Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8324e9e8-14c6-44fc-9b12-6fbcf6328676.roa
File: 8324e9e8-14c6-44fc-9b12-6fbcf6328676.roa (raw, json)
Hash identifier: k6lJ09HfQXznh9rOaytrbbl25MayuOlYHWGDxIIV0KY=
Subject key identifier: 62:D1:03:E2:A9:23:14:C7:37:3A:3B:99:8A:97:91:24:FD:0E:B7:3E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3812CB38D59671A7D4B040A6730557F3934F43E4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8324e9e8-14c6-44fc-9b12-6fbcf6328676.roa
Signing time: Sat 29 Mar 2025 00:41:17 +0000
ROA not before: Sat 29 Mar 2025 00:41:17 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.78.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:12:cb:38:d5:96:71:a7:d4:b0:40:a6:73:05:57:f3:93:4f:43:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:41:17 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:95:85:15:48:ee:e5:62:04:0f:26:62:6b:ea:
02:c0:f7:c6:e3:b1:19:a8:6b:2a:0a:0f:d1:24:06:
88:5f:cd:33:cc:f1:1d:d7:17:19:d7:34:2e:91:93:
a6:c8:47:b1:4c:46:a0:20:84:42:8a:cb:06:fa:3e:
08:f2:18:64:9b:9a:8a:ce:dd:18:90:25:ae:38:fc:
29:7e:64:05:ef:fd:a0:6a:8b:95:e6:5d:72:6c:09:
e6:b9:4a:e1:27:52:91:1e:f9:bc:70:6b:e9:cb:96:
27:5a:3b:43:83:84:d3:50:f0:97:43:44:76:3e:46:
e3:bc:a4:29:bb:fe:3f:de:70:7d:e1:b5:eb:69:2b:
cc:c1:f6:94:5e:15:21:b4:c3:4d:73:b4:42:75:23:
25:2e:53:5d:9e:1c:ea:ff:dc:79:ad:0a:26:dc:75:
d8:2e:98:97:da:ff:a2:46:f4:cc:b4:ee:70:92:6b:
8f:6e:0d:db:83:bb:2f:d7:cc:69:dc:c3:bd:a4:50:
33:09:41:be:1c:96:d8:d4:32:0a:f1:85:b6:57:71:
ff:e2:d3:f7:ff:aa:ae:23:7d:1c:f7:a3:1d:7a:68:
26:ac:cd:de:3d:11:1e:c3:3e:e0:38:ae:2a:cd:24:
18:7f:a9:49:d9:b4:39:2f:21:6c:46:56:44:8a:fe:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D1:03:E2:A9:23:14:C7:37:3A:3B:99:8A:97:91:24:FD:0E:B7:3E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8324e9e8-14c6-44fc-9b12-6fbcf6328676.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.78.0.0/15
Signature Algorithm: sha256WithRSAEncryption
69:89:50:96:87:f1:a2:41:b3:4b:ea:bf:24:1b:96:03:70:ed:
de:dc:6b:bb:9b:f5:40:f5:ef:97:27:8c:01:1f:05:69:45:35:
92:ff:7f:93:f0:d9:9b:ce:6b:c2:d8:d8:52:93:87:21:c3:c4:
e7:ed:8a:b5:1f:6b:90:7e:1d:04:5d:ed:39:04:6b:d3:97:91:
23:0c:3b:3b:b5:45:64:31:b7:73:a7:8c:9e:88:0f:06:dc:ae:
bb:19:b6:26:67:c8:b6:d8:88:d6:91:66:b8:22:cb:dd:ea:04:
86:da:2e:a5:fd:95:b7:85:d5:4a:f7:57:5f:f2:7c:f4:2d:96:
06:9e:2e:7f:f0:45:f1:60:07:d7:8f:c3:fb:0e:50:48:f1:e9:
a1:25:4f:e1:13:8a:30:2f:40:4d:fb:19:30:36:de:ed:cb:d3:
07:cf:c6:fa:f1:64:20:44:a2:9f:01:16:e9:73:21:62:1d:bc:
65:6d:39:df:a4:0b:75:6a:82:c9:05:6f:6b:25:d7:96:24:56:
9a:04:73:d8:0f:c3:a3:07:4f:a5:df:e9:ad:6e:b3:6e:4c:1c:
c4:24:18:02:55:8f:f0:59:5f:e2:38:5a:b3:eb:23:de:79:2e:
ca:ca:e7:0e:fd:b0:0c:78:f2:99:85:a4:7e:fc:33:f5:2d:3a:
41:0d:45:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:17:45 2025 by rpki-client