Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa
File: 78a29a43-6fb1-4f22-858b-58921f0187e5.roa (raw, json)
Hash identifier: 35s+AXZWQsUI9qRVXyxTxdNEwE647oZYqF4PmxjfiNk=
Subject key identifier: EC:E8:FF:81:FB:07:7E:DB:D3:AB:61:BC:43:F0:22:C9:33:70:32:17
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 722B3D2A5B78044B8062085169D5E0A6FAE11F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa
Signing time: Sat 22 Mar 2025 00:00:21 +0000
ROA not before: Sat 22 Mar 2025 00:00:21 +0000
ROA not after: Sat 26 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 114.56.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:2b:3d:2a:5b:78:04:4b:80:62:08:51:69:d5:e0:a6:fa:e1:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 22 00:00:21 2025 GMT
Not After : Apr 26 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:10:73:5f:0f:d5:51:ac:8f:3a:c5:cf:33:
bd:a8:85:3b:40:2c:f1:1c:a9:f5:b0:45:be:98:59:
80:60:75:b1:26:dd:0e:88:11:87:e4:39:68:85:66:
4a:d9:d0:06:51:28:77:78:18:c1:86:3d:85:37:e4:
d5:bc:1d:2a:19:de:0e:d9:71:32:8d:cc:b4:17:a3:
60:c8:fc:98:0e:43:f2:e4:e8:11:ae:3a:85:32:e0:
04:47:75:4d:b5:f6:ae:8f:b5:59:ed:6e:bb:11:ea:
9a:29:ae:90:0f:b6:f6:16:e4:74:3f:02:f4:91:a3:
ef:06:6d:a8:2d:9d:74:6f:30:67:b8:57:3c:28:a0:
d9:84:80:9a:2d:03:a6:36:d6:c5:46:d6:58:11:95:
b1:4c:7e:9d:1c:65:db:99:ca:df:ea:19:ab:0a:b5:
0d:4e:8f:3b:9c:f0:e5:c7:57:5a:59:b7:c0:38:d1:
8a:97:94:63:0d:e7:6f:c2:ac:0b:c2:1e:4a:39:2b:
a6:85:7b:34:26:7f:97:ad:e8:e2:6f:77:e7:92:e6:
93:cb:f2:43:ea:a7:30:1b:12:a0:21:8d:c9:44:2b:
f5:00:52:09:c2:ff:bb:a4:0e:61:93:07:d0:dc:d2:
2f:77:f2:d5:79:5e:69:9c:9d:65:4b:b4:e5:7b:46:
cc:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E8:FF:81:FB:07:7E:DB:D3:AB:61:BC:43:F0:22:C9:33:70:32:17
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.56.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:16:85:59:57:ce:d3:8f:30:dd:15:e5:94:69:3a:81:86:41:
96:c9:be:e1:12:21:f9:ee:b3:db:dd:fd:5c:f6:9b:56:22:d0:
93:c1:17:e0:7e:61:23:46:a5:e4:b5:89:5c:90:51:52:31:43:
40:e1:d2:92:cd:2a:2b:b6:d6:cf:b3:81:02:47:b2:11:c1:d4:
13:a9:3e:ac:5b:16:40:57:eb:d7:5d:06:dc:87:9f:b2:4f:2e:
ae:54:15:03:85:f5:65:18:e4:a5:88:59:7e:5c:5a:84:8f:2d:
17:0b:bd:eb:1a:00:f3:3b:29:69:90:10:4e:c7:8b:c3:c6:73:
62:00:3b:20:a6:93:b1:22:6d:ac:9a:ae:0f:a1:02:ee:77:a2:
bb:1d:0b:d1:9a:e2:57:9d:0f:39:f0:84:b9:ce:8b:e0:a2:42:
98:e5:1f:50:c6:4c:a8:57:d7:5f:bc:ca:8b:56:e7:54:d9:3b:
24:e3:a5:39:96:ca:1e:c2:61:c5:e9:de:51:af:69:a1:fa:37:
86:7c:e5:ae:d5:93:2a:00:de:44:a2:33:75:cf:25:96:6b:9b:
47:a9:c3:c5:45:13:e7:51:09:ab:6a:55:76:3c:45:1c:59:dc:
ee:b3:b6:41:98:ee:98:6d:a1:89:72:a7:03:f9:54:21:a9:da:
6b:13:b4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:49 2025 by rpki-client