Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6180caee-ed00-4870-a7a1-8606e433e128.roa
File: 6180caee-ed00-4870-a7a1-8606e433e128.roa (raw, json)
Hash identifier: ZrgZbnc9ZiK41PlC/2XjeDEbsIhlvm6pQxo2z6mvGHo=
Subject key identifier: 79:A1:53:1A:96:9B:F2:D1:16:42:6A:13:A4:0C:E9:EF:04:BD:C4:BE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6FF4C7744E25E3301520E1833093DBBE08CAB82F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6180caee-ed00-4870-a7a1-8606e433e128.roa
Signing time: Sat 22 Mar 2025 00:10:10 +0000
ROA not before: Sat 22 Mar 2025 00:10:10 +0000
ROA not after: Sat 26 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 78.12.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:f4:c7:74:4e:25:e3:30:15:20:e1:83:30:93:db:be:08:ca:b8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 22 00:10:10 2025 GMT
Not After : Apr 26 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b2:e8:5c:43:49:af:ab:41:b7:a8:11:4b:45:
6a:e8:c8:1e:53:d3:65:ba:e7:cf:69:ce:38:b6:ed:
c3:6a:9d:46:4f:ee:d6:98:8d:d8:1c:49:74:d7:38:
a3:dd:b2:72:e1:63:b6:36:f4:f7:86:9c:a1:6b:cb:
b9:c9:84:6e:5f:d7:3d:fb:08:4a:05:90:50:8c:5a:
22:58:c2:d9:e1:fc:6c:5d:4a:48:fa:3d:d3:56:ef:
1f:45:d2:52:3f:b9:50:98:47:e8:e2:35:80:28:07:
d3:8a:c1:71:d7:66:e9:c3:7e:87:5d:2a:28:a3:cc:
69:f9:b3:5a:b1:9d:4a:ec:5f:71:f0:c7:89:b3:39:
4e:a4:7d:46:1b:8e:61:04:b8:2b:7f:ca:9d:e5:7e:
4f:f7:18:09:ce:6b:41:b0:57:b5:03:74:ff:47:fc:
21:4f:36:b9:89:fd:72:e8:96:e5:90:89:d5:03:f3:
50:02:4c:96:03:15:38:70:88:f6:55:94:f3:2f:97:
a5:9b:23:91:c2:3b:16:43:20:27:b7:c4:0d:bb:ed:
ef:38:00:87:3d:33:cc:e4:6d:1f:5f:84:34:2c:4d:
80:d8:e8:c2:4d:0a:eb:e4:59:b9:bf:23:50:db:d4:
4a:1c:47:fa:8b:be:18:e2:cc:cd:00:45:2f:b0:14:
5e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A1:53:1A:96:9B:F2:D1:16:42:6A:13:A4:0C:E9:EF:04:BD:C4:BE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6180caee-ed00-4870-a7a1-8606e433e128.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.12.62.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:2f:73:db:f6:09:f9:df:c2:af:4b:43:65:47:39:6d:49:bc:
25:4f:4f:b0:57:72:24:ca:35:d5:c1:bc:1a:d1:e4:e4:bb:01:
9e:94:33:3f:f8:4a:f4:ef:62:6c:95:09:f7:3b:96:ac:a2:20:
65:09:b6:47:0c:54:5f:c1:28:9c:cb:28:9b:6a:9f:d2:e2:08:
d9:54:c0:58:2d:ec:cb:0a:f5:1b:d5:f0:65:22:62:32:ea:01:
2f:74:ba:8f:94:58:20:06:03:28:e1:6f:3a:19:31:07:a8:d7:
8a:f6:4d:ba:cc:0b:6d:da:95:28:9a:b2:64:e5:e8:e4:f1:c8:
56:6f:88:9b:81:f5:9d:08:35:eb:6d:31:e6:02:89:05:87:4f:
f9:a4:5f:b4:f2:2e:8b:9e:0e:46:29:e9:48:1b:5b:0a:1e:64:
79:55:c0:8c:08:74:08:a6:df:00:f3:30:68:6b:74:10:2d:60:
f0:6c:60:c8:06:c9:5e:84:f0:ec:83:ff:b3:b8:af:f0:9d:13:
ca:54:be:67:4c:2c:16:b8:42:45:65:bd:66:f6:59:e9:d7:ea:
d9:29:fc:b8:a2:df:21:d3:64:03:1c:dd:e0:1b:46:54:fc:60:
46:21:9c:6d:a3:f3:3a:79:43:8c:39:6c:73:1e:4c:57:92:d2:
4b:c6:1b:cc
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUb/THdE4l4zAVIOGDMJPbvgjKuC8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIyMDAxMDEwWhcNMjUwNDI2MjM1OTU5
WjB6MUkwRwYDVQQFE0BmMGVmY2IxNzdjMWM1ZGQ5YzgxM2M2NjdhZWViOGMyNTFh
MzNiNTNjNWJjODUwMzEwNDIxMjc1ODRjNTMyMTA0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDesuhcQ0mvq0G3qBFLRWroyB5T02W6589pzji27cNqnUZP
7taYjdgcSXTXOKPdsnLhY7Y29PeGnKFry7nJhG5f1z37CEoFkFCMWiJYwtnh/Gxd
Skj6PdNW7x9F0lI/uVCYR+jiNYAoB9OKwXHXZunDfoddKiijzGn5s1qxnUrsX3Hw
x4mzOU6kfUYbjmEEuCt/yp3lfk/3GAnOa0GwV7UDdP9H/CFPNrmJ/XLoluWQidUD
81ACTJYDFThwiPZVlPMvl6WbI5HCOxZDICe3xA277e84AIc9M8zkbR9fhDQsTYDY
6MJNCuvkWbm/I1Db1EocR/qLvhjizM0ARS+wFF4vAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUeaFTGpab8tEWQmoTpAzp7wS9xL4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzYxODBjYWVlLWVkMDAtNDg3MC1hN2ExLTg2MDZlNDMzZTEyOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABODD4wDQYJKoZIhvcNAQELBQADggEBAG0vc9v2Cfnfwq9LQ2VHOW1JvCVP
T7BXciTKNdXBvBrR5OS7AZ6UMz/4SvTvYmyVCfc7lqyiIGUJtkcMVF/BKJzLKJtq
n9LiCNlUwFgt7MsK9RvV8GUiYjLqAS90uo+UWCAGAyjhbzoZMQeo14r2TbrMC23a
lSiasmTl6OTxyFZviJuB9Z0INettMeYCiQWHT/mkX7TyLoueDkYp6UgbWwoeZHlV
wIwIdAim3wDzMGhrdBAtYPBsYMgGyV6E8OyD/7O4r/CdE8pUvmdMLBa4QkVlvWb2
WenX6tkp/Lii3yHTZAMc3eAbRlT8YEYhnG2j8zp5Q4w5bHMeTFeS0kvGG8w=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:55 2025 by rpki-client