Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa
File: bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa (raw, json)
Hash identifier: +obmWGMqVIp/rnb8IwkkK1sqX08AvI/JUVuWpRnqGuc=
Subject key identifier: 17:E8:1D:92:2C:9C:B3:FE:2B:11:F2:6A:4C:3A:C7:EA:2F:98:21:F9
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 0384702A0D18ECF27FAA089023FA4822F45A0C29
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa
Signing time: Mon 10 Mar 2025 15:30:16 +0000
ROA not before: Mon 10 Mar 2025 15:30:16 +0000
ROA not after: Mon 14 Apr 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:f0f2:7000::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:84:70:2a:0d:18:ec:f2:7f:aa:08:90:23:fa:48:22:f4:5a:0c:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 10 15:30:16 2025 GMT
Not After : Apr 14 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:39:cc:c5:f0:41:5f:b8:03:19:83:5f:20:26:
e9:8d:7f:9a:60:b2:d8:60:d9:50:f8:7c:bc:90:ad:
a8:89:ef:87:c4:b0:71:de:c2:1b:b7:b8:d0:9e:59:
f2:c0:0d:09:48:80:8e:b8:3f:9b:e9:3a:d4:28:ab:
62:da:bc:c0:5e:e3:48:65:08:2f:12:68:90:99:6e:
00:76:72:69:52:c6:d0:7b:a9:ab:d9:8b:23:23:20:
23:58:61:86:4c:b3:c1:76:be:0a:19:05:df:ac:f4:
6e:4f:ac:43:7d:e6:c5:38:e5:b2:06:77:b2:e2:9d:
21:e7:ee:44:7b:01:94:1b:f6:ed:64:f5:b1:7d:c3:
ee:46:be:0e:56:9c:79:15:88:4f:9c:05:44:87:b7:
9b:08:53:db:86:10:2f:16:87:a9:d2:eb:54:e7:c5:
86:28:38:98:d4:55:f0:37:e9:ce:92:1b:64:05:da:
02:f9:20:df:d9:75:a2:af:dc:e6:bd:43:bb:35:d8:
a4:04:11:dd:a9:56:8c:1a:67:6a:57:be:69:5a:1b:
cc:90:d0:10:65:36:45:3c:c0:e9:9c:d8:3b:0d:51:
c0:90:c8:bf:85:3f:84:6f:22:be:24:85:84:ef:c4:
ec:55:9e:88:d1:a7:6e:ed:be:84:f2:9c:bd:01:65:
65:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E8:1D:92:2C:9C:B3:FE:2B:11:F2:6A:4C:3A:C7:EA:2F:98:21:F9
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f2:7000::/44
Signature Algorithm: sha256WithRSAEncryption
23:5c:c3:28:66:0a:86:4e:62:41:31:d9:f8:8e:47:76:3f:67:
06:fe:90:f3:8d:ee:5d:d5:f9:29:5f:dc:0d:9b:ad:ca:bd:c2:
9b:7e:cb:5d:ec:57:b0:41:51:ac:f8:27:80:34:99:6a:d9:b6:
6e:c5:1b:48:db:d4:75:93:19:c2:8d:8c:2b:96:99:d3:6d:c2:
2e:66:56:00:6f:ba:17:f2:08:bf:29:ce:ba:8f:01:ec:1b:4a:
28:61:9c:04:26:d5:43:7a:e4:a8:e4:89:a6:4c:20:80:20:ba:
ca:ab:6a:60:7e:b9:d6:37:69:db:22:b9:01:d9:76:90:02:7c:
ce:81:85:71:d0:d3:71:b6:be:69:0f:85:2e:62:91:6a:fe:b5:
fc:e9:a8:61:74:f1:e0:fe:0f:98:94:51:d1:d2:14:f4:72:7d:
b9:e7:42:30:a4:1a:ef:aa:d7:7e:6b:7e:dc:d4:11:40:f4:a3:
33:c8:c2:d2:7e:68:e7:3b:9c:b2:6e:6f:c6:c5:1f:4c:6a:b6:
fc:3e:a0:55:a1:e0:ee:61:dc:3a:68:f3:14:b6:eb:44:42:50:
ae:06:c0:a4:3e:de:d0:a5:eb:2a:06:0f:5f:7a:79:b3:e0:2b:
d1:84:a2:97:29:df:84:b6:92:d3:57:30:bb:4a:d5:72:f6:45:
51:af:ef:bf
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:26:14 2025 by rpki-client