Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8f5305d-5841-42e2-ad49-6c34831c42bb.roa
File: d8f5305d-5841-42e2-ad49-6c34831c42bb.roa (raw, json)
Hash identifier: ej9PH8992cQOzu+GNl3JDV3TU1sxXpZ00wxekkfYzuU=
Subject key identifier: 6B:85:B6:9A:BB:B0:54:E6:62:DA:17:64:47:CC:94:C2:AA:E2:22:12
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 448A2F492029CB0794492F0C40AFC54B4B98B431
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8f5305d-5841-42e2-ad49-6c34831c42bb.roa
Signing time: Sat 29 Mar 2025 00:40:27 +0000
ROA not before: Sat 29 Mar 2025 00:40:27 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 161.193.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:8a:2f:49:20:29:cb:07:94:49:2f:0c:40:af:c5:4b:4b:98:b4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:40:27 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:73:74:e7:af:7d:c7:0a:3b:11:fe:3e:d1:4b:
af:f1:6b:98:15:e9:ab:0b:e5:ef:80:02:53:50:47:
67:e7:5a:7b:c4:23:2e:0e:44:78:a0:d4:0c:1a:71:
64:55:57:b1:37:6d:42:d5:39:72:ba:f0:bb:76:05:
e8:c1:b9:ea:94:71:1a:a0:da:c9:19:df:ee:12:94:
8a:55:5e:15:2c:f0:cb:1a:e6:70:45:a4:32:fe:7f:
a7:4b:5c:bd:53:34:c5:5e:c1:63:b9:20:7f:60:a1:
ac:cd:b5:d0:c9:fb:7f:4f:e4:1e:f9:c7:16:75:15:
8d:3a:17:25:2c:4b:42:fe:e0:e6:84:17:3d:10:f2:
d2:cb:e9:4c:36:6f:94:d0:46:0b:df:de:d1:31:8b:
22:4c:85:0f:34:f6:df:20:33:59:3e:5d:cb:cf:37:
34:77:ec:d2:3b:c2:9d:88:27:36:33:46:17:e7:56:
46:1f:a4:ef:cb:1c:6e:bb:da:fd:de:bb:f9:fc:e4:
b7:a8:20:b4:3c:97:ea:3f:fb:2c:80:f2:23:ef:cd:
91:fd:ab:87:03:6f:d0:4f:38:3c:23:1a:80:a5:42:
5b:32:9e:2d:44:11:56:6c:22:5f:33:29:dd:bd:d2:
1b:05:e9:c2:28:f4:9c:aa:f4:26:ae:29:97:4c:29:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:85:B6:9A:BB:B0:54:E6:62:DA:17:64:47:CC:94:C2:AA:E2:22:12
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8f5305d-5841-42e2-ad49-6c34831c42bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.193.0.0/19
Signature Algorithm: sha256WithRSAEncryption
58:83:05:a9:86:58:46:0a:f3:33:1d:05:1b:70:9d:c7:c9:42:
32:99:49:e1:6c:6a:90:16:d2:09:9c:16:19:b2:bd:83:5d:ad:
47:4e:c3:48:3e:63:d7:2c:f8:95:36:a4:40:cc:e4:eb:72:fd:
50:14:f2:95:a1:19:d4:ba:69:02:2e:04:7b:2b:96:26:c0:fe:
00:ad:56:93:36:5e:5c:11:82:14:96:ec:0c:a5:fe:84:38:41:
af:4f:a1:d6:9f:25:be:9d:43:80:d7:a0:e3:18:00:62:f4:d5:
76:1c:d6:54:c5:7a:25:ca:06:74:5c:56:ef:56:95:10:b0:a4:
c0:77:3c:93:b0:5a:92:8b:ac:6b:64:73:24:77:72:c1:7f:b8:
9e:9c:2e:17:68:85:bd:8c:10:87:d9:af:bb:af:35:1b:be:95:
25:7e:86:38:78:49:32:65:fd:09:e7:4c:dd:1b:b8:0d:f1:be:
45:e0:29:28:dd:af:83:86:33:b1:d6:21:4c:81:a7:dc:c9:d5:
57:2e:75:53:01:82:58:da:5c:e4:df:b4:25:30:f2:b7:27:50:
fa:2b:9d:62:18:b0:57:6d:82:18:cf:74:81:6b:cb:93:72:28:
08:6b:7b:36:a7:9f:0d:62:e6:ed:cc:fd:4f:c6:cc:5d:1d:ab:
92:d0:17:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:04 2025 by rpki-client