Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8772c05e-5f97-4bdb-a871-ab35e7afbab9.roa
File: 8772c05e-5f97-4bdb-a871-ab35e7afbab9.roa (raw, json)
Hash identifier: j45SwcNHFcXBq4dNPepy9ZlqOusP+fTiMaR0s2mzTNM=
Subject key identifier: 0F:6B:EB:A5:E6:E0:B1:1F:46:20:5A:EC:7A:82:15:DA:D0:0A:4E:D3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 549C62971F2037CBEB9F7228BA7FC7EE5A6710C2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8772c05e-5f97-4bdb-a871-ab35e7afbab9.roa
Signing time: Fri 14 Mar 2025 00:52:06 +0000
ROA not before: Fri 14 Mar 2025 00:52:06 +0000
ROA not after: Fri 18 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 98.74.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:9c:62:97:1f:20:37:cb:eb:9f:72:28:ba:7f:c7:ee:5a:67:10:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 14 00:52:06 2025 GMT
Not After : Apr 18 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:26:55:65:11:35:56:e4:0d:e7:06:e3:e1:1d:
96:48:02:3f:4b:a6:b0:2f:28:fd:dd:c9:68:db:9a:
24:b5:53:4e:61:f3:e9:36:24:66:42:56:b2:1f:1c:
69:49:17:d9:eb:3a:d3:81:82:93:fe:41:a2:9a:05:
2f:96:4c:31:7f:35:c6:51:8e:d6:38:ca:50:88:cb:
db:8f:78:3b:38:9b:9f:15:40:6d:f2:79:bb:6f:9e:
ae:a6:b2:da:d3:e0:2b:d4:80:f2:20:c2:90:bf:f9:
f6:cf:8a:4f:4c:1d:b7:0f:06:44:3b:61:68:89:01:
1c:ce:fd:1a:3c:5b:12:b2:5c:a2:7d:eb:9b:3c:9a:
2c:96:81:9c:99:5f:b4:3b:61:58:36:a3:34:d5:20:
3c:e8:ca:84:16:49:dc:13:c0:c9:9b:0d:a0:c7:95:
24:1e:b9:1b:b9:99:f3:5f:74:53:15:44:75:06:9b:
f3:8f:41:2a:17:3c:c8:8c:23:ba:68:e7:46:d7:79:
51:fd:19:4e:37:ae:d7:97:f3:57:48:44:cf:3e:3d:
db:49:df:a0:7a:10:94:a7:dc:4f:5f:3d:c6:b4:f9:
46:1a:e3:38:ea:a3:55:8c:a3:dc:6a:15:7b:6b:7e:
7d:d3:ca:b1:b6:cf:79:ac:63:5a:9f:ef:43:5a:92:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6B:EB:A5:E6:E0:B1:1F:46:20:5A:EC:7A:82:15:DA:D0:0A:4E:D3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8772c05e-5f97-4bdb-a871-ab35e7afbab9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
98.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a8:01:15:1a:f5:e1:74:e6:fb:76:31:f0:b4:a0:89:7d:fc:ed:
e5:95:89:54:ac:8a:5c:d3:a1:0f:b4:cc:68:5a:34:4d:eb:48:
f5:fc:ba:30:7b:ca:6e:cd:0b:b8:c1:b7:6a:8c:03:f7:72:b2:
12:a0:8b:15:50:f3:14:5c:50:bf:2a:c2:13:5d:1c:93:87:79:
e7:9d:a3:ff:78:2d:fa:5b:77:69:54:4a:1e:91:60:13:b6:d5:
39:07:4e:57:5c:59:63:d7:6c:92:e1:81:fe:d9:62:25:6c:50:
73:a6:67:27:e3:1e:27:e7:37:7b:27:25:37:e7:77:ae:ee:fa:
b6:57:a4:a4:59:1f:2e:07:ed:e1:16:f3:a4:a3:01:78:d0:c4:
0d:61:a5:ee:d8:a6:1c:15:6a:02:30:4d:d1:ba:5d:5a:5f:cc:
f4:09:56:b4:27:7b:1b:0e:db:9e:57:67:7f:e5:08:a3:c8:29:
7e:8b:93:a3:64:f2:2a:dd:0c:48:58:cb:fa:2b:1e:98:5e:10:
54:b4:16:ff:63:a2:05:46:cb:1a:04:0f:ae:b0:ba:08:5a:01:
6b:f4:7f:ea:fe:a2:c7:e8:67:3d:2b:f4:27:d7:3a:4c:d2:ee:
6a:80:79:ad:1d:46:c1:c7:07:d9:18:4b:59:67:d7:51:a7:33:
8b:11:7c:09
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUVJxilx8gN8vrn3Ioun/H7lpnEMIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MDA1MjA2WhcNMjUwNDE4MjM1OTU5
WjB6MUkwRwYDVQQFE0A0MjA1YmIzM2FhMGY1YTIyYTI1OGQzZDdhODQyZDgyYjA5
YWU4YWJiNzY0NDUzYmZlM2Q5Njc1NzFlYTJmNWVkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCpJlVlETVW5A3nBuPhHZZIAj9LprAvKP3dyWjbmiS1U05h
8+k2JGZCVrIfHGlJF9nrOtOBgpP+QaKaBS+WTDF/NcZRjtY4ylCIy9uPeDs4m58V
QG3yebtvnq6mstrT4CvUgPIgwpC/+fbPik9MHbcPBkQ7YWiJARzO/Ro8WxKyXKJ9
65s8miyWgZyZX7Q7YVg2ozTVIDzoyoQWSdwTwMmbDaDHlSQeuRu5mfNfdFMVRHUG
m/OPQSoXPMiMI7po50bXeVH9GU43rteX81dIRM8+PdtJ36B6EJSn3E9fPca0+UYa
4zjqo1WMo9xqFXtrfn3TyrG2z3msY1qf70Nakk4/AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUD2vrpebgsR9GIFrseoIV2tAKTtMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzg3NzJjMDVlLTVmOTctNGJkYi1hODcxLWFiMzVlN2FmYmFiOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwBiSjANBgkqhkiG9w0BAQsFAAOCAQEAqAEVGvXhdOb7djHwtKCJffzt5ZWJ
VKyKXNOhD7TMaFo0TetI9fy6MHvKbs0LuMG3aowD93KyEqCLFVDzFFxQvyrCE10c
k4d5552j/3gt+lt3aVRKHpFgE7bVOQdOV1xZY9dskuGB/tliJWxQc6ZnJ+MeJ+c3
eyclN+d3ru76tlekpFkfLgft4RbzpKMBeNDEDWGl7timHBVqAjBN0bpdWl/M9AlW
tCd7Gw7bnldnf+UIo8gpfouTo2TyKt0MSFjL+isemF4QVLQW/2OiBUbLGgQPrrC6
CFoBa/R/6v6ix+hnPSv0J9c6TNLuaoB5rR1GwccH2RhLWWfXUaczixF8CQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 12:23:45 2025 by rpki-client