Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa
File: bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa (raw, json)
Hash identifier: /tZB25yCd+hosuG7cks1yAYqifQC95wpACqeYcT3tzs=
Subject key identifier: 98:07:B6:9E:DD:B3:F4:A6:9C:DA:01:A5:1B:82:8A:8A:B2:EE:A5:F2
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5AE186705C5B509684F0F7C5542F81A64AA217F2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa
Signing time: Fri 28 Mar 2025 17:11:34 +0000
ROA not before: Fri 28 Mar 2025 17:11:34 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f1d:4000::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:e1:86:70:5c:5b:50:96:84:f0:f7:c5:54:2f:81:a6:4a:a2:17:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 17:11:34 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fb:e3:c4:59:21:88:59:d0:47:6e:3b:0e:e0:
c1:84:0b:67:bf:fe:f1:cb:8e:d4:75:4d:d6:16:1b:
ca:a9:92:1c:cd:e1:6a:a8:32:37:0e:53:a3:66:24:
cf:e9:5e:be:25:df:46:46:02:d4:1f:21:98:54:02:
fd:ee:c9:c2:ec:32:ae:fb:6e:87:7a:3a:db:79:ff:
00:9a:37:85:44:0b:9a:2a:d6:b7:2d:3c:e8:a2:79:
e3:49:41:92:cc:31:08:0b:a1:5a:16:62:d5:32:ca:
a3:a7:df:39:ed:f9:a7:06:36:22:c2:5c:06:b3:df:
9c:30:fa:e6:0e:64:59:d3:33:76:e8:ad:b2:9b:dc:
0f:dc:f6:65:29:78:2a:df:94:1d:7e:23:54:e8:3d:
6d:77:04:db:53:24:7f:ea:5a:bf:87:f2:b8:14:38:
81:b1:81:5d:a8:12:29:8a:a4:08:84:ec:fd:3d:be:
de:92:e6:0a:13:20:3e:cf:63:0d:1e:6f:95:1e:34:
e1:b7:bf:45:b5:d2:db:10:7b:3b:c2:f5:b1:e8:11:
ce:e3:40:f0:f1:de:e2:95:45:a3:03:0d:40:41:58:
74:b4:7e:51:f2:10:8e:ea:02:06:e1:37:1c:07:ff:
55:aa:00:45:56:1a:7d:92:25:f2:86:12:8f:44:06:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:07:B6:9E:DD:B3:F4:A6:9C:DA:01:A5:1B:82:8A:8A:B2:EE:A5:F2
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f1d:4000::/37
Signature Algorithm: sha256WithRSAEncryption
c2:4a:b5:9e:a3:91:29:4f:28:ac:59:7c:5c:8d:da:b5:df:31:
1a:11:3a:ff:4e:6e:2b:bd:35:2b:85:6c:f9:b2:bd:13:6c:64:
1d:28:77:7c:69:da:45:5c:b9:d1:18:c0:cd:bf:35:ab:f2:b5:
d6:92:ea:ab:b6:a3:07:ee:43:bd:4d:79:c1:eb:39:a2:6f:80:
74:cf:c4:21:54:9d:3f:24:c6:11:a6:63:a3:5d:5c:0c:dc:27:
a0:9b:97:10:4f:1f:1c:5d:e0:eb:52:34:ab:c6:c9:22:2d:0a:
ea:d3:04:cb:2f:ea:af:67:9d:41:c0:31:1a:81:30:d3:5d:c6:
39:48:54:c9:ab:7d:98:10:55:9e:17:38:df:7f:37:f7:f6:87:
50:75:8e:09:a3:ae:1e:96:1f:7d:18:a5:d4:ab:85:15:ca:29:
90:c8:c8:6b:a2:fd:ca:23:b4:f2:77:b1:e1:81:17:15:62:1e:
8e:9b:fa:81:67:85:10:a5:06:ae:a8:0c:ef:09:00:f8:2f:54:
c5:32:3d:a1:60:aa:be:46:e1:a8:65:b8:0e:63:41:09:72:58:
c5:4e:53:c3:44:35:51:c7:19:14:2d:aa:04:05:92:15:12:c5:
22:61:ca:79:97:f1:09:3e:25:da:cd:94:3b:c2:b0:d6:9c:42:
fe:66:9a:11
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:11 2025 by rpki-client