Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
File: 5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa (raw, json)
Hash identifier: gfhlUB3AKR7pSxzAV89NuCa/xpyWG0lGIb+Fd4gfcG4=
Subject key identifier: D3:81:D2:83:81:0C:5D:E2:04:44:48:E8:EC:C5:0F:67:4E:35:B9:6F
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2AD95CBC9B87415F9703AAC1F8FF08CED739B597
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
Signing time: Fri 28 Mar 2025 16:50:10 +0000
ROA not before: Fri 28 Mar 2025 16:50:10 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f11:c00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:d9:5c:bc:9b:87:41:5f:97:03:aa:c1:f8:ff:08:ce:d7:39:b5:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 16:50:10 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:61:fe:ca:02:29:96:81:09:a0:78:df:7b:e3:
e9:f7:1c:20:76:6c:4b:da:b0:78:c3:2f:59:04:08:
bd:73:39:d8:dc:ce:87:03:bc:41:eb:d0:0f:1b:ee:
4b:2f:b9:d8:6b:95:93:d1:45:4f:ac:7f:aa:8c:49:
2a:e4:af:6c:4d:4a:94:0d:74:2c:41:67:62:f9:b3:
5c:db:40:f3:d0:c6:42:ad:ee:59:ad:2f:2b:a3:5a:
37:f8:63:ad:45:27:48:80:8a:29:38:5c:88:27:80:
b8:71:0a:27:de:91:31:de:23:d5:7a:9a:ea:c0:f0:
17:90:6a:38:7b:a7:f9:85:f7:dc:4e:75:4b:3e:70:
4d:2e:73:2f:c6:60:96:d3:3e:d1:72:fb:f8:e7:e2:
3d:cb:38:83:d6:d9:b2:a6:b2:6c:8b:90:75:a6:09:
95:e1:bd:10:67:50:fb:b9:b3:38:f7:ff:46:27:e7:
39:fd:6b:43:ec:b4:ca:79:44:74:d4:6e:d0:d5:b7:
be:81:ef:38:9f:71:0e:f6:d9:3e:4f:fc:9e:0a:10:
94:12:b4:39:0b:2f:9e:c3:22:ed:96:4b:2d:36:7c:
f4:75:6f:12:44:16:66:58:88:48:02:4c:50:c7:2a:
0b:9b:8c:3d:0d:65:49:57:45:4e:c9:55:b3:e8:1a:
8a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:81:D2:83:81:0C:5D:E2:04:44:48:E8:EC:C5:0F:67:4E:35:B9:6F
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f11:c00::/38
Signature Algorithm: sha256WithRSAEncryption
5a:c7:b4:60:d6:d6:e3:76:e4:13:89:9f:1b:9c:08:b8:ca:07:
e1:da:31:da:55:26:47:3e:33:14:78:10:6d:60:24:cc:a5:c7:
07:70:a5:15:92:2e:4b:8a:f6:42:9b:ed:4c:f0:86:4a:f4:94:
e7:55:25:87:17:c5:14:cf:93:7e:5e:f3:bb:23:9a:de:f4:07:
73:72:67:d9:a2:b9:b0:bb:5d:ef:0c:c2:ef:4c:b0:f3:27:ed:
fc:07:16:b1:52:8b:51:3a:ff:87:73:ae:69:01:5b:ca:3d:ea:
5d:71:f6:7c:f4:a1:b4:d3:d9:39:97:fe:83:3b:cb:a5:1d:20:
62:5a:db:d1:86:8a:3d:07:5b:da:3d:47:ee:d9:bd:c0:35:8d:
00:5d:2e:55:cd:68:63:a4:84:bc:c0:85:47:59:5b:55:e7:58:
9f:62:af:05:dd:46:ea:fd:0b:7c:05:0e:53:e6:79:e0:59:03:
6c:0c:51:69:a2:1f:25:b9:13:97:a8:22:8d:e7:b3:a7:b7:81:
22:ec:a5:50:a6:40:44:ff:f4:39:10:6b:90:ff:8c:cb:a9:66:
33:9a:ca:8f:ee:f6:03:13:f9:cc:74:c1:4e:79:6f:7a:4b:b7:
fe:93:3e:af:27:76:91:2a:55:55:34:b2:13:15:80:3b:62:ef:
cc:0d:53:61
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:03:17 2025 by rpki-client