Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a79ba874-087c-4a57-9058-69f55be3c0a0.roa
File: a79ba874-087c-4a57-9058-69f55be3c0a0.roa (raw, json)
Hash identifier: if5EaCh2cBuw9KR3AwBVGEC38xk2a+rPq1L0BLP7FiA=
Subject key identifier: A0:C6:EA:C6:4D:90:BA:F0:30:1A:BD:74:E1:9F:87:F5:57:F4:BE:F3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3998D2B0EF1D16F74B13CFDAFF686EF1DFBF2C3D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a79ba874-087c-4a57-9058-69f55be3c0a0.roa
Signing time: Fri 28 Mar 2025 16:01:11 +0000
ROA not before: Fri 28 Mar 2025 16:01:11 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff7:8000::/39 maxlen: 39
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:98:d2:b0:ef:1d:16:f7:4b:13:cf:da:ff:68:6e:f1:df:bf:2c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 16:01:11 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:97:45:12:cb:d9:2b:b0:08:44:ae:89:53:a2:
04:43:f1:f7:c6:04:d4:4e:a2:1c:6b:19:c8:71:68:
e6:ee:ed:5d:30:09:4c:6a:63:c7:0f:21:bf:92:6d:
25:5d:a3:c6:a7:85:5b:5b:2b:34:92:cd:3f:91:c6:
1b:ab:fc:5b:75:1d:33:91:b2:df:b0:6c:55:70:bd:
b9:4d:15:51:17:a8:4c:23:61:ea:32:85:f3:ee:bb:
59:6c:fd:dd:5a:3a:49:1b:f4:d2:7e:55:29:5b:3c:
20:33:63:77:19:07:6e:92:64:47:01:15:56:d2:59:
e9:b3:89:8c:64:50:7f:a8:68:11:c5:55:c5:00:f7:
69:be:54:d6:14:a5:ee:79:25:bd:58:ef:89:d7:92:
fc:97:75:c7:88:66:b5:6c:ad:a0:ee:24:ec:aa:0a:
03:5a:f1:51:51:a1:d4:34:d5:01:e6:5b:99:49:8c:
8d:a5:ed:a5:db:52:b9:bd:d6:1b:a1:77:c8:96:d9:
1c:4a:1c:6a:60:21:92:f6:e4:2a:5a:97:6b:b1:8c:
22:74:6c:36:00:cc:37:60:71:5f:e7:eb:f6:57:31:
f1:01:2c:cb:0e:b9:81:41:18:57:7c:9e:21:f5:be:
5b:3e:f2:69:d0:b8:02:a2:8b:53:cf:60:29:64:1e:
69:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C6:EA:C6:4D:90:BA:F0:30:1A:BD:74:E1:9F:87:F5:57:F4:BE:F3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a79ba874-087c-4a57-9058-69f55be3c0a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff7:8000::/39
Signature Algorithm: sha256WithRSAEncryption
75:50:ac:23:8a:4c:f9:e5:c3:04:97:7d:93:2f:a7:5f:ed:cd:
28:90:cd:65:49:19:22:f2:f4:9f:6d:32:ef:3a:c1:2b:a1:9d:
80:2d:8e:5f:20:a2:1c:aa:41:cf:55:ed:6f:6c:56:4a:19:97:
c3:9e:57:94:cd:27:f5:59:56:6f:1b:1d:ef:a9:4a:9d:f4:9d:
5e:d3:eb:bc:c5:47:7a:37:90:7b:4a:b3:00:03:b6:8d:0f:6a:
69:ab:ad:c7:28:70:b6:42:4d:be:a3:e9:cf:c7:6b:03:b5:fc:
5b:4b:41:fd:cc:4d:11:9f:a4:16:34:7f:e6:1b:a5:8e:5d:98:
69:94:49:3f:b3:e1:65:ab:d1:3f:45:6e:04:a5:37:1d:13:7c:
08:03:e0:6f:83:1b:d4:4e:2a:b4:86:8a:29:77:28:3f:5b:21:
14:8f:e7:9b:66:57:27:98:c6:3a:32:7f:87:73:10:79:5d:2e:
17:4e:4e:3a:d1:5a:3a:d3:73:d9:60:35:f1:66:69:8c:06:e4:
64:0b:d8:51:a4:73:6b:15:ea:6f:74:ba:e2:bc:8a:49:3b:8c:
0a:82:8f:1e:0f:fd:ee:3d:3e:b9:71:9c:c0:74:d1:48:c6:2c:
8f:f9:6c:ab:3c:af:14:e8:fa:99:cd:f9:59:47:1b:86:28:31:
6f:8c:b2:ff
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUOZjSsO8dFvdLE8/a/2hu8d+/LD0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTYwMTExWhcNMjUwNTAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A5NDc2N2MwY2M3YTQwZDE1ZDI5YmVkNTM4ZDIwMzAxODVk
MzAwNTI4MGU4M2FiZDY0YzFlYjRmNzdjYWU2NDI0MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCdl0USy9krsAhErolTogRD8ffGBNROohxrGchxaObu7V0w
CUxqY8cPIb+SbSVdo8anhVtbKzSSzT+Rxhur/Ft1HTORst+wbFVwvblNFVEXqEwj
YeoyhfPuu1ls/d1aOkkb9NJ+VSlbPCAzY3cZB26SZEcBFVbSWemziYxkUH+oaBHF
VcUA92m+VNYUpe55Jb1Y74nXkvyXdceIZrVsraDuJOyqCgNa8VFRodQ01QHmW5lJ
jI2l7aXbUrm91huhd8iW2RxKHGpgIZL25Cpal2uxjCJ0bDYAzDdgcV/n6/ZXMfEB
LMsOuYFBGFd8niH1vls+8mnQuAKii1PPYClkHmlrAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUoMbqxk2QuvAwGr104Z+H9Vf0vvMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2E3OWJhODc0LTA4N2MtNGE1Ny05MDU4LTY5ZjU1YmUzYzBhMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgEmAB/3gDANBgkqhkiG9w0BAQsFAAOCAQEAdVCsI4pM+eXDBJd9ky+nX+3N
KJDNZUkZIvL0n20y7zrBK6GdgC2OXyCiHKpBz1Xtb2xWShmXw55XlM0n9VlWbxsd
76lKnfSdXtPrvMVHejeQe0qzAAO2jQ9qaautxyhwtkJNvqPpz8drA7X8W0tB/cxN
EZ+kFjR/5huljl2YaZRJP7PhZavRP0VuBKU3HRN8CAPgb4Mb1E4qtIaKKXcoP1sh
FI/nm2ZXJ5jGOjJ/h3MQeV0uF05OOtFaOtNz2WA18WZpjAbkZAvYUaRzaxXqb3S6
4ryKSTuMCoKPHg/97j0+uXGcwHTRSMYsj/lsqzyvFOj6mc35WUcbhigxb4yy/w==
-----END CERTIFICATE-----
Generated at Wed Apr 9 12:36:53 2025 by rpki-client