Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa
File: f27b7999-d38a-4b9b-9aff-302f3d69984e.roa (raw, json)
Hash identifier: siVzq4IvYzhdT6jEKRkQeBu1rbx2jwI69++YSwoidBk=
Subject key identifier: 04:2C:51:E9:C4:E1:78:0B:1A:F3:59:06:2E:6D:DA:3A:D9:B7:D5:D8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3D6DB4CD3A6EECE6A29ED508429FDF39440CB43E
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa
Signing time: Sat 29 Mar 2025 00:50:21 +0000
ROA not before: Sat 29 Mar 2025 00:50:21 +0000
ROA not after: Sat 03 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 204.236.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:6d:b4:cd:3a:6e:ec:e6:a2:9e:d5:08:42:9f:df:39:44:0c:b4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 29 00:50:21 2025 GMT
Not After : May 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e7:e6:1e:fd:1d:8c:08:28:68:f4:f3:cd:f9:
e4:7a:01:e8:e8:a2:b1:89:29:24:5a:57:36:48:4b:
c4:cf:6e:bb:a8:89:7e:67:ed:83:d4:69:30:c4:56:
be:7c:ae:af:d9:fa:2c:c0:1b:16:77:3d:bd:27:31:
a6:63:fb:1e:83:71:4d:ea:8d:d7:08:a8:6c:91:f2:
5b:cc:28:e0:0a:fa:df:df:98:ce:53:38:d8:23:29:
95:8f:6a:9a:01:ac:01:9b:ef:11:b4:05:c1:69:dc:
f1:11:58:03:28:a4:72:c9:45:cd:61:58:7d:97:d4:
07:b0:be:e3:ad:3d:bd:2e:bd:23:dd:c1:92:e2:e8:
99:bc:16:ca:15:a4:20:aa:d5:20:b8:6b:27:15:c4:
fa:94:ac:81:e6:ba:67:90:9b:b0:08:91:d7:c1:49:
2f:13:a5:cf:29:04:b1:b0:f2:e0:96:f8:de:a1:b9:
d8:b9:ff:a9:68:a8:ad:2c:35:3a:a4:93:6e:09:e9:
57:c4:a9:6e:7e:af:a6:93:a1:aa:04:f6:c1:cf:ff:
c5:07:c1:3d:f7:da:61:e1:0c:a3:66:f9:a4:6e:2f:
87:65:3c:7d:44:9d:43:d4:86:a0:3b:e2:b1:21:5a:
c8:80:39:9b:7b:57:8a:f6:77:b6:a9:f4:33:cc:81:
f9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2C:51:E9:C4:E1:78:0B:1A:F3:59:06:2E:6D:DA:3A:D9:B7:D5:D8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.236.132.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:8c:ca:ce:ac:e9:59:78:03:0f:58:b0:fc:af:75:9a:f6:e2:
a0:97:7a:1c:61:41:02:71:79:3c:b3:a7:b0:e9:af:5b:ba:e5:
8d:ff:07:52:53:0b:20:13:85:ea:6b:12:25:be:ac:48:c8:49:
34:f0:43:37:9f:ed:79:3c:f9:d1:93:57:da:16:3e:be:09:7e:
1e:c3:99:ef:7a:ab:af:f0:76:c9:02:16:82:d2:68:84:54:d0:
48:b1:66:71:ef:de:fb:28:98:a0:f8:96:d3:d7:39:b2:82:b1:
f0:81:37:31:0c:7a:ce:8b:8b:46:03:02:3c:29:49:c7:d1:c7:
98:28:ad:81:80:9f:80:f7:21:2b:48:aa:8a:83:4f:ae:14:21:
08:25:8d:31:96:de:88:72:70:95:de:5f:f8:4c:49:e9:18:ed:
4d:42:a2:8d:e3:db:de:0c:ab:bb:25:84:ea:ba:62:10:af:2f:
e9:b4:74:e0:c9:18:e1:0c:19:42:39:4a:71:71:30:8e:78:6f:
2c:5c:e7:82:94:2d:92:de:12:ac:74:07:ec:da:20:1f:cc:ac:
68:3c:e8:9d:a7:2a:8d:ca:98:4f:cd:22:aa:0f:22:79:08:95:
95:23:3f:f2:d7:9c:73:fd:6b:66:7c:6b:53:a5:ec:56:12:4d:
30:66:12:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:10 2025 by rpki-client