Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa
File: bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa (raw, json)
Hash identifier: Y/tyicFQjZXl66zMeCgMG7Ci+cb3ZyWV4OhjtajKeus=
Subject key identifier: 3A:62:54:07:80:E9:41:9B:0D:33:D7:77:9C:0E:CA:28:70:72:94:A4
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 0801A21366A4CB77F9487AD55B918779B5D8E4BA
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa
Signing time: Tue 04 Mar 2025 23:30:44 +0000
ROA not before: Tue 04 Mar 2025 23:30:44 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:e700::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:01:a2:13:66:a4:cb:77:f9:48:7a:d5:5b:91:87:79:b5:d8:e4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 4 23:30:44 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:59:58:35:f4:4f:84:72:02:6a:84:fb:f6:8a:
1c:9d:bc:93:85:80:fe:4a:31:6b:2d:b2:3f:34:23:
7d:f6:b4:ee:b6:44:36:b5:47:7f:0f:0a:c5:46:84:
46:89:f9:4d:af:71:c7:c6:72:8a:29:5c:b2:78:54:
51:ab:dd:c1:e7:22:85:18:44:a1:3b:36:11:fd:12:
ea:3a:76:ac:bd:51:9f:16:ca:0b:48:10:e9:12:36:
f2:12:cf:17:7f:a6:b4:2a:6f:55:ed:3e:61:10:9b:
49:44:07:d9:38:92:31:c4:4f:b5:d3:21:7f:c9:4d:
ba:f0:15:5e:2f:c6:67:66:b9:12:95:ac:f2:08:9b:
06:4c:7c:e3:ab:5b:6d:49:61:62:3c:ea:f6:d6:6f:
30:ab:51:3f:75:1a:61:bd:ed:b5:cc:d1:d1:81:3f:
06:ed:de:89:bc:12:f4:11:31:4a:c1:2f:8b:27:49:
cb:e8:b0:99:7c:bf:da:1f:d7:3f:6f:91:bf:83:cc:
cb:9c:a4:2e:56:49:1d:0e:5c:34:ab:83:a1:c0:87:
c3:50:e5:9c:d0:0b:a9:52:2f:39:d3:15:27:7c:3f:
5b:74:ab:34:b5:ec:45:d3:9c:0c:b2:2a:59:bc:ad:
39:de:3a:97:59:ff:aa:b9:bc:95:9f:14:45:25:32:
4c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:62:54:07:80:E9:41:9B:0D:33:D7:77:9C:0E:CA:28:70:72:94:A4
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bf3aefd7-144a-4210-8532-a7b6e0533dd6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e700::/42
Signature Algorithm: sha256WithRSAEncryption
79:59:88:a1:3c:e3:86:2a:bd:d8:17:68:e1:96:1b:a4:ca:ce:
60:8f:2f:64:8b:10:fb:68:dc:7a:77:d8:ba:17:9d:8b:22:e3:
df:6d:91:be:41:90:9d:1a:a1:e6:c9:f4:cc:9b:60:d1:e2:a3:
3e:fd:a8:58:57:30:e7:1a:b6:2b:82:42:74:49:27:df:73:aa:
00:64:91:2e:61:cf:31:fa:85:35:22:1f:12:a5:46:ad:0d:29:
c8:64:c6:c7:0c:cb:b3:04:3f:e0:63:3f:10:f1:3b:29:33:6a:
1b:00:e4:c8:ed:2c:77:65:31:54:54:db:13:fb:9d:11:0a:06:
ba:0b:ab:82:ad:24:72:de:9d:84:51:59:26:e5:66:d2:70:50:
b9:33:e3:ee:c4:15:50:64:5a:c5:02:16:42:fc:5a:ae:81:76:
50:a2:6c:25:d3:f6:1c:d5:91:2c:2d:e3:7d:be:cb:13:5e:05:
2a:26:53:6d:05:4a:c6:13:e2:76:77:57:43:79:3c:a5:ee:52:
91:ea:8f:dd:30:60:ab:e4:c8:66:0c:d9:12:20:2d:e9:9d:d9:
94:67:ef:fe:6f:7c:98:04:1c:07:f1:a3:b9:9d:27:87:62:95:
8d:46:4e:b5:e3:e3:25:2f:9e:34:15:7d:e5:3b:6c:45:d8:ef:
db:65:bc:40
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 10 07:23:32 2025 by rpki-client