Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa
File: 5362b40e-d987-4a9d-8f30-59c3b7075db1.roa (raw, json)
Hash identifier: p4uK7BdUP3mC80C3vELVoY/iIqfwGXckTqMbBmHhJGc=
Subject key identifier: D6:EA:F1:ED:8F:DA:1B:26:B6:F3:55:7A:00:0D:06:2E:2B:F7:A0:44
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 7A2C1AC02525C4EF2789F6170617916BFC938FFF
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa
Signing time: Mon 31 Mar 2025 18:41:07 +0000
ROA not before: Mon 31 Mar 2025 18:41:07 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5530::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Fri 11 Apr 2025 21:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:2c:1a:c0:25:25:c4:ef:27:89:f6:17:06:17:91:6b:fc:93:8f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 31 18:41:07 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:ae:ab:b1:ab:dc:45:9e:c3:51:84:da:79:
df:ae:58:57:fa:9f:7e:28:7f:0d:61:54:f0:4d:9c:
3b:00:28:46:bd:35:a4:fd:f1:af:66:cf:c6:98:a3:
38:47:2b:64:f4:9f:65:9d:40:6c:91:3e:70:85:e0:
af:fa:2b:4c:b6:0d:12:f3:49:a4:e2:6f:bd:b7:d1:
26:79:85:9f:90:88:1e:6b:8a:0a:cd:24:e7:7a:66:
fc:91:79:60:79:d2:77:4e:6d:38:00:e9:29:b6:61:
e7:d7:e6:96:ef:66:24:ad:c8:39:8f:c1:df:25:1f:
52:d3:8a:e9:66:df:07:e0:70:4b:6e:05:78:69:25:
a0:88:85:bd:5d:2e:05:ed:cd:af:a1:61:cc:f9:4b:
c7:d3:dd:ed:8d:6a:39:1d:a7:59:82:c8:d9:2f:aa:
76:6a:e4:06:0d:70:85:9e:79:07:27:61:df:4e:91:
fa:bc:3d:b5:d6:99:74:c2:bb:ee:7e:2f:54:e6:97:
33:1c:26:6e:7e:40:e9:55:09:2d:76:ec:39:6b:f3:
52:b4:cf:e0:81:bf:ca:03:5d:be:32:36:45:05:c8:
50:95:df:af:c8:df:2d:9d:7f:bc:3d:8c:f0:2f:9d:
57:0a:93:3a:1a:b3:7b:d1:4d:be:82:7a:a7:9f:22:
b5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:EA:F1:ED:8F:DA:1B:26:B6:F3:55:7A:00:0D:06:2E:2B:F7:A0:44
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5362b40e-d987-4a9d-8f30-59c3b7075db1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5530::/44
Signature Algorithm: sha256WithRSAEncryption
77:d6:fc:d9:72:13:8c:60:6c:26:c5:13:9b:81:2a:77:45:95:
42:6f:11:a2:f2:54:31:1d:18:dc:f5:3e:16:36:3a:50:03:76:
4f:b1:d8:9f:c6:6a:12:e1:01:7a:53:47:2a:90:de:6d:88:e4:
bd:e8:70:dc:f3:81:3c:5b:20:e8:1b:08:3e:82:d1:45:e5:fc:
8f:68:ba:bf:5e:bb:a1:01:d7:ab:cc:9d:12:20:05:3d:30:05:
3a:32:ee:0d:76:9d:97:07:ed:b1:2b:e9:04:90:fe:32:31:40:
38:a6:0d:44:82:a2:40:ff:a5:fd:9e:27:32:db:a6:1c:a1:52:
34:85:37:f0:e7:c9:f8:0e:ab:98:99:09:ed:e7:2f:04:74:e2:
cc:30:c4:57:df:63:39:1d:44:df:e4:4a:6f:e2:fd:d6:55:11:
aa:d4:20:5e:b1:0a:37:08:4c:76:c4:a4:3f:f7:8c:f0:18:ac:
4f:09:15:69:90:cd:9e:f5:b5:b8:6b:b9:b5:72:6b:f0:99:1f:
8a:2e:1a:be:f9:80:ac:47:8d:be:b3:a0:4c:2e:3a:ca:46:0c:
bb:2b:47:78:2c:18:d8:ea:9c:c7:80:20:e7:b7:aa:58:f8:f6:
6c:d1:12:f4:3b:01:04:f2:2f:cf:af:f5:cc:94:d9:25:8b:17:
93:aa:96:46
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 10 04:29:44 2025 by rpki-client