Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3985cec7-2c3b-45d9-890f-a46621f32316.roa
File: 3985cec7-2c3b-45d9-890f-a46621f32316.roa (raw, json)
Hash identifier: C0VUm6AKDmcAqU7qguEowEwQQAezzXZ0qPaJOU2KMfQ=
Subject key identifier: 68:C7:62:C2:64:8E:73:5C:34:10:3B:E6:51:93:AE:15:5A:AE:5A:4B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 799CE76E533C59ACD444B947C880B5B9E7EFEE15
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3985cec7-2c3b-45d9-890f-a46621f32316.roa
Signing time: Sat 29 Mar 2025 00:41:49 +0000
ROA not before: Sat 29 Mar 2025 00:41:49 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.24.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:9c:e7:6e:53:3c:59:ac:d4:44:b9:47:c8:80:b5:b9:e7:ef:ee:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:41:49 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ea:e8:0c:53:5d:d3:e3:5c:7a:50:e4:8b:f9:
7a:e7:48:8c:ea:8c:9f:38:1d:2c:a9:1a:04:e1:57:
b9:ab:af:76:b0:f9:cf:8b:07:fa:1d:0d:ff:2d:6f:
98:ac:5c:65:94:bc:c8:31:e4:5e:5b:51:2b:c7:d5:
61:00:12:01:8f:87:21:10:5a:2d:9f:db:5f:22:f2:
55:f7:f1:35:46:7c:b3:dd:ff:bd:c5:81:14:56:e4:
29:15:93:2d:73:97:42:f5:ab:5b:53:d2:37:53:ea:
ef:ae:bb:60:13:a3:c7:5d:fd:4d:8d:21:3e:ac:a4:
03:0b:ee:1b:3c:92:4c:d9:c4:a7:93:5f:94:51:1a:
db:79:65:48:70:d1:78:c3:b1:a8:b5:88:50:e6:91:
90:d4:10:fa:88:21:f4:ff:06:b8:a8:04:73:ca:3d:
96:fe:6f:7b:b4:ee:8b:8a:a5:61:e3:b1:d5:08:cd:
47:4b:7a:f1:5e:e1:48:83:31:c7:6e:45:c1:1b:35:
61:b0:2a:1b:5a:9d:3a:99:73:f0:28:99:e0:39:bd:
78:0f:2d:d2:db:34:ea:ff:1a:d8:e7:e0:14:18:93:
de:61:01:71:e5:8d:37:81:1b:2d:e2:3c:5a:d1:22:
52:4e:b5:95:01:fc:3b:28:2b:57:ae:ac:5d:68:ab:
9e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C7:62:C2:64:8E:73:5C:34:10:3B:E6:51:93:AE:15:5A:AE:5A:4B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3985cec7-2c3b-45d9-890f-a46621f32316.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.24.0.0/16
Signature Algorithm: sha256WithRSAEncryption
55:87:ff:1a:9c:a3:06:6e:b1:6b:fc:b8:93:ea:82:16:3f:ad:
eb:9d:de:76:fd:2c:d4:16:7b:68:71:9f:fc:67:88:87:1a:e8:
34:7d:05:5a:c2:03:9a:f9:0b:f5:df:7e:ff:08:48:03:ae:fb:
25:7e:cf:07:c2:cb:10:da:c9:71:ba:fb:4d:e9:1b:ca:db:a6:
a8:bf:44:54:6f:e9:98:50:69:9a:4a:bb:b2:7f:e4:e0:78:4d:
ad:15:f1:1a:5f:bf:54:83:4a:49:ad:85:a7:42:6b:fb:70:f0:
0f:6e:29:e9:d0:8d:ab:aa:b6:35:37:78:76:67:b2:b9:fc:f9:
a9:f9:d3:bf:d0:f2:42:92:41:5b:0a:a2:53:5b:ad:49:a5:80:
88:fa:b8:dd:3b:10:1a:29:f5:2e:0a:23:0d:dd:70:eb:a9:0d:
ca:f3:24:b9:c5:35:99:b2:e1:50:08:86:b8:06:4e:5a:03:87:
a7:be:98:26:ef:12:c8:ec:83:53:7a:f9:18:e9:50:f3:aa:a1:
b3:ce:01:6d:16:1c:af:79:0a:3a:fb:50:60:3e:d8:c2:70:2e:
77:09:9a:b4:d9:96:fb:05:ab:8e:0c:9b:8d:3e:38:0a:e4:2d:
5d:f0:aa:0d:6b:e4:f8:74:74:ac:04:36:5c:11:a6:bc:22:f1:
2b:ae:61:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:42 2025 by rpki-client