Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa
File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json)
Hash identifier: 9rpVpEIGK9IS4fb8SCUZBs7SVS71fBe83gmiH9q6uEY=
Subject key identifier: 96:A0:E8:D6:2B:68:8A:96:7C:F2:F6:46:31:3B:BE:BC:A9:D7:5D:0F
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 45E7886EF8DD6F3B1CA8F0D27D0427231837BEB2
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa
Signing time: Fri 21 Mar 2025 00:50:10 +0000
ROA not before: Fri 21 Mar 2025 00:50:10 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f000::/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:e7:88:6e:f8:dd:6f:3b:1c:a8:f0:d2:7d:04:27:23:18:37:be:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Mar 21 00:50:10 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d4:1d:dd:8f:35:bd:e0:93:d9:3e:2a:87:d3:
8e:a6:df:6a:0e:af:9f:ad:41:47:18:01:77:b5:f5:
50:d7:86:4c:47:a2:d7:a3:52:98:f8:c8:07:3d:4c:
d1:7c:32:5f:47:0f:86:b4:05:31:c4:be:aa:a2:9c:
d4:4c:8f:26:21:75:61:dd:af:c4:a6:b0:87:ec:b5:
0b:f4:e7:9f:bc:c2:54:69:76:d4:2c:e6:a0:46:e8:
a0:93:36:55:14:33:6d:84:7c:81:94:c4:4d:52:3e:
8a:63:23:99:66:a3:65:18:8c:55:95:61:9b:7e:b7:
d9:2b:69:2c:30:fe:fc:56:5d:77:b7:3e:db:08:c2:
ff:d7:fd:f8:a7:d2:c0:10:1a:3c:14:e6:b1:44:8d:
cb:f5:ee:e7:88:2c:86:9e:bd:c8:54:10:de:cc:b7:
96:56:83:73:0d:b5:f4:77:c9:78:a9:87:bb:cf:33:
18:76:fe:be:97:8c:f6:0f:3f:94:4f:37:ff:d3:45:
bc:cc:9c:09:74:fc:89:91:96:27:9c:7b:97:35:6a:
ce:68:88:42:18:b1:b3:6f:ab:3a:4b:f8:5d:34:9f:
9b:17:05:de:16:1f:0a:80:73:68:ca:e1:49:db:27:
f2:7f:98:be:8d:2f:0f:0e:04:3e:d7:61:38:b3:84:
7f:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A0:E8:D6:2B:68:8A:96:7C:F2:F6:46:31:3B:BE:BC:A9:D7:5D:0F
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f000::/24
Signature Algorithm: sha256WithRSAEncryption
42:97:07:89:35:83:7f:f2:34:f2:32:f1:c6:54:16:24:8d:24:
72:3e:1d:b4:d7:cb:d5:ef:6c:28:9a:25:3a:8d:b0:1d:82:d6:
25:e1:3b:51:13:45:02:43:29:8a:76:e6:6d:47:1f:02:8a:36:
b7:2b:75:86:bb:6e:e8:cb:5a:e1:fe:ff:c9:2b:09:e4:8d:dc:
a9:7c:81:b1:f7:f5:cf:f6:39:6b:2e:b1:af:a3:5c:41:7c:37:
6f:58:10:ef:a8:95:a6:65:27:bc:d7:48:a7:ee:04:16:2b:bf:
ad:19:4b:5d:4d:7b:11:24:f4:89:b8:90:91:0a:b1:4a:39:04:
12:20:18:c1:2b:81:35:56:80:8c:55:88:c7:15:78:28:51:07:
12:ab:14:3b:d8:13:d3:23:be:c7:ff:e4:ed:6f:93:33:c9:a5:
09:a1:63:c2:3c:fc:c0:19:3c:52:ed:29:8f:22:34:6b:42:d1:
88:ca:81:ba:b9:45:43:47:78:41:82:ab:02:52:c8:85:9a:e1:
dc:6e:54:89:3b:a1:24:6a:ce:02:0c:e4:cc:d3:0a:84:51:09:
df:bd:7d:19:97:95:06:de:d7:1a:cf:cd:7f:ae:9d:cb:02:29:
27:d7:18:ff:e1:59:d5:2b:86:5a:b5:24:2f:c3:af:2f:fd:7f:
2a:ef:31:d9
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUReeIbvjdbzscqPDSfQQnIxg3vrIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMzIxMDA1MDEwWhcNMjUwNDI1MjM1OTU5
WjB6MUkwRwYDVQQFE0BkY2RjYTZkNDk2NzRkN2RmNjUwNzNmN2IzNzAwM2U3MjMz
Zjg0Yjc3ZjgyODdhNzBkODc4MTZhYTIzMTNhNmExMS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCA1B3djzW94JPZPiqH046m32oOr5+tQUcYAXe19VDXhkxH
otejUpj4yAc9TNF8Ml9HD4a0BTHEvqqinNRMjyYhdWHdr8SmsIfstQv055+8wlRp
dtQs5qBG6KCTNlUUM22EfIGUxE1SPopjI5lmo2UYjFWVYZt+t9kraSww/vxWXXe3
PtsIwv/X/fin0sAQGjwU5rFEjcv17ueILIaevchUEN7Mt5ZWg3MNtfR3yXiph7vP
Mxh2/r6XjPYPP5RPN//TRbzMnAl0/ImRliece5c1as5oiEIYsbNvqzpL+F00n5sX
Bd4WHwqAc2jK4UnbJ/J/mL6NLw8OBD7XYTizhH/7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUlqDo1itoipZ88vZGMTu+vKnXXQ8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC
MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAEKXB4k1g3/yNPIy8cZUFiSNJHI+
HbTXy9XvbCiaJTqNsB2C1iXhO1ETRQJDKYp25m1HHwKKNrcrdYa7bujLWuH+/8kr
CeSN3Kl8gbH39c/2OWsusa+jXEF8N29YEO+olaZlJ7zXSKfuBBYrv60ZS11NexEk
9Im4kJEKsUo5BBIgGMErgTVWgIxViMcVeChRBxKrFDvYE9Mjvsf/5O1vkzPJpQmh
Y8I8/MAZPFLtKY8iNGtC0YjKgbq5RUNHeEGCqwJSyIWa4dxuVIk7oSRqzgIM5MzT
CoRRCd+9fRmXlQbe1xrPzX+uncsCKSfXGP/hWdUrhlq1JC/Dry/9fyrvMdk=
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:22:37 2025 by rpki-client