Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa
File: 8d41710e-c6e8-4052-a1da-98784984e015.roa (raw, json)
Hash identifier: jJ659CJ/elYboaQrC6CDj338Kxky4I7fUbsZyRMRIFU=
Subject key identifier: AC:48:27:CE:BE:CA:4B:83:15:DC:F1:9B:95:C4:69:03:56:1E:36:E5
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 700945BC104BBFDB7711104130ED1B85614985D8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa
Signing time: Fri 28 Mar 2025 15:41:32 +0000
ROA not before: Fri 28 Mar 2025 15:41:32 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ffb:2040::/46 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:09:45:bc:10:4b:bf:db:77:11:10:41:30:ed:1b:85:61:49:85:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 15:41:32 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:07:b9:96:23:af:e4:4c:de:fb:8e:13:18:19:
02:91:bb:29:7a:f4:d8:13:aa:1d:ad:1c:ec:ab:19:
2e:d8:ab:e6:75:57:df:92:64:c3:1d:1a:46:77:ea:
88:10:5a:94:c8:bd:b9:c1:a5:69:c6:1b:3b:c6:d6:
5e:ca:f0:4a:ca:64:de:84:62:06:44:f8:27:58:2f:
eb:0f:94:89:39:1f:3c:fe:de:a4:65:6f:43:e8:9a:
3d:12:6b:b4:c6:4f:5a:27:8e:d5:32:e9:aa:61:4d:
6c:01:b7:6f:7d:6e:6a:72:7b:70:05:3c:cd:0d:f1:
71:4d:5b:ae:5c:a8:41:b8:10:c2:dc:79:50:02:00:
c9:b5:62:05:36:17:cb:e9:e8:df:2e:ad:d0:01:f6:
20:cc:2f:8b:8c:8c:8c:38:e8:d3:50:7c:17:c4:06:
f9:81:f6:be:44:2c:95:e8:c2:29:eb:4d:32:0c:cd:
75:37:da:4a:ab:c8:4e:ef:75:1c:de:89:53:d8:81:
b9:08:c6:e3:4e:0e:b9:85:82:66:80:17:55:6a:88:
9a:7b:5c:12:b7:29:9c:a3:20:41:e8:a3:9a:25:12:
14:99:77:0e:3c:79:f9:a3:38:02:1c:4b:7a:8e:cd:
94:9b:a0:4b:df:72:e2:e4:a3:ab:c1:f6:4a:cc:1e:
0a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:48:27:CE:BE:CA:4B:83:15:DC:F1:9B:95:C4:69:03:56:1E:36:E5
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ffb:2040::/46
Signature Algorithm: sha256WithRSAEncryption
d4:f6:8d:20:99:37:0b:b5:6c:96:de:d8:b0:26:2f:44:a3:77:
68:64:53:fc:28:2b:f1:6d:80:96:a9:15:15:cf:8b:da:1d:58:
e2:c3:b7:26:b5:d8:7e:fb:13:bd:f5:70:d4:70:1d:8a:45:53:
b3:87:98:f7:fa:21:8c:9d:70:ec:45:60:36:8c:5d:69:a7:f9:
00:e6:d4:ad:cc:2f:d2:ec:b8:a5:98:a1:51:0c:f7:52:98:87:
40:a7:11:2a:ad:db:87:2a:f1:1f:a4:bb:e3:eb:68:dd:94:82:
ea:23:ba:d6:93:b0:7f:ee:cb:a9:ea:9c:a2:7f:a1:51:29:ca:
69:67:df:a1:c6:d8:f5:59:74:95:bc:63:39:c1:ad:41:ac:17:
e6:e2:b9:0b:84:ab:b7:61:3d:4c:36:18:c7:b3:24:fc:76:6a:
24:70:94:ae:ae:23:6c:39:44:f0:1f:66:1d:10:a1:b9:6c:f7:
69:a8:c6:d6:1c:f5:cb:9c:15:76:1a:10:d0:cd:92:7a:2a:bf:
c0:6a:b7:74:59:6b:f1:71:fb:7c:71:66:51:4c:2b:73:99:a6:
07:fb:f2:bf:13:e0:27:63:f7:2f:7b:cb:89:69:99:8d:6b:7f:
cb:d9:07:ad:98:94:97:9a:ad:37:5a:57:6f:e9:88:b6:31:07:
a4:17:5f:ea
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 21:55:42 2025 by rpki-client