Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa
File: c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa (raw, json)
Hash identifier: 288pws/ldb8dTKwU8RaxyGm7LC1722BNHQXq9BzSsb4=
Subject key identifier: E1:A9:5D:24:2B:F1:80:17:49:1A:BB:7C:C0:D3:15:A1:B6:4C:47:AD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 29A6FB8DBCB1CD29F60D1A145E65D77A8E99F58E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa
Signing time: Wed 19 Mar 2025 00:22:03 +0000
ROA not before: Wed 19 Mar 2025 00:22:03 +0000
ROA not after: Wed 23 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 204.17.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:a6:fb:8d:bc:b1:cd:29:f6:0d:1a:14:5e:65:d7:7a:8e:99:f5:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 19 00:22:03 2025 GMT
Not After : Apr 23 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:6c:3a:e2:52:21:cb:4c:46:ff:82:2a:1b:11:
e9:4c:70:aa:07:26:c5:cc:e6:47:33:cb:04:2d:90:
68:8b:01:01:0f:0a:95:82:f6:66:0a:34:30:20:9a:
f6:1d:6e:e3:f9:32:6a:1a:67:0b:bd:76:f0:5d:d0:
12:15:85:e0:cb:f3:65:81:20:76:8c:05:84:c3:9b:
9e:ec:b2:d5:3b:79:e8:da:c8:66:b2:28:14:37:80:
60:6f:11:b7:17:66:87:6c:bb:7b:3b:75:36:d6:a7:
0e:54:99:3b:36:94:0d:8b:e5:99:b6:30:0d:fe:f9:
25:89:a1:ba:9a:64:bf:37:7b:e5:80:5a:7b:94:79:
e1:ed:03:c6:0d:c4:7c:9a:5f:6d:22:f1:89:e1:1f:
66:75:a3:43:0c:d3:1e:65:84:92:f7:72:15:3b:5e:
89:7e:f4:a8:f6:18:b4:1b:ce:a8:8f:95:77:87:5c:
60:1a:aa:bf:38:b4:41:13:87:40:e8:16:c8:97:83:
13:53:35:ff:c7:a1:9a:e1:21:5f:20:77:04:45:61:
e5:4b:be:e7:0d:5e:cd:83:6a:5d:3c:8e:23:d3:8d:
b7:30:5f:5e:b9:cd:69:b5:5d:c3:ff:8f:bd:88:7d:
df:3e:62:5d:c1:10:5e:31:94:6d:e3:65:ce:9c:4d:
ba:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A9:5D:24:2B:F1:80:17:49:1A:BB:7C:C0:D3:15:A1:B6:4C:47:AD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c79c9547-b29c-4f41-b7c0-0fad2abd4863.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.17.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3e:68:cc:7f:08:cd:4e:d9:4d:e6:46:04:b7:80:95:02:02:f7:
d7:ac:d9:be:7f:32:80:8a:c3:a4:e7:b9:20:9e:ff:db:b6:52:
35:b4:44:6c:bb:ae:90:5b:2e:34:43:f4:5d:eb:62:03:a6:d1:
e7:2a:33:61:15:d2:0c:42:df:73:94:99:88:4f:38:73:d4:8c:
d6:d6:b1:d1:77:78:fc:c7:29:dc:97:59:5c:ba:0c:e6:cb:18:
f1:24:00:8f:14:0f:5e:99:6c:e4:87:03:ff:0c:36:88:7c:29:
f5:a4:36:4e:4a:66:95:e2:46:ea:b9:34:5b:06:0e:d4:e5:b6:
62:f9:fa:19:aa:f3:d4:6a:11:a0:10:a8:b9:18:ce:72:b0:9e:
ee:bf:d1:79:44:35:a4:06:2d:37:41:33:e5:c5:84:fc:8d:5a:
02:38:51:4e:28:25:bc:3b:58:4d:08:f5:c6:64:b9:e5:91:f2:
27:ce:51:3c:c3:96:a8:e5:70:5d:95:24:cc:de:e0:42:aa:7c:
db:f3:3b:c3:a6:51:9f:a3:5e:e1:ea:bf:6d:0f:0b:b5:35:07:
e5:fc:55:ab:ac:07:a9:8e:09:75:31:bd:39:58:ef:7f:44:4c:
c9:61:a9:c1:07:45:90:b0:f5:a0:cb:c8:3c:7a:d7:e2:fa:20:
26:06:ec:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 09:18:48 2025 by rpki-client