Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa
File: b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa (raw, json)
Hash identifier: jJXoJVjlmP+F4n6K0fdRiA/u2Ltmwrnf2eW8yZdGfUM=
Subject key identifier: 5A:97:C3:3C:F6:D3:17:77:02:4C:EB:B6:5C:2A:B4:E8:54:E8:BE:53
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4296005A027040166A4011BB96D816A963F2BC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa
Signing time: Fri 14 Mar 2025 00:50:13 +0000
ROA not before: Fri 14 Mar 2025 00:50:13 +0000
ROA not after: Fri 18 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 76.223.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:96:00:5a:02:70:40:16:6a:40:11:bb:96:d8:16:a9:63:f2:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 14 00:50:13 2025 GMT
Not After : Apr 18 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:64:34:ba:67:d2:41:f4:6c:db:81:42:bb:96:
41:b7:f0:de:fd:8c:34:ae:e9:f5:b7:b1:aa:74:22:
aa:b6:6f:8c:5e:d7:ae:9f:c5:d1:9e:77:25:13:fb:
8e:c1:d5:26:83:37:47:af:ae:7c:01:1c:af:e0:51:
91:9d:e6:1c:c1:b1:db:4e:a0:7c:bc:db:3b:38:ee:
20:bf:8b:83:46:2a:7f:b3:bb:41:a7:0b:a4:fe:94:
bb:16:ec:37:3e:81:e5:89:7d:8d:55:f4:59:54:23:
68:7f:4d:27:36:f3:cf:87:5b:a5:9b:7a:0b:e2:6b:
fa:a5:c9:86:a4:fd:19:b5:f9:8a:73:c3:ba:4f:69:
20:0e:a7:ea:a7:fd:49:26:c4:a9:5d:d1:55:02:a8:
8d:cc:de:e7:6d:74:06:65:41:26:0f:ab:d9:88:74:
bb:ac:5a:2b:4b:fc:27:da:ae:d8:92:26:d1:04:45:
f1:50:d3:2d:8c:ca:91:0a:64:a1:24:14:e0:30:b8:
c9:eb:12:77:93:01:d7:d0:bb:92:88:37:be:98:f7:
52:00:d9:43:a0:99:ef:d9:ff:88:dc:7e:25:d8:62:
38:11:7f:2d:95:42:50:69:77:a2:6e:e5:b9:c1:a5:
20:0b:70:c3:20:5f:bb:41:3b:54:05:9a:83:c4:43:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:97:C3:3C:F6:D3:17:77:02:4C:EB:B6:5C:2A:B4:E8:54:E8:BE:53
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.223.135.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:50:c2:4f:5e:fc:a3:d3:e2:2c:93:67:f6:7f:ad:1c:ef:a0:
86:88:f7:b9:b0:38:b1:02:54:00:42:fc:0d:09:89:f7:ea:28:
bc:52:3b:76:d0:9c:36:7f:95:0b:83:9d:76:f8:7f:63:17:b8:
99:75:25:59:e4:33:df:23:d1:1c:a8:e0:a8:2d:25:f6:f5:6d:
d5:9d:60:19:ab:cd:ab:92:57:12:14:33:5a:d2:b7:7a:f4:0a:
e7:bd:5b:bb:f3:7c:7b:6a:9c:e0:b5:eb:08:c6:6b:91:fc:00:
15:de:30:63:18:83:89:c0:c6:a1:48:2e:51:12:23:ee:f2:34:
39:d5:01:6f:eb:ab:80:a4:99:59:83:c6:f5:a5:4a:dc:b7:36:
d7:d9:ad:1a:cd:f6:29:95:b9:2e:17:3c:71:37:79:b1:6d:1f:
19:d0:59:6b:3a:5a:c7:5e:1d:df:8d:ff:8f:c2:78:aa:b8:cd:
97:07:57:8e:bc:5d:47:5c:b8:73:61:54:ae:1e:f6:58:f7:70:
26:98:47:1c:1c:77:c7:bd:ed:3a:66:19:40:31:1c:dd:d6:d1:
9f:bb:6f:d2:ad:a5:f5:03:93:75:e6:2a:82:e4:b6:a0:7a:b8:
f4:bc:44:20:8f:77:27:b4:f6:c0:3d:8a:4a:39:74:32:22:48:
ca:92:57:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:08:19 2025 by rpki-client