Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1bfb161-fc7d-4e0f-908e-1419867b0e21.roa
File: d1bfb161-fc7d-4e0f-908e-1419867b0e21.roa (raw, json)
Hash identifier: RyEtDR+TXxRr8ppHE0REsWkWXmNHZ6tWyFUCZ7wUYp8=
Subject key identifier: F5:89:FB:7B:B4:1C:36:53:C2:DB:59:84:D6:72:E7:FB:02:A2:13:58
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 459F72E17BC574BB73E18D11FABAEFA59856B14D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1bfb161-fc7d-4e0f-908e-1419867b0e21.roa
Signing time: Fri 28 Mar 2025 16:21:52 +0000
ROA not before: Fri 28 Mar 2025 16:21:52 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fb8:5000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:9f:72:e1:7b:c5:74:bb:73:e1:8d:11:fa:ba:ef:a5:98:56:b1:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 28 16:21:52 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:96:b6:bf:f4:2f:1d:a4:8e:6b:8b:a8:1b:
03:b5:64:53:78:d1:42:1c:85:61:6c:2e:f5:27:24:
7b:8c:f2:77:e0:d9:d9:0e:59:9d:95:d3:69:b4:0f:
a1:84:6a:cb:e3:90:67:e6:fb:4c:5e:4e:41:47:04:
f0:d1:ce:c3:15:d9:75:b8:e0:ca:ee:e1:5d:a4:e2:
47:94:eb:95:11:ec:32:ff:d9:91:46:06:66:3c:df:
6c:12:07:73:e4:bb:af:38:e3:be:12:84:c7:b1:a0:
a6:14:bf:d2:e9:97:d9:32:ef:a2:0b:ec:03:b7:db:
dd:c8:4f:5a:b7:0a:5d:ee:e7:9a:b8:42:b7:c1:5d:
9c:06:97:5c:41:a9:cd:4a:5f:7c:10:bd:43:a3:0a:
95:ad:8e:8a:b5:9d:e3:b0:c5:dd:12:a1:a1:02:d0:
14:3b:91:d0:f5:fd:92:b7:80:79:64:4b:9c:93:c3:
e2:bf:e0:a7:4b:7c:02:28:6b:24:71:39:bf:be:5d:
b6:fd:8b:25:55:87:e0:73:b3:8a:c0:79:e8:54:47:
b6:08:e4:8e:81:23:d5:96:d6:a9:3c:05:09:d6:db:
1f:75:7b:15:f7:e9:c3:ed:11:7c:b3:6f:33:8e:c8:
7f:bb:95:c5:08:f8:84:fc:22:73:07:bf:76:05:18:
88:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:89:FB:7B:B4:1C:36:53:C2:DB:59:84:D6:72:E7:FB:02:A2:13:58
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1bfb161-fc7d-4e0f-908e-1419867b0e21.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fb8:5000::/40
Signature Algorithm: sha256WithRSAEncryption
62:fd:d3:c1:4d:08:9f:6e:24:86:59:00:a1:6f:e1:a5:0f:3f:
bf:f2:0c:ac:24:d3:76:37:2c:94:6d:f9:e8:10:a0:d0:5e:90:
bd:46:31:8d:c5:15:a0:81:34:95:94:2d:db:3e:5f:72:d9:c3:
27:a6:c9:11:3b:6c:ca:9f:09:5b:43:39:cd:ed:9b:22:e4:5e:
11:ed:e3:5a:f9:ea:77:8e:9f:5d:a8:39:28:be:71:db:5f:e2:
0a:da:f0:88:45:49:1c:b8:1e:16:4e:51:4e:06:91:03:23:4c:
8e:4f:b9:4a:87:88:77:ae:54:0e:79:b1:82:d3:f1:63:3e:cd:
ae:b7:d5:50:1d:50:e8:84:ec:c4:27:ec:a1:56:79:f9:5d:b7:
97:8e:9f:9a:c9:e8:8a:d0:4c:55:cd:fe:d0:7f:2c:77:2c:e2:
ae:7b:97:56:3a:42:24:7a:1d:ab:7f:72:46:7b:ca:d4:84:4b:
af:f2:81:b2:de:95:00:bd:02:6a:03:3b:65:af:30:30:a8:56:
12:4c:51:5d:09:06:f5:5f:53:58:45:38:5d:09:6c:e7:67:3f:
78:77:ad:35:45:97:0b:ad:e0:38:e5:bd:9f:24:e9:00:42:af:
62:3b:55:a5:20:c4:46:78:b6:85:de:b2:c4:3b:9f:8c:57:dd:
f4:54:b2:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:20:35 2025 by rpki-client