Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa
File: 70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa (raw, json)
Hash identifier: y6c387c8hqOUE8/XtzYu/flUmelPxgaBZ7QDOTKFdgk=
Subject key identifier: 54:01:FF:71:AA:4B:6D:12:1A:73:D5:75:E4:E0:8A:CD:C9:2A:94:D6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4E2D62F0819F17AA58ABA8224315345C3AE1F947
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa
Signing time: Tue 04 Mar 2025 16:11:35 +0000
ROA not before: Tue 04 Mar 2025 16:11:35 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 216.182.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:2d:62:f0:81:9f:17:aa:58:ab:a8:22:43:15:34:5c:3a:e1:f9:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 4 16:11:35 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a4:9a:70:26:c1:da:3c:65:ea:91:4c:4a:c7:
ef:02:a2:cf:80:3b:a1:9f:34:55:e2:b6:5d:ed:1c:
f1:40:d0:95:b1:ce:f0:bb:b1:2a:9d:3b:d1:25:06:
c7:13:0f:f2:b8:d6:60:11:ef:08:fa:5b:a3:cd:9b:
07:c0:54:7c:b6:09:86:06:c4:a8:96:7e:30:54:63:
3b:4a:da:e1:4d:9c:dc:47:fa:b9:7e:7a:4a:4d:55:
b7:86:7b:54:fa:98:51:da:9a:78:fa:a9:aa:fc:61:
c0:68:87:7a:83:2f:b4:4d:32:45:d3:d5:4b:ad:38:
00:8d:6f:07:1f:be:78:ea:d6:7e:3d:94:62:4d:d2:
a1:ca:ce:0f:32:1c:8d:0d:cd:1d:75:78:f4:6e:0a:
35:0a:e9:22:d9:21:33:86:fe:43:9a:ff:97:fc:35:
6a:ba:bc:f4:58:d2:4b:6e:a4:c0:7f:cb:11:b8:ab:
8c:ff:cf:fe:a8:64:73:37:19:87:33:3e:52:ee:53:
39:ca:82:f9:08:bf:77:1c:d4:12:80:7a:32:82:64:
b1:68:15:98:64:f8:6a:ef:88:ec:b9:f2:c1:3a:ff:
84:23:e7:62:e3:7a:8a:fd:33:ea:bb:f0:cf:38:40:
ec:0d:94:a0:b5:36:29:eb:56:1f:ef:84:47:2d:a9:
95:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:01:FF:71:AA:4B:6D:12:1A:73:D5:75:E4:E0:8A:CD:C9:2A:94:D6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.182.232.0/22
Signature Algorithm: sha256WithRSAEncryption
70:65:64:f4:cd:17:c5:2b:ab:d8:4a:a5:ea:53:3a:a0:74:d9:
09:e2:c3:9b:85:d9:35:ed:ca:a9:a6:bf:4d:3e:07:e8:0a:4d:
ac:1b:a5:55:f1:56:e6:26:37:f4:78:af:fd:cd:d4:bf:58:d9:
c0:c3:5f:b9:50:72:e6:c3:78:dc:2c:ae:db:57:e8:46:08:22:
d6:a9:c4:83:e5:dd:3f:cd:2d:c6:d4:1f:76:b6:31:67:18:09:
33:95:b7:a4:1c:1e:5d:7b:e4:b2:1e:38:92:ae:fc:73:0c:ff:
83:9b:f8:d8:7b:35:14:c7:51:96:a1:60:b2:51:7a:12:e7:0f:
95:7e:d9:21:b2:83:f2:14:c0:d1:f3:2c:be:65:93:a4:7d:5e:
06:07:f1:7a:82:8a:4f:57:37:35:02:a9:06:d5:88:24:bd:c4:
ff:cc:43:3d:c8:88:1d:fa:45:d9:26:f4:94:01:a3:8d:66:ab:
79:94:d4:08:ea:46:e9:a3:8c:42:06:42:fa:5a:a4:4a:fc:50:
d4:8b:d6:fe:10:d4:bc:69:65:a4:4c:c0:a8:e0:46:a5:1b:0e:
0a:a0:06:9d:c4:a3:6e:a5:3a:dc:9d:4e:51:6b:70:cc:a4:7c:
e1:b0:8a:4c:f3:e4:39:81:73:62:9e:fe:85:fa:df:16:cf:31:
bf:7e:19:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:12:48 2025 by rpki-client