Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cc25449-046b-4f96-8fd2-5490f73ce45b.roa
File: 8cc25449-046b-4f96-8fd2-5490f73ce45b.roa (raw, json)
Hash identifier: OaIVzhVwwoYnQkyFQvu2gD7T80gjv312hTSbcHcN2n4=
Subject key identifier: B7:54:E4:29:EF:06:33:AF:C3:B0:1A:A0:A7:F0:D3:7B:35:F4:74:B9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5E269326399C128EAB1036397453CAA000F24AD9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cc25449-046b-4f96-8fd2-5490f73ce45b.roa
Signing time: Tue 04 Mar 2025 16:50:17 +0000
ROA not before: Tue 04 Mar 2025 16:50:17 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.254.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:26:93:26:39:9c:12:8e:ab:10:36:39:74:53:ca:a0:00:f2:4a:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 4 16:50:17 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:39:99:a6:cc:8f:c3:d0:d2:ae:10:47:63:5c:
ae:6f:9a:c7:76:0c:25:54:d9:54:6a:ad:0b:5d:7a:
de:ca:bf:a1:ea:ff:c5:25:b4:9d:ae:22:44:41:fd:
d4:28:8e:54:42:cf:d9:fa:da:cc:35:03:f1:01:f7:
ea:81:40:64:7f:ae:92:a7:5f:b9:ee:91:f0:8b:34:
9e:05:60:bc:e4:ca:ae:00:f6:d1:83:e5:2c:2f:7e:
74:45:18:2c:c9:86:f4:16:64:d9:76:55:75:4e:9e:
b1:06:12:14:39:bd:0e:68:09:c1:f2:59:e9:8b:b2:
0e:5d:91:43:2c:e2:f2:57:f5:53:1b:b7:94:45:83:
bb:72:ec:70:53:62:51:c0:f6:fb:71:10:44:82:d7:
e7:29:4a:f2:49:d2:0a:9c:a6:70:17:e0:9f:84:38:
62:86:a4:b3:59:18:50:7e:41:29:f9:39:75:f2:cd:
ce:51:46:bd:99:c6:25:54:b5:ed:b0:cf:cd:22:44:
9d:19:70:c3:60:86:f0:42:9d:16:b0:1b:7a:34:e3:
fe:9b:f3:1f:f2:a8:e6:a5:fc:3c:6e:61:8d:9a:6f:
6b:5d:84:ea:f8:82:be:ba:48:37:25:2d:51:09:6b:
e0:bf:1c:48:2f:e7:bd:5f:a5:38:68:b6:2a:0f:38:
2c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:54:E4:29:EF:06:33:AF:C3:B0:1A:A0:A7:F0:D3:7B:35:F4:74:B9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8cc25449-046b-4f96-8fd2-5490f73ce45b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.254.7.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:96:b5:db:c8:96:62:a6:ea:45:33:8e:08:41:8a:94:ff:9c:
26:8a:8d:2b:1a:33:37:0d:f8:07:a9:18:e7:cb:0f:fb:90:39:
0a:25:78:fe:5e:23:0b:7e:75:25:ba:bb:ef:51:cc:fc:fe:ac:
59:c5:96:8b:cc:53:e9:c2:cd:11:54:d3:e9:d1:65:e4:0d:d5:
1b:e6:ac:9b:42:5a:48:8f:91:bd:99:aa:eb:e2:5c:4c:a2:eb:
d8:c5:dd:36:1b:b4:77:ed:e7:ee:15:e5:a0:84:30:75:da:ee:
61:25:d2:0a:b2:f5:59:44:eb:f9:4e:7e:ac:39:de:93:74:01:
91:ed:36:7e:95:af:47:e2:19:51:48:cb:fa:ca:e1:22:64:db:
6b:95:50:aa:9e:bc:7c:3f:84:aa:36:5e:47:f6:cd:fc:a4:b7:
f6:be:42:4f:68:a0:c1:c9:5a:36:2f:81:fe:19:89:ef:c9:99:
94:c5:f4:42:4d:70:78:db:7c:67:00:cf:17:9f:b5:b0:39:01:
06:3f:cb:5f:81:49:a5:3b:73:15:a8:71:61:15:4e:69:6a:5e:
23:f8:27:ad:15:7c:34:b6:d4:d7:1c:4f:5c:7a:47:3b:db:bf:
0d:f4:ee:05:01:fd:bf:a1:3c:d9:1e:ce:59:15:76:53:70:6b:
3f:08:6c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:21:01 2025 by rpki-client