Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa
File: 7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa (raw, json)
Hash identifier: hgkXPT/7a8EpCTNxm4gxQqbhmSHUbePGe6TzUachEEU=
Subject key identifier: 51:F7:72:C7:B9:69:9A:81:29:E8:2F:DA:5B:1B:2A:96:90:6B:32:63
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4A52E2F80BAF1DA9A6D7675843951B30AB66BF73
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa
Signing time: Tue 25 Mar 2025 17:51:50 +0000
ROA not before: Tue 25 Mar 2025 17:51:50 +0000
ROA not after: Tue 29 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fff:8020::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:52:e2:f8:0b:af:1d:a9:a6:d7:67:58:43:95:1b:30:ab:66:bf:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 25 17:51:50 2025 GMT
Not After : Apr 29 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:3d:a6:44:78:71:66:05:a3:96:a4:cc:9f:32:
a1:f6:06:c5:a8:32:52:6b:11:3f:23:b6:97:70:7c:
ab:b5:ae:50:a6:2d:78:9d:3b:ed:c4:10:42:9c:ca:
3c:b5:ed:a9:9d:f7:70:46:cf:32:84:d3:3b:54:18:
fa:3b:c8:aa:95:59:32:83:5c:ed:07:58:33:2d:aa:
34:af:28:c1:a7:ae:a0:8e:68:a9:d2:65:e0:77:c7:
e9:63:d0:0d:94:ee:08:7a:e3:23:37:81:4a:f5:a5:
a7:e9:d5:8c:32:b0:9c:a7:fb:3f:63:3d:f8:ea:0e:
d7:da:0a:5e:90:8b:5a:d9:11:32:3a:00:85:60:ad:
ca:ff:40:ab:d0:d3:55:7f:09:c4:6b:92:b1:69:6c:
99:5a:d7:71:ea:95:a9:97:fb:c9:28:bf:7a:c3:40:
80:35:e9:29:84:46:70:5c:b2:cb:58:b2:8b:df:25:
23:b5:ef:11:0b:bd:5a:42:6b:12:70:f8:19:49:9d:
6a:a6:de:e2:1a:3b:35:03:7d:3b:bc:20:31:3b:be:
92:f9:1e:3c:68:04:73:b4:90:27:68:d1:70:b8:1b:
1b:62:92:47:fd:98:d2:86:70:2d:b7:2b:65:2b:d1:
11:27:40:3f:64:c7:f5:52:75:be:a4:3b:5c:fc:4f:
e6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F7:72:C7:B9:69:9A:81:29:E8:2F:DA:5B:1B:2A:96:90:6B:32:63
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ab2a0a7-60f3-4a9f-9098-2b33486a7a43.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fff:8020::/48
Signature Algorithm: sha256WithRSAEncryption
17:3c:65:4f:4c:79:cd:93:7a:29:77:ab:bb:06:ee:06:2d:62:
aa:65:b6:71:df:ff:a6:a5:66:4e:20:4d:4e:b8:c9:e3:32:6f:
ba:03:9b:e2:d3:bc:3f:14:d9:47:59:23:65:65:c5:59:52:64:
05:4e:22:5c:66:7d:cd:79:f9:50:a5:06:20:d4:67:ae:20:a8:
f8:11:e1:68:ba:74:2b:45:38:48:bb:15:89:3f:2b:94:0d:b5:
0b:4b:8c:21:77:d3:e9:b3:c0:3d:8a:c7:28:ac:62:9e:73:0e:
27:6a:44:5c:97:71:11:1e:fe:3c:8b:15:cf:01:d2:52:c5:fa:
be:72:99:a2:e9:0f:48:03:db:50:32:9a:64:d2:5d:ac:9e:5c:
57:72:25:5e:50:c5:cc:70:43:ad:f4:44:7e:20:12:a0:b2:81:
2b:b0:0e:66:d4:85:56:3b:11:66:2d:51:47:dd:8f:a1:24:91:
90:9b:89:cd:48:21:14:02:b3:c4:7f:6f:78:a5:1d:32:3e:8f:
96:fb:ff:f1:8b:d2:47:21:be:2d:1c:52:36:d6:97:ab:24:b3:
13:e6:5a:27:c0:3c:cf:bc:8c:21:ed:e5:f3:b9:62:23:b1:53:
20:3a:cc:2d:cb:fd:6e:f0:14:17:63:b8:4c:8d:09:8e:3d:1c:
d5:a6:77:ca
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:16:38 2025 by rpki-client