Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa
File: a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa (raw, json)
Hash identifier: /JNjI7bDBTzWarGS8rbz92Ramg3yGaAUpB3Y5iymLBk=
Subject key identifier: B8:35:57:D3:63:1A:BA:47:7A:CC:73:57:EA:24:96:9A:98:A2:61:1A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 039512852205DF09EC4E737DD69F3E83E8599336
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa
Signing time: Sat 15 Mar 2025 00:30:20 +0000
ROA not before: Sat 15 Mar 2025 00:30:20 +0000
ROA not after: Sat 19 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.172.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:95:12:85:22:05:df:09:ec:4e:73:7d:d6:9f:3e:83:e8:59:93:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 15 00:30:20 2025 GMT
Not After : Apr 19 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:60:7b:0e:71:0e:0c:fe:35:11:f9:cc:51:
1f:77:15:0e:07:57:0e:36:a4:33:ab:f2:bc:6a:35:
99:c9:98:b8:06:1f:7a:e7:10:8b:8b:bd:1b:6a:df:
c1:e9:b4:28:66:2d:e4:99:d5:d8:3c:49:3d:85:59:
3f:6b:c7:15:7e:e6:4d:4d:70:ae:d1:7d:9d:79:5a:
4d:60:0c:df:0c:0f:f2:c0:6e:8e:bd:ab:84:30:4b:
c3:5a:9b:26:3d:34:cf:cc:ed:86:b9:30:eb:59:a2:
db:1a:58:7d:20:5e:b9:42:f9:50:3e:56:af:b1:d8:
cd:89:64:fa:b1:c0:e5:ef:0c:a3:00:9a:aa:8f:bc:
49:c1:d5:fc:5f:59:21:64:c5:09:b1:f8:96:02:01:
d4:58:c1:0f:10:5d:8a:58:bc:f2:42:71:b0:01:e6:
af:55:14:fb:fb:5f:6f:63:80:69:09:9a:5c:a0:d6:
1f:9d:5b:b7:81:e9:dc:d2:bf:0d:ef:3e:a3:f4:b5:
35:46:f3:6b:52:96:c6:02:e9:f6:99:5e:27:66:f7:
4b:41:2c:3f:8b:22:3f:ff:be:59:d9:ba:27:25:f1:
9b:86:b9:d6:10:c6:2c:68:9d:b7:cd:c9:eb:8e:f1:
84:a4:8f:4d:9e:45:f4:4b:8d:17:b4:77:08:6a:84:
64:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:35:57:D3:63:1A:BA:47:7A:CC:73:57:EA:24:96:9A:98:A2:61:1A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.172.0.0/18
Signature Algorithm: sha256WithRSAEncryption
14:ea:21:31:71:ad:65:a8:8e:14:f4:be:fd:b5:9f:76:dc:91:
4d:09:0e:c9:03:9c:b4:7a:1f:e9:0b:e5:ad:0f:6a:98:33:da:
95:07:b9:f8:7b:92:16:ff:bf:5e:9a:ec:48:2f:f5:9d:9c:38:
4b:43:2c:6d:ce:8f:bb:73:aa:fd:05:5b:dd:f9:08:e7:ee:34:
3b:57:dd:e6:86:26:8e:31:4b:2c:70:d4:3c:1d:d1:a3:b6:36:
4f:7b:26:17:c1:1a:14:19:2d:e2:94:0f:be:65:7b:22:fe:08:
c5:a5:43:18:0f:84:77:20:67:77:21:ab:06:87:63:e7:3c:b3:
d5:1d:e9:d9:8b:67:08:fa:e8:f9:71:17:f5:8a:4d:70:fe:57:
7a:78:c6:65:c6:86:0f:eb:3c:23:c3:1a:75:78:2b:94:2b:5e:
b6:f0:37:92:3c:b3:fb:63:17:f9:c5:90:c5:34:ca:aa:93:c1:
ab:1a:7d:af:dd:f2:08:7e:f1:89:da:88:08:54:5a:3a:53:2d:
6e:9d:6c:9f:90:e0:a4:38:7d:5d:19:19:a3:fd:74:80:06:a7:
97:5f:76:42:3f:de:0d:e9:6a:98:a7:fa:9d:2d:b1:48:e0:15:
1d:3a:80:c5:39:4c:13:93:25:1d:b9:c7:fc:fc:12:2f:a2:13:
ee:7c:e3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:10:07 2025 by rpki-client