Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6aed18e-4181-45db-aec2-a8eeb50789dc.roa
File: c6aed18e-4181-45db-aec2-a8eeb50789dc.roa (raw, json)
Hash identifier: 36vIredt1MZuN7BOwZZdCHxSXXoK6Yj4233Uj6G9IXc=
Subject key identifier: 61:D1:CB:93:16:80:A6:52:9A:62:47:15:D2:1E:A9:88:D8:4A:C6:53
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 68F8568EBC4EC2A6C9479D20B3D28E292299447D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6aed18e-4181-45db-aec2-a8eeb50789dc.roa
Signing time: Tue 11 Mar 2025 00:10:30 +0000
ROA not before: Tue 11 Mar 2025 00:10:30 +0000
ROA not after: Tue 15 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 98.68.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:f8:56:8e:bc:4e:c2:a6:c9:47:9d:20:b3:d2:8e:29:22:99:44:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 11 00:10:30 2025 GMT
Not After : Apr 15 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:5c:cc:41:b1:af:63:cc:fe:cb:64:fc:96:
a7:f3:ba:4d:e8:9b:12:c4:27:70:66:c4:e1:0b:76:
3b:7d:e4:9f:c3:74:38:32:21:4f:19:8e:26:20:83:
5b:87:54:26:3f:c8:e5:ac:66:57:81:68:51:e6:91:
54:0f:dd:bc:50:9b:97:6b:85:4b:7a:39:ef:7c:3a:
14:76:f4:ec:15:65:ce:61:e3:c4:71:84:b9:bb:2d:
0f:11:ee:04:16:2f:42:68:f8:7c:b4:e7:01:e6:7b:
42:af:b5:e6:a9:be:ec:a6:8f:a4:21:73:29:3a:73:
23:24:63:84:64:d0:29:90:db:5e:e2:fc:0a:72:67:
7a:fc:53:65:d6:dd:21:7c:a3:a6:2c:8f:20:29:00:
04:b2:bb:e1:b7:16:4e:9d:dd:9d:27:ec:79:37:83:
02:41:c8:01:5b:ed:bf:9e:d2:62:7e:84:0c:95:8d:
db:bd:5f:21:16:d5:53:c2:e2:be:fa:ed:d0:d9:f1:
78:8f:41:2a:b3:d7:a5:d1:8e:c4:b2:b3:86:63:79:
27:d6:1c:1d:6b:ee:f0:29:96:28:18:aa:36:69:6b:
20:67:e9:79:14:96:5a:de:c2:73:71:6e:4a:92:3e:
c5:78:d7:b6:e8:fa:a8:63:69:09:17:b3:d5:38:39:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D1:CB:93:16:80:A6:52:9A:62:47:15:D2:1E:A9:88:D8:4A:C6:53
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6aed18e-4181-45db-aec2-a8eeb50789dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
98.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:48:0e:4b:29:6c:23:95:c7:d4:f3:69:ac:ea:c7:4c:25:b9:
88:51:c3:12:00:96:c7:a1:6a:26:33:ec:aa:5b:ce:24:74:08:
dc:ab:a6:bb:f3:26:bc:18:30:5a:c9:01:d8:03:04:b7:6d:9b:
50:0f:d2:a7:70:d6:eb:db:25:dc:b8:ae:63:53:69:98:b2:78:
66:37:64:31:1d:ac:b2:51:80:5c:59:c0:17:b2:9b:57:b1:70:
d6:f4:6e:8c:8c:49:48:0f:08:c8:3b:a0:ee:df:89:15:e5:bb:
85:35:99:ee:ac:66:7d:47:5f:6d:7a:65:5c:1b:6c:67:b1:f6:
e1:64:61:5e:3c:4e:d4:c6:92:bf:2b:9b:36:58:11:27:5f:2d:
5d:b1:a4:e7:d9:1c:23:48:1c:28:32:ac:23:82:b9:80:46:05:
78:90:9b:e2:c6:06:1d:96:95:bb:a7:33:c7:2a:fd:fd:0a:a1:
05:ec:0a:2e:1f:91:fe:22:55:ba:3f:df:bf:10:98:1b:6a:ba:
31:ad:61:5f:1c:3a:5e:39:35:1f:f7:58:be:bf:a2:44:94:d6:
ca:aa:72:6c:68:e0:b7:82:fa:62:d3:56:40:1b:59:0c:71:6b:
78:40:06:b7:eb:e9:0d:84:e7:66:89:e4:a7:4a:f4:a7:78:fa:
ca:2a:d1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:18:37 2025 by rpki-client