Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fdd3df0-3158-40bf-ab83-af4d8ad5cb0d.roa
File: 4fdd3df0-3158-40bf-ab83-af4d8ad5cb0d.roa (raw, json)
Hash identifier: ugJFS2UgfDvS39oeslGO8V79XUDKUXTp5Bef/imP4+A=
Subject key identifier: 77:15:64:1A:21:CD:3C:8A:1F:B5:4D:2F:B5:A3:2C:21:25:FD:2E:9F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 151AA18CC39EEAB7D686A8E771C93C405EA4015F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fdd3df0-3158-40bf-ab83-af4d8ad5cb0d.roa
Signing time: Fri 28 Mar 2025 15:31:52 +0000
ROA not before: Fri 28 Mar 2025 15:31:52 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff4:34c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:1a:a1:8c:c3:9e:ea:b7:d6:86:a8:e7:71:c9:3c:40:5e:a4:01:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 15:31:52 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:3c:bc:00:e5:2b:00:69:c4:c9:a3:02:0f:
7b:02:12:56:fa:ec:6a:74:04:9b:cc:fd:9d:50:8e:
02:fd:ea:e1:42:bd:a9:b4:05:15:25:82:70:fc:b7:
5b:ae:68:45:04:9e:88:4e:89:fa:8c:4c:d9:0f:31:
de:7e:6f:94:83:e7:55:57:59:1e:72:19:54:6d:20:
a0:41:80:7f:af:ee:7a:54:e8:df:2f:95:9c:a3:be:
76:d1:3d:5c:c6:54:9d:1e:7c:a5:c5:6d:d6:bf:77:
dd:77:9c:28:30:2d:a5:0d:04:9d:34:2c:73:12:bf:
c7:ca:f0:d5:b7:3f:16:50:04:af:a8:03:9d:d6:6d:
7b:03:e8:e2:c3:5f:cd:f6:a0:8d:2f:dd:f6:b4:3b:
49:24:0d:17:01:3b:2e:10:a8:d6:de:02:40:e1:fa:
c2:6d:ab:01:9e:6b:ef:5e:df:d4:df:6e:8e:cb:d3:
1b:af:82:2d:69:ec:63:5b:4f:17:57:7b:a3:db:f5:
b5:8c:3b:a3:e7:94:44:fc:94:fd:67:75:9d:4b:d2:
e9:44:66:b3:6f:2e:3d:93:24:f7:ca:0a:60:7e:25:
8d:56:36:64:63:22:88:c1:0a:cb:b1:97:a1:c7:e1:
7b:47:e9:41:17:fe:d7:d2:10:22:92:af:65:3c:71:
d1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:15:64:1A:21:CD:3C:8A:1F:B5:4D:2F:B5:A3:2C:21:25:FD:2E:9F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4fdd3df0-3158-40bf-ab83-af4d8ad5cb0d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff4:34c0::/48
Signature Algorithm: sha256WithRSAEncryption
9a:6a:bd:d6:18:6a:f2:6c:6a:d6:4b:e9:00:80:53:8d:0f:54:
20:e8:5f:1a:78:ac:fa:0a:5c:fe:46:79:73:32:c0:22:04:32:
9b:24:14:29:fc:5e:84:08:93:b8:48:42:00:c1:66:d6:bc:ff:
46:f8:2e:11:40:db:3e:a9:c5:92:d8:88:e3:73:40:31:3b:8c:
64:bc:b3:f0:69:e7:b1:fe:dd:63:5d:de:12:ad:e6:b2:8d:15:
e1:67:c9:65:73:4f:cc:5c:4e:90:c4:15:ea:c3:4e:d2:41:e0:
48:21:8a:12:6b:2b:76:c9:b6:80:b7:62:0c:ed:65:da:56:84:
8f:aa:3e:24:35:2c:ce:cc:fc:cf:09:81:a5:6a:e5:d1:18:70:
23:cd:54:a0:10:3d:88:14:20:d4:95:4b:85:8c:b8:82:f9:eb:
c5:6e:47:e9:59:7d:2a:7b:a3:0e:be:22:e0:e3:ff:26:fa:0f:
96:64:17:86:4b:81:8d:b2:84:52:17:10:8e:66:80:25:28:93:
25:55:8e:f1:1f:1d:fb:03:87:14:53:84:4a:12:5c:48:68:fc:
ec:6d:d9:2c:8c:93:c8:55:a9:d7:12:79:8a:56:b2:65:4f:a7:
cf:3c:7b:82:18:06:bc:cd:75:39:25:08:4e:85:c2:fc:4d:5a:
23:a0:e1:36
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUFRqhjMOe6rfWhqjncck8QF6kAV8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUzMTUyWhcNMjUwNTAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A2YTE0OGQ4ODBlMGJhMDA5ODAwMmU4NWRlNjUzNGExN2E3
ZWMwOTUzMTU4MWNjZWJjYmI0ZmJkMTVlMTQ2NTA1MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCwFjy8AOUrAGnEyaMCD3sCElb67Gp0BJvM/Z1QjgL96uFC
vam0BRUlgnD8t1uuaEUEnohOifqMTNkPMd5+b5SD51VXWR5yGVRtIKBBgH+v7npU
6N8vlZyjvnbRPVzGVJ0efKXFbda/d913nCgwLaUNBJ00LHMSv8fK8NW3PxZQBK+o
A53WbXsD6OLDX832oI0v3fa0O0kkDRcBOy4QqNbeAkDh+sJtqwGea+9e39Tfbo7L
0xuvgi1p7GNbTxdXe6Pb9bWMO6PnlET8lP1ndZ1L0ulEZrNvLj2TJPfKCmB+JY1W
NmRjIojBCsuxl6HH4XtH6UEX/tfSECKSr2U8cdHxAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUdxVkGiHNPIoftU0vtaMsISX9Lp8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzRmZGQzZGYwLTMxNTgtNDBiZi1hYjgzLWFmNGQ4YWQ1Y2IwZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAB/0NMAwDQYJKoZIhvcNAQELBQADggEBAJpqvdYYavJsatZL6QCAU40P
VCDoXxp4rPoKXP5GeXMywCIEMpskFCn8XoQIk7hIQgDBZta8/0b4LhFA2z6pxZLY
iONzQDE7jGS8s/Bp57H+3WNd3hKt5rKNFeFnyWVzT8xcTpDEFerDTtJB4EghihJr
K3bJtoC3YgztZdpWhI+qPiQ1LM7M/M8JgaVq5dEYcCPNVKAQPYgUINSVS4WMuIL5
68VuR+lZfSp7ow6+IuDj/yb6D5ZkF4ZLgY2yhFIXEI5mgCUokyVVjvEfHfsDhxRT
hEoSXEho/Oxt2SyMk8hVqdcSeYpWsmVPp888e4IYBrzNdTklCE6FwvxNWiOg4TY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:22:44 2025 by rpki-client