Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4e2a13f-7777-41ad-9df2-db48ea0d6fab.roa
File: f4e2a13f-7777-41ad-9df2-db48ea0d6fab.roa (raw, json)
Hash identifier: mS+MPygxLS7lwPtG0iORceUopkSR9wC9X3795NLvkNA=
Subject key identifier: F5:C6:2D:B0:9D:AB:BB:19:75:9B:11:E9:71:47:6E:BA:8B:F1:94:00
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3FBB65241615594BDB3A5964D83EDE2E2EC668A2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4e2a13f-7777-41ad-9df2-db48ea0d6fab.roa
Signing time: Fri 14 Mar 2025 00:42:09 +0000
ROA not before: Fri 14 Mar 2025 00:42:09 +0000
ROA not after: Fri 18 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 64.252.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:bb:65:24:16:15:59:4b:db:3a:59:64:d8:3e:de:2e:2e:c6:68:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 14 00:42:09 2025 GMT
Not After : Apr 18 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6f:f4:d0:93:8d:df:06:0c:b7:3b:50:d9:45:
9f:ad:51:07:10:b4:33:34:6c:de:1e:bf:34:7b:65:
a1:bf:75:62:81:02:38:39:63:41:d5:51:19:38:63:
58:a4:43:f2:92:5d:73:b2:8b:39:99:b9:ec:d7:a9:
71:e2:a1:31:3f:9f:5e:55:d1:f0:c1:58:37:18:6c:
4a:9d:4c:d2:81:e8:d6:14:d8:f8:c4:59:8d:9e:e2:
40:d0:c9:fa:34:59:31:e2:91:b1:de:f2:ce:4c:15:
14:68:c2:d0:91:96:e8:f3:c3:ec:c8:43:95:18:7c:
14:c8:60:05:8e:41:2a:b3:88:2a:61:00:be:f7:9b:
37:1c:ce:fe:1f:40:d4:9d:4d:8d:ab:dd:ec:d1:4d:
f8:58:e5:cc:7d:3f:dc:d6:8d:cc:2d:70:7d:db:d7:
54:02:0d:f2:1b:bd:b4:48:70:ae:4b:34:23:a2:b3:
d4:c8:0e:f3:57:7e:38:98:fe:92:9e:ed:8a:2c:e8:
4b:51:bd:2e:7b:b8:0e:ab:75:14:02:75:55:d0:9f:
d4:8a:be:d4:d3:25:27:bc:11:78:cb:0c:1b:cd:5b:
b7:3a:8f:88:75:7a:86:66:cb:d7:7e:01:02:26:0d:
79:15:63:a7:fd:a9:49:ca:74:a9:20:d2:1f:03:4c:
e7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C6:2D:B0:9D:AB:BB:19:75:9B:11:E9:71:47:6E:BA:8B:F1:94:00
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4e2a13f-7777-41ad-9df2-db48ea0d6fab.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.252.110.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:89:a8:eb:be:29:96:3e:47:6d:4a:a7:99:a2:8c:bc:b3:81:
20:45:02:05:8a:61:48:5e:ee:7b:54:cf:ca:42:f8:8e:d7:1c:
2e:1c:fe:88:ba:e8:25:9b:6b:9c:ae:5f:c6:b9:c8:ce:0f:99:
81:b0:a2:f1:c7:ee:f8:81:d2:92:77:87:07:18:71:00:a9:57:
19:e8:55:52:5a:c7:1d:ee:7b:95:04:fa:0e:cc:41:ed:fa:c8:
1f:cb:7c:00:50:72:40:79:0c:5a:d8:fe:07:b2:40:18:58:53:
4b:dc:db:a9:5e:8a:5e:48:29:e7:10:c2:62:a5:0b:fb:a3:d4:
f4:e7:b5:45:76:45:97:65:46:ab:5a:1c:39:44:f2:62:de:8d:
5b:5d:bb:11:5e:36:1f:72:6d:a6:b1:1f:79:c8:4f:8a:87:6f:
13:26:74:bb:d3:5d:69:08:3b:88:63:0a:f4:81:76:ac:b2:c9:
8d:b8:ad:0d:52:e9:47:3f:77:eb:08:14:c7:76:bb:4a:48:a2:
2c:3d:97:85:8a:10:f4:a5:bf:a2:29:04:a5:bb:d2:4b:4b:16:
63:cc:34:10:f4:27:3e:cb:22:64:f4:8f:1e:f8:48:16:d3:31:
6c:b5:60:f6:db:74:92:21:91:5e:33:b9:4d:2a:89:45:84:66:
27:8a:69:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:15:17 2025 by rpki-client