Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa
File: a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa (raw, json)
Hash identifier: oXkb08IYrUDhPmtvs7P6ttrvteJHp6RUziE5dZXRFCc=
Subject key identifier: 7F:67:9B:2E:D3:43:9E:6C:94:7F:9C:8C:FB:FB:30:07:11:EF:CE:A3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3E72145CF24206D923CDF81BD4EC2C6824EAA65C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa
Signing time: Sat 29 Mar 2025 00:41:48 +0000
ROA not before: Sat 29 Mar 2025 00:41:48 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.24.0.0/15 maxlen: 15
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:72:14:5c:f2:42:06:d9:23:cd:f8:1b:d4:ec:2c:68:24:ea:a6:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:41:48 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:82:de:d1:c7:e4:9c:22:bc:f0:4d:59:17:c0:
30:3d:0c:44:ce:b7:bc:55:5b:8d:87:91:80:8c:39:
41:43:28:a2:ad:43:21:9f:87:4b:e6:20:72:cc:a7:
97:c4:ab:fc:b6:56:fe:88:87:46:e2:c4:28:8f:40:
9a:bf:b7:eb:6a:79:73:e8:36:d9:83:d3:a8:a8:c2:
30:8c:bb:f5:cb:e4:48:33:6c:bd:f7:62:75:33:12:
28:6d:25:ea:6a:74:93:9e:46:d6:37:37:c1:9e:d8:
22:d3:d6:a6:f0:db:69:60:68:87:01:bb:65:03:b6:
d9:d7:4b:5d:30:2a:49:77:fa:fb:e7:43:0f:87:ca:
d8:98:42:d0:77:0e:f5:9c:3d:a9:cb:ec:72:2e:7a:
1b:5f:26:a2:e5:cb:22:08:12:5f:5e:6e:42:f8:74:
61:21:44:c9:17:b6:07:bc:6d:d3:37:06:8a:84:cc:
03:85:a7:e4:f1:21:78:6f:93:07:8d:5d:13:1d:a4:
f9:69:8f:ce:4f:bd:5c:44:f3:54:9f:72:a6:3d:71:
37:f8:5c:80:2b:5f:1a:01:28:e2:24:12:f2:12:c5:
7e:1b:a3:67:ec:2f:f2:ed:3f:e1:ce:8d:57:86:11:
06:df:de:70:a6:d6:4d:d1:e2:34:89:de:a7:de:45:
df:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:67:9B:2E:D3:43:9E:6C:94:7F:9C:8C:FB:FB:30:07:11:EF:CE:A3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.24.0.0/15
Signature Algorithm: sha256WithRSAEncryption
d1:d3:a8:6d:56:3a:6c:78:14:7e:14:7f:14:a4:32:7a:be:cc:
1e:2b:86:e2:3b:63:a1:bb:f9:bd:40:f7:b1:34:e3:5e:d3:d0:
8f:37:1f:24:a8:b5:47:23:b7:6b:56:ab:87:f2:a4:78:30:63:
b0:ab:5a:eb:2c:2a:44:54:19:e5:2e:f6:68:3f:0b:90:91:1c:
7c:45:28:55:f3:46:fe:95:b4:aa:dc:f5:6f:45:c4:ba:23:3e:
ee:f5:7d:7b:af:ff:f8:de:16:06:e8:52:c8:3c:25:e9:f7:7c:
7a:ab:1b:e0:70:e0:fe:2d:69:ee:4d:a7:be:6b:7e:70:09:a4:
67:aa:c5:70:68:df:8f:08:c2:b5:9b:25:02:04:c9:14:75:01:
81:20:b1:b0:d2:a2:36:34:2e:1e:f8:7a:d5:98:3e:52:40:1a:
59:77:d5:a8:a8:48:74:a1:df:5c:e6:70:db:be:e2:53:60:da:
22:3d:87:da:60:0e:36:35:e7:cd:11:52:46:03:49:23:14:60:
7f:62:34:1e:42:07:9b:3b:41:9a:12:65:ba:bd:c0:d0:83:e2:
9d:76:09:57:c0:28:3b:60:bf:6a:13:eb:4f:27:19:f0:c5:86:
9f:a4:24:64:29:33:8e:03:5a:ef:7f:c3:6b:7b:ca:c1:74:2d:
ab:0a:e8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:03:22 2025 by rpki-client