Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa
File: 8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa (raw, json)
Hash identifier: LVBERCT0y2I/2SnauLGwQUIgC9t8SENmesdG7LCldDE=
Subject key identifier: 39:9F:83:05:9B:97:CF:ED:AC:1F:E6:A2:20:F7:AC:AC:E4:C6:E0:E0
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 1CC3CAD18BB0E5B19352D34779FC6882DFE291CD
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa
Signing time: Tue 04 Mar 2025 23:20:23 +0000
ROA not before: Tue 04 Mar 2025 23:20:23 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:c3:ca:d1:8b:b0:e5:b1:93:52:d3:47:79:fc:68:82:df:e2:91:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 4 23:20:23 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:28:a6:3f:e0:04:89:3e:f3:08:79:e4:d1:08:
b8:02:35:bb:27:b8:d4:cb:82:dd:e4:fc:f8:87:a1:
ff:ec:da:a1:5e:56:a8:38:c1:34:d0:9f:8f:37:83:
42:26:09:89:d9:e4:d4:26:a3:e0:31:85:e6:35:9e:
55:e1:de:81:14:09:c9:57:3c:6f:e6:78:ac:d1:e6:
72:e8:eb:bb:c6:e0:2a:f3:84:0f:eb:97:00:bd:ad:
a3:33:7a:a6:30:29:bc:55:f6:44:91:49:b6:36:33:
b6:27:18:54:76:95:88:74:cd:34:2e:ac:45:06:8a:
e6:3b:a8:2d:48:d6:76:30:a9:fd:38:71:64:1d:50:
2c:e3:20:91:9f:1f:39:6b:29:04:d7:d1:8d:3a:de:
d2:18:29:f2:ca:2b:c8:55:d1:68:f3:3b:2a:96:82:
ae:5a:f9:38:c6:ae:ad:3e:56:72:b6:b9:60:88:cd:
b5:5d:61:32:f6:52:23:8e:62:54:b5:55:b2:f4:0a:
d7:6a:1f:a2:ec:b0:c4:57:db:84:79:14:f0:30:20:
83:54:fb:06:cf:87:c7:f9:00:83:9e:b7:9e:51:89:
19:0f:bf:82:83:11:da:fc:79:9b:15:a6:3a:62:ec:
b7:29:45:39:49:cc:1d:01:71:db:a3:56:31:5b:5e:
6c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:9F:83:05:9B:97:CF:ED:AC:1F:E6:A2:20:F7:AC:AC:E4:C6:E0:E0
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8472ecf5-5d3d-4e46-b699-e29644b42fa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:6::/48
Signature Algorithm: sha256WithRSAEncryption
a0:a7:12:71:dd:f4:b9:b6:3d:04:2f:4e:35:9f:21:0f:c9:32:
46:83:d3:b8:01:c4:b6:9f:30:6e:46:8f:13:02:cd:fd:d1:67:
26:ca:d9:f7:83:82:48:5c:dd:58:57:59:0a:0d:36:5f:c6:bb:
80:0c:ed:fc:e6:19:6a:6e:3e:46:27:17:9a:f3:e1:5b:e2:a2:
78:f8:e8:94:b5:cf:c0:f2:a7:3d:9c:f8:c0:a0:fd:d1:28:3d:
2b:d2:68:36:0d:8f:67:15:7d:b0:e0:33:0a:4c:20:9b:c3:86:
0a:e4:ff:a1:49:2f:5d:44:92:df:e6:c1:e6:9d:17:1e:99:48:
ab:d9:72:6d:8c:a6:74:7b:2d:05:eb:bb:1c:f4:3d:8a:f6:0f:
27:05:aa:48:80:ab:f6:ee:80:b0:bb:8e:78:c1:3d:f3:b1:e5:
ca:df:0f:94:24:00:ae:98:5a:25:c5:e4:34:e4:01:2b:18:d0:
00:36:59:75:10:4a:4d:cd:db:d4:09:b0:ed:5f:db:e5:fe:2f:
b1:11:16:8f:ac:6d:40:bf:c0:eb:19:16:f3:85:50:86:50:fe:
5f:0b:09:4c:02:da:4f:f1:7a:45:96:ee:f9:d8:66:e0:5b:59:
04:0b:5d:d7:7a:24:42:6c:aa:33:b7:4e:04:a0:d1:06:e7:9f:
c4:8e:f2:e0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:19:52 2025 by rpki-client