:d5:75:ae:da:cc:46:5e:aa:73:f6:91:df:b8:2e:
7b:f9:41:be:25:9a:ad:47:67:16:b7:76:a6:61:46:
56:d7:10:24:62:e5:6c:8f:a9:03:01:76:81:5f:ee:
9c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:06:BF:3B:E2:E7:3D:3C:44:1E:8A:CC:60:E2:BB:2D:AC:E2:B6:E0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f15::/36
Signature Algorithm: sha256WithRSAEncryption
02:0e:98:db:cc:bd:20:59:7d:63:23:55:37:ad:93:88:de:0a:
80:ce:69:ab:34:33:18:e4:da:59:33:d2:7e:29:48:54:9f:e9:
68:dd:12:b7:53:b1:4a:97:33:5e:27:59:66:85:ea:79:56:ab:
79:5d:45:ae:66:93:e1:6c:a1:83:91:ba:07:42:22:8b:ad:63:
82:47:aa:e0:ab:90:6b:7f:46:ff:da:86:d5:3b:ba:8a:62:71:
79:4b:77:b3:f7:98:07:ee:b0:52:2f:2e:d3:f4:2f:91:06:a0:
9d:79:27:13:70:1f:ba:1a:0b:04:fd:3b:f3:8d:5a:c5:ca:9e:
18:f6:d9:cd:ac:6c:d8:07:b0:ef:a0:2a:dc:41:ee:3a:67:f3:
b5:9a:69:85:5d:53:6f:09:67:6b:fa:0b:2b:d7:10:60:38:a9:
89:b7:67:24:87:a0:7f:5c:f4:1d:32:b0:88:93:82:a4:cc:6f:
28:ff:99:f3:b8:ea:27:24:d7:ff:fb:b2:7a:c7:5c:4b:1e:fb:
0f:0a:93:5c:72:ec:96:38:2f:ba:00:d1:ef:89:05:68:ec:c7:
85:92:38:07:b6:18:a2:14:aa:9e:29:29:d0:0e:f0:0a:e3:53:
81:ef:b6:7e:2f:68:59:9e:9c:5d:59:ff:7b:fd:9a:87:d0:21:
01:aa:41:24
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:39 2025 by rpki-client