Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
File: be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa (raw, json)
Hash identifier: c4kZTZ5eLuJfRQ+m/1DB3mwsptlo9ZbJv8R9hQO71YY=
Subject key identifier: 84:07:91:5B:18:74:95:E1:DC:BF:E8:EA:F8:1D:5C:1A:65:B2:3C:8E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 71BAD7AA5E46E87386AD2F9CB180342B90E8EC10
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
Signing time: Tue 11 Mar 2025 00:01:58 +0000
ROA not before: Tue 11 Mar 2025 00:01:58 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 142.4.178.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:ba:d7:aa:5e:46:e8:73:86:ad:2f:9c:b1:80:34:2b:90:e8:ec:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 11 00:01:58 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4f:8d:5b:a5:81:07:59:1e:36:60:06:01:39:
4d:54:9f:2b:b7:48:88:d4:3c:6c:a0:f6:07:69:3e:
ee:c6:2e:09:25:98:1c:4c:bd:36:21:f5:a7:6e:04:
f6:09:bf:50:3e:1d:66:75:27:b2:29:82:68:74:6a:
14:3c:06:b4:db:d6:e3:a3:95:e0:a1:86:83:07:5b:
6c:ec:f4:f2:18:c8:3a:c2:6e:43:91:7e:73:c5:d9:
ad:73:0e:7d:71:6a:7e:99:81:59:9b:7c:0d:7a:ab:
02:18:2e:fc:50:7c:6c:e5:3b:56:9a:f4:44:b6:47:
54:65:c5:41:2c:df:2c:0d:fe:9e:f4:87:41:da:0d:
83:f2:fb:72:eb:40:15:18:00:df:0b:bd:a8:32:02:
42:74:da:4c:b9:5d:5a:03:75:c1:17:57:50:72:e3:
44:14:d5:45:e5:ee:ec:54:e7:49:74:95:d9:4b:96:
37:8e:11:6d:27:e4:ed:bb:84:29:fd:9b:5e:b7:1d:
b8:99:bb:1c:59:38:50:a3:e0:53:77:fa:32:9c:36:
90:fd:61:52:db:c5:32:90:eb:c8:e9:e4:44:df:c0:
1e:3d:de:79:d4:81:f0:65:e1:0e:52:d2:18:9d:4c:
8b:2f:88:4c:27:47:08:9c:4d:aa:72:19:1e:5c:b2:
c1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:07:91:5B:18:74:95:E1:DC:BF:E8:EA:F8:1D:5C:1A:65:B2:3C:8E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
142.4.178.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:6d:d5:5a:43:8c:7d:86:71:2d:4e:f7:a7:48:20:1d:93:47:
22:d2:4a:1b:5a:d4:3d:a2:60:86:20:6b:10:74:55:8e:54:f4:
d4:ce:d5:50:0d:6e:f1:df:ba:07:8f:24:2e:e7:e9:e2:8d:92:
15:15:f1:c5:b5:dc:b0:b3:f0:bf:59:32:c4:e9:31:0f:bd:c0:
37:73:95:42:02:de:c3:f9:be:cf:03:1f:18:ea:24:ea:06:eb:
ea:27:5b:a4:76:34:62:7c:34:b6:ed:0c:7f:a7:04:f6:cf:06:
27:41:83:54:2c:a8:31:ca:5d:4e:e6:be:05:d3:fb:1c:1f:d5:
e2:7c:fe:7a:7a:22:a1:96:f2:be:b0:f6:2d:ae:0f:33:2e:0e:
75:ec:bf:80:41:14:07:92:5e:8a:15:50:ad:14:6a:44:19:32:
7d:11:f8:46:46:6a:f5:71:6f:7a:ff:4c:cb:8f:08:15:49:00:
48:2e:83:b5:c8:46:95:47:be:3f:8b:3b:19:b8:eb:a6:b3:b2:
ab:7b:d0:80:63:fb:04:d0:95:b6:16:8c:58:94:ab:6b:ac:b6:
1c:31:c9:2f:df:ca:6d:a2:73:87:78:19:83:be:85:95:05:b4:
f0:f9:3c:4c:10:8e:f6:83:f3:02:f2:65:66:76:1a:6e:6b:41:
ab:ec:33:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:18:02 2025 by rpki-client