Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa
File: 7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa (raw, json)
Hash identifier: ehRLRTqaEt1903SAIR13Z5EgBa3cu+j2+bnQRqg5wNA=
Subject key identifier: EC:95:75:3C:59:8B:11:9D:55:72:86:D0:5F:42:AC:04:A0:65:84:DD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 415F745D4DE3BD03AD6BAFE80EEF7B276ADA28E1
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa
Signing time: Sat 29 Mar 2025 00:11:12 +0000
ROA not before: Sat 29 Mar 2025 00:11:12 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 107.22.156.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:5f:74:5d:4d:e3:bd:03:ad:6b:af:e8:0e:ef:7b:27:6a:da:28:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:11:12 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:55:85:3e:5e:e6:ef:3d:24:80:96:83:b7:c9:
3f:44:cc:5b:33:28:03:36:56:04:d5:66:ba:f6:8f:
4f:52:d8:ed:8c:af:a2:8d:9a:b4:24:64:fd:0a:f9:
12:b4:ec:e3:3e:11:78:84:da:14:ea:51:98:1e:66:
73:01:1b:a0:28:f9:06:9c:70:a1:34:21:3c:89:53:
96:91:d5:d9:75:f6:77:fb:ec:1e:fd:0f:1a:15:a7:
2f:99:f9:8e:b0:0f:98:a1:fc:a2:c3:6b:21:4d:ab:
7a:96:44:a1:84:4b:7d:08:a6:8b:fb:0e:79:0d:f1:
19:47:48:5f:bd:87:30:2e:4f:04:7f:9d:f4:0c:66:
33:d5:d2:8e:2a:57:ab:15:6a:2a:1d:f0:85:d4:5d:
46:4a:64:4e:21:77:0c:34:53:09:b8:57:18:51:14:
db:78:92:c5:18:c5:1c:d0:8c:3c:2a:c0:3f:a9:37:
45:ae:99:aa:8b:6c:91:48:c4:64:4e:4c:fe:fb:a5:
08:71:b5:46:ae:25:a9:e0:99:8b:3f:d9:9a:d0:59:
e1:20:4d:2c:18:c3:29:55:11:13:d0:2d:93:c9:db:
9a:c8:c7:ff:6e:10:f7:a4:ba:72:49:5a:87:d0:68:
2f:69:d6:2b:21:58:b0:e1:99:c6:bc:c4:e9:a2:da:
5e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:95:75:3C:59:8B:11:9D:55:72:86:D0:5F:42:AC:04:A0:65:84:DD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.22.156.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:3c:29:fc:1b:ee:c8:47:5f:17:2c:ff:00:56:41:24:ab:f2:
8a:6a:31:49:f5:42:81:57:f0:6a:ad:bc:60:27:69:35:f3:71:
70:87:b1:cc:c2:3f:64:d0:c0:fb:eb:ec:f0:c8:46:26:21:a9:
c6:35:f3:f4:95:31:c3:6a:8c:9b:c4:e8:ba:03:34:5d:4c:84:
6d:86:11:e4:e0:1e:38:fc:b2:fb:dd:0e:2d:9c:7a:8f:19:3e:
67:a0:d6:e4:5e:b1:43:22:f4:5e:e7:2a:1b:79:09:4e:9c:aa:
c5:51:6a:88:bc:2e:f1:e3:38:93:ee:ef:19:60:a3:55:25:cb:
ed:f3:9d:c5:4e:22:79:cc:bc:2f:68:3f:6e:d2:4e:be:75:51:
25:00:39:8c:47:47:54:46:36:9d:c7:63:0e:78:1a:31:40:0f:
b2:9a:23:87:ae:8b:a3:d9:d9:ca:bd:4c:5f:5c:4d:ef:7b:82:
35:e6:8a:a8:bf:84:38:04:9d:5b:00:2d:6c:bc:e8:33:be:37:
4c:49:d2:95:84:02:87:8c:8d:ba:25:2e:e2:9a:1a:e1:f5:dd:
38:7b:7c:60:70:ff:dc:f2:3c:49:23:77:68:f2:b4:d8:b2:fb:
2f:e7:2b:e5:ca:45:1e:5c:13:8e:41:98:1b:6d:15:54:5f:4a:
d7:0a:87:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:06:31 2025 by rpki-client