Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa
File: f962418c-9cd6-4d29-bc13-088cd1d70e66.roa (raw, json)
Hash identifier: igfk9OAoO++/bdhitT+H1RWwqsQ5XqJoHiUQFboFILA=
Subject key identifier: 17:B6:E1:77:31:51:1B:A7:6D:BE:B8:D4:F7:9C:C1:17:DD:B7:80:8C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 513224BD7D8003D95208719BF0A477630D1EC807
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa
Signing time: Tue 08 Apr 2025 00:01:05 +0000
ROA not before: Tue 08 Apr 2025 00:01:05 +0000
ROA not after: Tue 13 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.93.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Thu 10 Apr 2025 00:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:32:24:bd:7d:80:03:d9:52:08:71:9b:f0:a4:77:63:0d:1e:c8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Apr 8 00:01:05 2025 GMT
Not After : May 13 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:46:a4:ba:84:8c:33:5e:0d:19:7f:01:b6:9c:
3b:fc:76:63:4f:e5:37:4c:75:8d:5c:bb:c9:64:de:
8b:ac:7e:f2:b7:2e:db:ea:8f:52:90:61:14:c2:87:
0a:27:89:f7:66:6f:59:74:41:1b:8e:66:9d:cb:d7:
5e:79:fc:5d:02:9f:10:8c:8d:aa:67:a2:16:b4:3c:
51:b2:64:fe:18:6a:97:9f:c2:43:8b:0e:a0:14:78:
80:49:13:74:6b:73:f7:d0:1a:40:e0:b7:e7:76:37:
75:92:b5:e5:f4:c3:a3:49:1a:f1:c8:87:31:6e:6d:
c9:0e:0a:c3:38:0b:cb:67:3a:f4:68:83:d1:8f:9d:
d6:dd:f9:f3:82:e3:75:4d:b3:f5:a0:2d:29:67:48:
e2:52:11:a8:c7:7a:86:ff:cf:64:c4:a3:1e:1f:00:
70:c0:15:c6:3e:c5:ba:df:13:26:ba:53:45:f3:08:
40:3f:23:40:f4:a7:21:b6:b6:3b:dc:31:13:71:75:
fd:0f:fe:9a:40:b9:5a:78:68:bb:97:b5:60:ab:87:
fb:05:66:71:3a:23:fb:17:2e:88:62:27:82:d1:d5:
51:83:ba:d9:2c:fa:96:12:b5:f1:25:96:a1:9b:06:
4d:27:99:50:91:7b:89:93:49:93:6b:42:7a:14:74:
cc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B6:E1:77:31:51:1B:A7:6D:BE:B8:D4:F7:9C:C1:17:DD:B7:80:8C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.93.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c0:81:b9:2c:97:d2:fe:ad:17:68:2b:c4:23:1f:c6:a1:93:27:
ea:e1:41:9f:79:23:0b:fa:cd:e9:a2:f4:32:90:5e:c1:b4:fb:
53:ce:ab:b8:67:1f:e5:77:97:23:c0:25:b5:ff:47:96:e9:d7:
4c:d3:9b:94:5d:7c:a6:e7:90:84:97:63:dd:d0:7f:92:ad:40:
a4:9a:e7:7f:84:5b:26:7a:d1:34:f6:8b:bf:91:c3:f1:3b:ef:
38:92:60:15:cb:29:ae:e9:38:d2:8a:9d:8a:22:46:2c:24:09:
f9:d8:48:d8:5f:b1:5b:8c:c2:1f:3d:a0:19:a5:28:55:81:04:
9f:a2:2d:fa:72:95:ac:5b:bd:4c:1f:d1:30:66:d9:3b:1d:24:
3f:aa:b3:9b:69:3f:6f:de:d8:b4:b0:fb:6c:94:be:a7:44:b2:
e4:41:f1:3f:d8:a5:05:b8:dc:68:66:c6:72:a8:d9:50:43:4c:
9f:1d:34:05:dc:b8:98:25:91:f1:f2:b3:0e:28:89:fd:a5:6f:
d1:95:63:66:92:d5:1e:f1:6c:dd:43:ae:bb:b2:40:89:86:06:
8b:e9:b0:7a:f7:3f:f6:44:99:f6:5c:37:88:f6:17:08:21:62:
60:d9:bd:ef:53:57:57:3a:99:47:cb:b1:9d:3e:26:56:f9:af:
65:f0:27:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:13:02 2025 by rpki-client