Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
File: e39acb10-dc05-4631-8e59-5d2e1d30517e.roa (raw, json)
Hash identifier: 1YcFClHPoOLU3mjDi95Gx+n0jbCN/7UGR5J+6QWeAcY=
Subject key identifier: E3:C8:26:8D:49:20:37:EE:AC:C8:6F:39:1B:2F:76:AF:8F:0A:8B:FA
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7FE7AF88F4006BEE69164FE0A39CC8D6DEA11EEB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
Signing time: Sat 15 Mar 2025 00:30:22 +0000
ROA not before: Sat 15 Mar 2025 00:30:22 +0000
ROA not after: Sat 19 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 69.38.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e7:af:88:f4:00:6b:ee:69:16:4f:e0:a3:9c:c8:d6:de:a1:1e:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 15 00:30:22 2025 GMT
Not After : Apr 19 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:42:2f:de:9e:47:aa:d5:0c:5c:ec:5c:d1:99:
1e:b3:cc:7c:f3:9c:1e:84:e8:17:4a:37:f2:d3:30:
59:ac:e1:f8:33:0f:da:65:02:e3:c4:2f:9f:05:14:
3d:ee:45:06:1c:8f:da:0b:86:61:8d:0c:5e:95:a3:
36:1d:4c:f6:d3:db:77:47:03:c6:f5:81:ed:2c:fa:
35:42:47:d4:c9:14:8c:b1:22:e7:3e:e8:82:b5:d6:
b9:22:1e:16:96:f4:ba:88:be:61:22:63:e5:ee:c2:
db:44:d6:da:54:97:47:1b:67:07:a1:cc:d4:10:81:
0c:49:ce:8b:8c:37:44:f7:2d:be:b9:98:12:41:23:
a6:1c:f8:69:bd:b8:f4:fe:59:b0:ce:4e:25:0c:83:
8f:87:94:c8:c9:25:fe:3f:33:ac:65:7a:e7:6c:0f:
1b:c7:50:05:ed:54:d5:47:0f:f3:55:50:9f:2f:c2:
c4:76:37:17:8c:81:79:6d:12:ec:38:b2:ac:68:e4:
ec:56:49:6c:67:35:5e:07:5e:e9:6c:fd:68:39:65:
5d:78:c1:6b:da:b7:fd:e9:c6:53:6d:8a:f4:9f:b8:
85:0e:bb:1e:72:a1:4f:c2:df:ea:4c:2d:30:95:ef:
23:e9:b1:a5:a6:59:5b:3d:d4:af:72:3a:e7:11:78:
ca:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C8:26:8D:49:20:37:EE:AC:C8:6F:39:1B:2F:76:AF:8F:0A:8B:FA
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e39acb10-dc05-4631-8e59-5d2e1d30517e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
69.38.0.0/17
Signature Algorithm: sha256WithRSAEncryption
88:a6:27:7d:04:c3:3a:85:46:fb:01:64:b8:cb:58:9d:93:b2:
02:14:ab:08:6d:5c:c3:81:90:b5:70:86:e9:63:5b:41:7e:77:
87:64:40:f7:e5:18:47:b8:81:50:68:89:b8:c0:ce:e5:cf:38:
82:88:ee:a6:f2:39:b1:f2:b8:af:f6:a7:2c:db:1f:91:d0:99:
9b:fe:a4:93:86:c3:38:62:e8:a7:02:a4:d5:94:a4:e5:d8:d0:
e4:77:80:45:cb:f3:4a:db:22:27:37:5f:36:3e:f7:3a:8b:27:
6f:7a:d2:6a:bc:d6:df:1e:2c:3e:2b:3b:3a:e9:5e:46:23:d3:
9d:73:ea:cf:ea:a8:80:00:9c:9a:07:56:10:66:08:5a:b6:0a:
b3:2d:77:f2:b7:4d:df:a1:ce:51:1b:4d:1b:57:71:85:10:93:
ae:73:3e:75:07:71:74:30:fa:68:6a:fc:c1:f1:42:3e:d2:8d:
6b:7d:c2:67:40:ac:9d:0a:66:cf:70:71:f9:3e:9d:29:3c:5b:
fc:9b:49:87:23:e1:52:3e:50:a9:36:18:45:8b:d2:f1:d0:01:
fb:a1:91:87:30:1e:59:d3:a3:63:ec:07:97:04:c7:e6:3c:51:
cd:3f:a7:41:e8:10:6e:91:36:4b:44:9c:eb:5a:8e:75:9a:7a:
c7:f1:64:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:46 2025 by rpki-client