Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa
File: 3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa (raw, json)
Hash identifier: X74SkabT/68wEOG1XwwlJ6537yyRxSGFRdWnlirTny8=
Subject key identifier: 39:26:AB:CF:E5:7C:DD:1C:3F:08:6E:1E:67:9D:A9:42:FA:EA:B8:D3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3D23A7B6D3EABAE05D5C9FA616D8911D5F2284A5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa
Signing time: Fri 28 Mar 2025 15:30:27 +0000
ROA not before: Fri 28 Mar 2025 15:30:27 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff7:7440::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:23:a7:b6:d3:ea:ba:e0:5d:5c:9f:a6:16:d8:91:1d:5f:22:84:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 15:30:27 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4e:55:50:76:dd:38:d6:ca:74:5c:59:8e:89:
62:9f:b3:e0:3f:a8:ea:00:5c:30:e1:bf:a6:b3:ef:
13:fc:65:5c:ca:99:65:43:d0:e3:1b:c7:ff:7e:32:
ff:ad:f0:fd:e5:b5:a0:44:a4:ac:80:da:dc:45:b2:
7d:01:17:20:45:d4:0c:3b:03:b2:e0:6e:bb:38:6a:
b5:ea:03:18:30:5c:96:c2:61:21:4a:38:80:05:60:
04:db:2e:e0:68:0e:d4:38:45:63:69:31:d1:c8:02:
49:68:6d:88:00:c7:42:2d:00:0c:8a:1f:18:2b:b1:
ed:cd:57:4e:68:b6:7b:fe:35:f7:e7:f7:89:a1:27:
63:af:43:24:ca:67:7e:80:0a:a2:5e:7c:42:4b:8d:
33:89:5e:17:4c:2b:86:dc:f9:98:c8:ff:0e:38:72:
10:5a:fe:94:ab:90:db:fd:b1:ca:c8:94:df:7e:d8:
6b:cf:a4:30:24:fb:5c:17:4b:9a:3c:e6:ce:ef:02:
7d:d0:5b:06:ad:74:fa:3d:9f:bf:a9:71:44:9f:5d:
8e:bf:8a:bf:a0:c4:be:34:b7:9e:6e:54:03:d5:ce:
a9:2f:a4:22:35:8f:af:19:83:47:e5:9f:71:0f:37:
1e:46:3f:94:36:b6:b1:a5:7d:4f:2c:93:45:a6:c9:
d4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:26:AB:CF:E5:7C:DD:1C:3F:08:6E:1E:67:9D:A9:42:FA:EA:B8:D3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a4e3641-232b-4b02-9878-4cdd10d4f1ed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff7:7440::/46
Signature Algorithm: sha256WithRSAEncryption
bb:4d:31:99:48:fc:0b:d6:16:aa:bb:2d:12:9e:5b:59:5a:8b:
60:1c:5a:b1:29:2d:fb:da:f7:6c:79:72:96:e2:c3:c7:96:56:
06:ec:c4:86:00:c2:7f:b3:f5:4d:a1:70:bf:4a:f7:78:14:43:
19:f7:7e:99:13:18:2a:55:e3:ce:51:18:f0:ff:67:02:a2:09:
48:7a:a9:56:0d:a5:21:4d:79:1b:ba:76:b8:3f:38:ca:dc:67:
d4:bd:1b:c8:bc:05:37:d4:50:89:44:6c:a6:73:c5:31:e7:47:
e4:04:c2:2a:22:39:2b:5c:b0:60:70:69:61:a8:6a:09:c3:ac:
4e:e6:bb:5e:4c:3a:5d:1b:04:58:18:ff:3b:e5:a8:12:ce:44:
90:d6:f8:93:17:0a:45:43:23:05:68:f6:17:10:29:8c:92:92:
9f:59:7b:57:78:9e:a1:b1:fa:50:87:05:e1:a5:39:7b:7c:40:
21:a8:14:ff:f9:68:99:6f:d7:4a:14:39:6c:20:1c:de:02:1e:
2b:7b:45:f8:51:9d:e2:87:6c:90:85:76:09:04:7c:84:40:5e:
3b:ac:ae:3a:29:38:d4:e2:8d:2a:d8:7d:d7:6a:4c:19:e1:9f:
08:27:07:d3:02:97:a7:34:c0:51:02:05:69:a7:1a:8d:04:ae:
e9:44:15:3d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:20:51 2025 by rpki-client