Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d06c4360-59d9-4f8a-9e60-9ad149bb4f4a.roa
File: d06c4360-59d9-4f8a-9e60-9ad149bb4f4a.roa (raw, json)
Hash identifier: GrqgPOd1LS9N85vOKLlaw9GR/EAETlyOyWanW8ZhG60=
Subject key identifier: FC:AB:74:58:2A:33:73:42:E8:C1:39:61:2C:B6:EE:39:37:93:2E:46
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3084F1BFD12CF6FB80A55B09F20B243D30B404E3
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d06c4360-59d9-4f8a-9e60-9ad149bb4f4a.roa
Signing time: Tue 04 Mar 2025 16:31:11 +0000
ROA not before: Tue 04 Mar 2025 16:31:11 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 23.22.80.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:84:f1:bf:d1:2c:f6:fb:80:a5:5b:09:f2:0b:24:3d:30:b4:04:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 4 16:31:11 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7b:c6:80:1a:a8:9b:09:c3:d8:0e:bc:1d:75:
f2:05:41:4e:b3:1d:48:b3:e0:25:fb:2f:7e:bd:bf:
26:48:1c:7b:c2:4a:72:57:77:d4:f2:da:23:98:72:
78:3c:04:0d:3a:65:8e:01:ba:9a:f1:d9:88:41:6a:
8e:23:f4:71:ce:80:99:0f:2f:b9:db:20:9c:b3:f8:
7d:85:a7:c7:b5:16:e7:93:1e:40:4d:63:b5:1d:f6:
c0:41:44:40:07:f0:56:03:30:c3:57:cf:74:11:bd:
26:3c:76:e6:69:4f:d5:63:fb:86:e6:da:59:3c:81:
38:b6:65:1d:6c:a8:13:45:fe:95:59:4c:57:c8:45:
fd:ad:62:73:07:48:e7:82:a8:25:17:b7:5a:4c:17:
67:ee:66:9b:78:18:29:b4:b8:c1:f7:ec:2f:be:b3:
63:3f:05:b7:ec:d4:50:c3:56:80:97:1f:19:10:c5:
24:ee:48:cd:cb:d4:4a:50:6f:80:86:bd:2f:69:89:
f8:67:ce:1c:c9:56:cf:4b:ed:9e:7a:27:e6:c1:d7:
72:d8:a3:24:84:92:f4:f7:5b:1b:8e:42:ae:55:9f:
bf:62:8e:45:2c:d1:a6:03:6a:84:15:0a:7e:15:2c:
7f:36:b7:4c:e0:2f:b8:ac:8f:d9:a1:5c:c6:aa:7f:
75:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:AB:74:58:2A:33:73:42:E8:C1:39:61:2C:B6:EE:39:37:93:2E:46
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d06c4360-59d9-4f8a-9e60-9ad149bb4f4a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.22.80.0/20
Signature Algorithm: sha256WithRSAEncryption
03:ce:88:a6:dc:90:13:ec:fc:39:07:e1:43:7e:b4:7e:dd:b9:
d8:30:12:0d:b7:fb:b2:bf:d9:45:19:e5:dc:3b:9e:9c:6e:81:
2d:85:31:13:0e:df:54:9b:d2:99:ce:e5:e7:9b:cc:67:33:c9:
f6:04:8c:cf:aa:bb:b9:ce:31:2e:02:81:b3:f3:68:75:eb:02:
5b:6a:ae:c3:c0:e7:69:e1:f4:36:ff:bb:f1:07:41:c3:6c:c8:
b9:af:08:e8:d6:b3:7d:a5:91:3f:f9:8f:95:a3:f0:13:81:6b:
ba:4e:06:53:ab:e7:2f:1e:e0:8c:05:44:58:6e:1c:5f:33:50:
c5:80:27:51:dd:97:51:3c:30:ed:dd:b1:45:6b:10:64:f3:1a:
92:60:ac:f3:cc:d0:92:c7:f1:5f:c7:89:4d:dc:43:2c:b0:6f:
ba:7a:6e:1a:e9:76:5f:4c:61:eb:cc:32:a8:58:00:0a:dd:da:
a1:00:07:b4:29:dc:46:9e:ae:8d:a4:27:70:95:28:b0:ff:e4:
42:e7:a0:eb:ae:3c:1c:55:38:99:73:ac:60:59:ae:c0:46:04:
84:27:d2:e5:6c:2a:9d:35:1d:1c:94:da:09:2c:70:07:20:0a:
b2:85:cc:7a:e9:ab:1f:2b:a4:43:c3:8b:84:22:a3:80:dc:59:
f9:9a:5e:62
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUMITxv9Es9vuApVsJ8gskPTC0BOMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzA0MTYzMTExWhcNMjUwNDA4MjM1OTU5
WjB6MUkwRwYDVQQFE0AxMTE3NWJkZDVlNzFkNmNlZDVlMGRlZTEzMWI1Mjk4ZDk2
MGY1ZDE1NGZiODZlMDdmMjA3YTdhMTIyMWUzNDM1MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCae8aAGqibCcPYDrwddfIFQU6zHUiz4CX7L369vyZIHHvC
SnJXd9Ty2iOYcng8BA06ZY4Buprx2YhBao4j9HHOgJkPL7nbIJyz+H2Fp8e1FueT
HkBNY7Ud9sBBREAH8FYDMMNXz3QRvSY8duZpT9Vj+4bm2lk8gTi2ZR1sqBNF/pVZ
TFfIRf2tYnMHSOeCqCUXt1pMF2fuZpt4GCm0uMH37C++s2M/Bbfs1FDDVoCXHxkQ
xSTuSM3L1EpQb4CGvS9pifhnzhzJVs9L7Z56J+bB13LYoySEkvT3WxuOQq5Vn79i
jkUs0aYDaoQVCn4VLH82t0zgL7isj9mhXMaqf3WvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU/Kt0WCozc0LowTlhLLbuOTeTLkYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2QwNmM0MzYwLTU5ZDktNGY4YS05ZTYwLTlhZDE0OWJiNGY0YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQXFlAwDQYJKoZIhvcNAQELBQADggEBAAPOiKbckBPs/DkH4UN+tH7dudgw
Eg23+7K/2UUZ5dw7npxugS2FMRMO31Sb0pnO5eebzGczyfYEjM+qu7nOMS4CgbPz
aHXrAltqrsPA52nh9Db/u/EHQcNsyLmvCOjWs32lkT/5j5Wj8BOBa7pOBlOr5y8e
4IwFRFhuHF8zUMWAJ1Hdl1E8MO3dsUVrEGTzGpJgrPPM0JLH8V/HiU3cQyywb7p6
bhrpdl9MYevMMqhYAArd2qEAB7Qp3Eaero2kJ3CVKLD/5ELnoOuuPBxVOJlzrGBZ
rsBGBIQn0uVsKp01HRyU2gkscAcgCrKFzHrpqx8rpEPDi4Qio4DcWfmaXmI=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:20:55 2025 by rpki-client