Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa
File: 5831f36f-50de-43df-b1e3-ee6e835954e3.roa (raw, json)
Hash identifier: U7qs8/XKRddvlGGWyt/In5qwWXzT7IcfV89IqJmHUz4=
Subject key identifier: 93:0D:DE:CC:09:A6:D0:55:AD:37:F3:96:A6:ED:5F:0F:36:1C:74:EC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 70D37685761503765D9F89240B4188CB388EE886
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa
Signing time: Fri 21 Mar 2025 00:00:24 +0000
ROA not before: Fri 21 Mar 2025 00:00:24 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.66.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d3:76:85:76:15:03:76:5d:9f:89:24:0b:41:88:cb:38:8e:e8:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 21 00:00:24 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a8:9b:f9:1d:c5:43:80:ed:b6:69:de:d1:0c:
56:b1:2d:2e:d8:ae:b9:a2:83:00:82:2b:cf:55:29:
50:9a:14:8a:0f:54:52:4c:4b:6e:c6:a3:71:7d:b6:
65:51:cf:52:d1:21:06:18:11:0d:38:b1:17:37:dc:
4b:3e:f5:a1:77:e8:8a:dd:ef:68:78:cf:9d:ea:02:
14:a3:72:ac:f9:df:73:50:ba:37:07:bf:fe:c3:1f:
c5:a9:41:af:63:0a:4e:a4:11:17:d6:29:18:62:68:
88:8e:9b:4d:56:27:30:24:63:05:c2:76:fc:bc:65:
33:fe:c7:7e:83:87:c1:f7:ac:09:60:1f:e3:8b:5c:
0c:d1:52:4b:ef:2c:18:d7:69:d3:5b:03:df:11:7b:
18:5d:46:8e:89:4a:02:52:88:aa:61:9c:6a:5a:e6:
86:b8:fd:28:e8:31:49:56:af:a4:81:8b:13:32:ce:
52:cd:4e:f5:5c:e7:4e:fa:ea:96:07:4a:10:d2:ee:
aa:fd:6b:4b:f7:cc:3a:fd:8c:a6:e3:d8:64:67:3e:
da:62:d6:4e:20:9b:5d:df:fa:29:4f:ae:64:97:0c:
f1:d0:be:87:e8:64:a6:85:14:a2:00:f0:06:8b:00:
a2:9e:ab:2d:d7:8a:ee:c2:57:90:8b:1f:50:44:48:
44:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0D:DE:CC:09:A6:D0:55:AD:37:F3:96:A6:ED:5F:0F:36:1C:74:EC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
21:7d:52:95:17:c8:52:ef:73:d6:7f:42:80:4c:fc:46:69:3d:
4f:5f:e1:81:3a:a6:4f:00:08:30:b5:f0:12:0d:cb:7c:b9:a4:
45:4c:ba:93:3f:c3:d6:58:16:a9:f8:19:52:ad:b3:eb:4b:14:
03:e5:d7:9e:9a:d4:45:05:ad:fc:90:36:61:14:3b:a5:b1:55:
5f:fa:ad:f6:25:43:d8:35:90:61:6f:83:1a:7e:1e:fc:2d:bd:
53:b1:1d:26:72:0a:fc:96:94:75:dc:45:b1:a0:cc:04:0c:e6:
51:63:9e:6d:5f:ca:4a:42:bf:41:86:95:52:32:2d:45:ac:08:
59:22:07:bb:7d:83:70:dc:68:65:cf:f1:ce:ce:28:90:2c:d7:
14:d6:92:a4:b2:56:74:6d:03:fa:d3:60:60:6c:14:31:84:6d:
24:fd:12:de:e4:92:1f:e4:59:f4:8a:a2:c0:2c:1b:6a:45:a9:
16:7d:9e:a8:00:06:78:5a:34:55:f5:fb:29:ad:03:b3:95:80:
92:a6:a7:fc:f8:aa:9e:64:71:c3:fb:8d:ad:ab:e3:a2:8d:0c:
fa:15:17:dc:23:f6:9e:e8:19:4f:8e:43:ab:78:dd:b7:ac:cd:
06:04:b9:63:ba:fa:af:5d:fc:bb:65:4c:a1:73:01:b7:64:ff:
4b:e6:46:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:16:47 2025 by rpki-client