Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fb85bd7-0eb2-4f37-850a-4cf15fcc97eb.roa
File: 3fb85bd7-0eb2-4f37-850a-4cf15fcc97eb.roa (raw, json)
Hash identifier: St2PoH1F34WFynXIEObkebOfKg+YYSXCIbeINyguqbI=
Subject key identifier: BA:02:08:E3:C6:57:E9:CE:65:B1:B9:C6:CC:A2:1F:0F:5A:68:9C:CA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4DEB6C779A5012584A7B33598EE118792EAE2166
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fb85bd7-0eb2-4f37-850a-4cf15fcc97eb.roa
Signing time: Fri 28 Mar 2025 15:51:36 +0000
ROA not before: Fri 28 Mar 2025 15:51:36 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ffb:1020::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:eb:6c:77:9a:50:12:58:4a:7b:33:59:8e:e1:18:79:2e:ae:21:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 15:51:36 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:91:71:f8:a2:90:cb:a3:c9:0d:58:c5:97:
28:44:4a:10:aa:6a:b6:2c:44:15:05:af:44:18:d5:
38:f7:c5:52:fc:2a:5c:73:10:ab:0c:ff:69:8d:50:
d7:37:a2:73:5d:37:9c:c9:88:01:b7:75:28:21:2a:
34:52:a7:73:22:88:03:9e:8d:6c:21:60:be:4f:ef:
09:99:c1:31:0b:b1:1f:d2:46:aa:74:9a:fd:b8:a9:
4a:cc:90:b3:2f:7f:9b:63:c4:f6:97:7a:18:80:c1:
5e:70:65:c6:d3:ab:3d:30:9f:42:80:93:54:e3:ff:
04:d4:12:99:22:62:93:de:28:04:18:21:c0:6a:01:
c7:e3:5a:30:50:17:1a:1a:79:78:ae:ce:08:7b:4a:
c7:b5:ad:91:55:46:ed:34:be:77:7f:c9:eb:19:95:
2d:88:92:ff:1f:63:39:1e:92:69:aa:c5:2a:88:e4:
30:13:a1:04:6c:f7:5e:9b:23:be:c4:67:3d:8f:e1:
37:cd:04:5f:00:f8:e6:54:fd:e9:20:e9:00:ec:2d:
1d:a2:6d:16:a1:88:49:d2:97:23:a6:be:72:60:8f:
0b:dd:2a:4e:c2:c5:f2:28:c9:97:72:4a:5f:3c:63:
8e:38:31:87:a7:08:64:54:bd:bc:cc:1a:8e:72:68:
8a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:02:08:E3:C6:57:E9:CE:65:B1:B9:C6:CC:A2:1F:0F:5A:68:9C:CA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fb85bd7-0eb2-4f37-850a-4cf15fcc97eb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ffb:1020::/46
Signature Algorithm: sha256WithRSAEncryption
b6:b1:8a:02:26:c6:ca:4b:1b:d5:fd:7b:df:11:6d:29:f3:de:
19:1d:5e:29:f5:41:08:4b:ef:a3:91:ca:06:bd:46:00:21:03:
a6:f2:71:19:07:0e:94:84:62:17:5d:38:e0:ff:93:c9:1e:86:
d8:f3:70:63:a5:ec:72:71:4c:0c:94:84:41:36:fb:dd:f2:84:
45:eb:a1:be:39:95:9a:be:e3:3c:e6:8f:c5:13:bd:f0:90:40:
2b:4f:23:c7:1a:e7:64:c6:0d:f0:26:a7:9f:cf:4f:f3:13:f0:
49:7d:6d:2e:d3:e8:d5:ef:94:fe:ea:1f:a9:e3:f5:9d:9c:6e:
4c:cb:43:5e:84:4e:4f:d0:4f:a3:4c:63:b1:cb:43:7d:bf:2a:
68:49:04:9f:ea:67:52:2b:39:35:42:9f:a5:3a:e5:56:89:61:
5a:8d:0e:a0:1c:94:1c:d9:db:b3:69:68:7a:76:a1:d4:ea:d8:
a1:ef:af:09:95:4a:f8:f6:6a:4b:b2:94:3e:13:89:de:46:36:
cf:d5:49:a1:ac:69:1e:22:c4:30:f9:8b:00:9e:43:0f:10:17:
44:f8:9d:13:e0:c0:7d:8e:f4:2c:2c:78:16:1e:d0:17:ff:bb:
0d:50:52:f2:12:08:f9:d2:f3:44:69:18:69:d9:65:59:89:cc:
46:e4:78:1b
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUTetsd5pQElhKezNZjuEYeS6uIWYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTU1MTM2WhcNMjUwNTAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A0MmZmZDcwNzJjYWYwMTJjNmY0OTcwNDEwNDRhMjIzZGVj
OWY3ZjY3MWQ1Y2JlNWQzMDY5NTRjZGJlZDY5N2E3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDEQ5Fx+KKQy6PJDVjFlyhEShCqarYsRBUFr0QY1Tj3xVL8
KlxzEKsM/2mNUNc3onNdN5zJiAG3dSghKjRSp3MiiAOejWwhYL5P7wmZwTELsR/S
Rqp0mv24qUrMkLMvf5tjxPaXehiAwV5wZcbTqz0wn0KAk1Tj/wTUEpkiYpPeKAQY
IcBqAcfjWjBQFxoaeXiuzgh7Sse1rZFVRu00vnd/yesZlS2Ikv8fYzkekmmqxSqI
5DAToQRs916bI77EZz2P4TfNBF8A+OZU/ekg6QDsLR2ibRahiEnSlyOmvnJgjwvd
Kk7CxfIoyZdySl88Y444MYenCGRUvbzMGo5yaIqFAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUugII48ZX6c5lsbnGzKIfD1ponMowHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzNmYjg1YmQ3LTBlYjItNGYzNy04NTBhLTRjZjE1ZmNjOTdlYi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwImAB/7ECAwDQYJKoZIhvcNAQELBQADggEBALaxigImxspLG9X9e98RbSnz
3hkdXin1QQhL76ORyga9RgAhA6bycRkHDpSEYhddOOD/k8kehtjzcGOl7HJxTAyU
hEE2+93yhEXrob45lZq+4zzmj8UTvfCQQCtPI8ca52TGDfAmp5/PT/MT8El9bS7T
6NXvlP7qH6nj9Z2cbkzLQ16ETk/QT6NMY7HLQ32/KmhJBJ/qZ1IrOTVCn6U65VaJ
YVqNDqAclBzZ27NpaHp2odTq2KHvrwmVSvj2akuylD4Tid5GNs/VSaGsaR4ixDD5
iwCeQw8QF0T4nRPgwH2O9CwseBYe0Bf/uw1QUvISCPnS80RpGGnZZVmJzEbkeBs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:15:47 2025 by rpki-client