Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa
File: bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa (raw, json)
Hash identifier: FTdHiatiRdadBP07DcOBNJquhPsD/0HzEr9F//mOJX0=
Subject key identifier: 81:EB:E0:EF:C6:BF:6C:44:8F:C3:A2:F2:DF:A3:8E:58:64:8C:10:D4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 12C51198AE84B015D14A904C9DF0BCF7C3C3AB09
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa
Signing time: Mon 10 Mar 2025 15:20:14 +0000
ROA not before: Mon 10 Mar 2025 15:20:14 +0000
ROA not after: Mon 14 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 72.44.64.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:c5:11:98:ae:84:b0:15:d1:4a:90:4c:9d:f0:bc:f7:c3:c3:ab:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 10 15:20:14 2025 GMT
Not After : Apr 14 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f7:5c:c5:84:6c:f7:ce:82:08:f2:3b:59:05:
78:f5:cd:da:a2:53:73:94:c7:66:9f:f9:1f:35:85:
1b:08:11:56:b8:ad:8f:36:b0:a9:6d:94:4c:93:9d:
b5:93:cf:fa:75:b2:c3:b0:e6:8a:bb:ab:f7:e2:69:
4e:6d:51:72:ef:96:30:90:d9:9d:98:69:ac:f7:5f:
3b:af:f7:be:f6:91:ab:b9:df:9a:62:d1:e2:32:58:
b3:da:4e:f7:df:dd:f6:97:85:2e:a6:03:aa:c3:78:
8d:71:f4:0a:64:9e:3f:20:a8:71:70:c3:d2:65:b4:
32:3e:bf:b3:bb:e6:ac:1c:54:32:28:cb:63:96:ba:
cd:3d:65:87:37:7d:67:83:17:89:ae:66:39:fd:e6:
75:00:b1:c6:e9:e7:30:b9:a0:f4:db:61:0f:bf:d5:
2e:d4:4a:a4:13:58:1f:70:0d:1d:e3:2c:c7:0a:3e:
cb:27:a0:3e:63:42:10:48:14:81:96:17:af:95:ef:
c6:c0:a6:82:74:3e:0b:72:f0:d1:62:47:3d:b0:40:
ae:e9:4a:60:19:f9:72:b8:97:85:9c:45:57:f4:f2:
16:89:b0:15:25:cf:23:8a:7f:0e:02:a9:4d:7f:e3:
ce:a9:31:4b:8a:64:d4:69:95:6d:e2:7f:61:bd:65:
f7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EB:E0:EF:C6:BF:6C:44:8F:C3:A2:F2:DF:A3:8E:58:64:8C:10:D4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
72.44.64.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:98:82:f2:a7:e0:eb:da:80:20:78:84:8e:c0:48:f6:83:1b:
c1:fd:8a:2a:cb:42:e2:0c:88:5a:5a:ea:49:42:db:27:05:12:
8e:46:9d:59:be:a5:a9:cf:19:da:0f:c7:6e:18:ef:47:c2:d2:
a8:a1:ca:45:0f:dc:64:8e:63:8e:8b:ad:6c:96:62:4d:72:98:
f3:90:8d:c4:f6:14:cb:5e:83:15:3b:49:fd:4d:15:02:31:90:
7a:4f:11:36:e0:ca:73:6a:09:b3:04:ff:37:ce:00:2f:59:6d:
77:56:e9:a7:b9:bd:af:c8:a5:aa:15:f6:a4:53:84:83:b5:05:
2d:8e:e1:85:f8:bf:34:15:58:55:e0:aa:f6:bb:21:19:16:a8:
81:86:a7:27:e8:cb:f3:9f:d1:65:f7:55:30:f6:3c:f5:02:d7:
67:77:f8:71:12:a0:98:4e:19:94:76:29:59:b3:5d:c1:a1:df:
2c:14:5d:9e:0d:f6:94:cd:94:74:ff:6e:3a:1d:ff:d7:bd:78:
5d:a1:b6:17:3c:bd:ad:5d:11:c5:82:26:f3:b1:55:eb:37:72:
50:db:15:38:ff:c7:a4:05:d7:5a:08:ab:f9:ab:5a:80:8a:1b:
36:91:32:ff:03:3d:4a:9a:c9:5c:ed:36:20:d2:8a:24:b9:4b:
d8:08:f3:4a
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEsURmK6EsBXRSpBMnfC898PDqwkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUyMDE0WhcNMjUwNDE0MjM1OTU5
WjB6MUkwRwYDVQQFE0A0N2I4OGM0MjE5MjY1ZTY0Mzg2MGUzZWI4MmIxYjI4MWU2
M2FkYWIzOWE0MmY0Zjg1YmU0MjI1ZGY0ODY0ZjhkMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCc91zFhGz3zoII8jtZBXj1zdqiU3OUx2af+R81hRsIEVa4
rY82sKltlEyTnbWTz/p1ssOw5oq7q/fiaU5tUXLvljCQ2Z2Yaaz3Xzuv9772kau5
35pi0eIyWLPaTvff3faXhS6mA6rDeI1x9Apknj8gqHFww9JltDI+v7O75qwcVDIo
y2OWus09ZYc3fWeDF4muZjn95nUAscbp5zC5oPTbYQ+/1S7USqQTWB9wDR3jLMcK
PssnoD5jQhBIFIGWF6+V78bApoJ0Pgty8NFiRz2wQK7pSmAZ+XK4l4WcRVf08haJ
sBUlzyOKfw4CqU1/486pMUuKZNRplW3if2G9ZffjAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUgevg78a/bESPw6Ly36OOWGSMENQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2JjMzE4YjcwLTViODgtNGJmNy04YjZjLTlhMjZjZWU2NTEwOS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBARILEAwDQYJKoZIhvcNAQELBQADggEBAG+YgvKn4OvagCB4hI7ASPaDG8H9
iirLQuIMiFpa6klC2ycFEo5GnVm+panPGdoPx24Y70fC0qihykUP3GSOY46LrWyW
Yk1ymPOQjcT2FMtegxU7Sf1NFQIxkHpPETbgynNqCbME/zfOAC9ZbXdW6ae5va/I
paoV9qRThIO1BS2O4YX4vzQVWFXgqva7IRkWqIGGpyfoy/Of0WX3VTD2PPUC12d3
+HESoJhOGZR2KVmzXcGh3ywUXZ4N9pTNlHT/bjod/9e9eF2hthc8va1dEcWCJvOx
Ves3clDbFTj/x6QF11oIq/mrWoCKGzaRMv8DPUqayVztNiDSiiS5S9gI80o=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:18:03 2025 by rpki-client