Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa
File: ba6294fd-941c-4316-acc0-e4f732862a4c.roa (raw, json)
Hash identifier: YqieKCmoz1n18Fcc5U4JfUe+SjNUv76OOxTdwBaLsJU=
Subject key identifier: 68:D4:3D:14:4B:6B:28:50:02:9B:AD:56:B8:F3:E1:F1:AA:D9:6E:89
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 2F4340DE9DB7DF56406F2DE366297D71699570E9
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa
Signing time: Fri 07 Mar 2025 15:00:09 +0000
ROA not before: Fri 07 Mar 2025 15:00:09 +0000
ROA not after: Fri 11 Apr 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2605:9cc0:639::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:43:40:de:9d:b7:df:56:40:6f:2d:e3:66:29:7d:71:69:95:70:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Mar 7 15:00:09 2025 GMT
Not After : Apr 11 23:59:59 2025 GMT
Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1a:06:b5:32:d2:aa:ae:fd:0f:86:20:00:45:
e8:90:f4:ff:f0:73:6b:65:76:66:58:df:df:ad:17:
1d:c9:f0:f3:ae:ee:b8:61:c0:83:ed:e6:be:a9:92:
8b:93:da:65:ee:5c:08:d0:23:ae:3e:7e:37:83:f5:
09:de:e4:5c:00:a4:b6:23:60:82:d5:85:32:79:0a:
a9:84:b9:3c:b4:8c:bb:72:9e:4d:7d:66:74:6b:59:
d3:49:f8:df:2f:24:81:d0:94:2e:54:4f:bd:da:20:
d5:38:a9:7b:3c:5a:66:fd:bc:26:98:d6:b8:0a:96:
ee:6f:7d:07:13:cd:3c:cc:36:42:52:8a:54:e9:df:
a7:c1:0a:95:85:cf:8d:b1:aa:59:c9:07:bf:43:96:
e7:f0:30:c9:bd:32:54:d4:39:f5:90:58:64:d2:fb:
9a:bc:97:41:52:35:af:b3:c0:7c:ee:d0:1b:1b:e7:
b2:7d:b9:d1:a0:31:20:5d:d9:2d:90:c7:4a:f2:e2:
6c:95:9d:c1:4b:a5:a3:ee:8d:54:3a:2e:75:d4:b5:
b3:39:10:ad:f7:94:41:0d:d4:2e:c8:cd:1b:f8:bb:
65:1f:06:ed:5e:1a:a9:eb:92:d0:bb:b0:b5:42:8a:
fd:3b:db:f6:59:42:d5:62:a5:b7:99:c0:43:88:1a:
52:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D4:3D:14:4B:6B:28:50:02:9B:AD:56:B8:F3:E1:F1:AA:D9:6E:89
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/ba6294fd-941c-4316-acc0-e4f732862a4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:639::/48
Signature Algorithm: sha256WithRSAEncryption
83:12:cb:89:e7:8b:2c:73:fd:1d:49:63:70:e7:69:9e:86:cf:
a9:46:ec:8b:f7:b6:34:d4:b2:0d:94:f9:d8:18:18:28:c9:48:
e3:c2:f5:9f:0c:29:df:96:51:40:fd:2d:c9:2c:2a:88:48:fe:
44:ab:1b:a8:dc:e6:36:52:94:5e:83:b5:a8:55:52:f8:64:5a:
d8:3a:55:b7:d5:fd:7b:86:12:d6:b6:e7:9c:21:ef:d4:53:66:
6e:27:06:57:7d:56:c0:14:e4:c8:ff:8e:c4:ad:c6:79:62:e7:
98:a1:0b:12:45:4c:f5:51:49:a9:db:8e:bb:fb:b4:90:08:68:
c6:41:d3:9d:2b:a7:da:c4:4a:7a:ca:26:6d:a7:2f:7e:76:aa:
e9:d1:10:da:8c:1c:12:fc:76:c9:13:ee:ea:e4:43:d8:5a:26:
ad:a3:f0:1c:3d:83:65:dc:e5:e4:ff:7a:40:75:f2:2a:99:72:
b4:48:cd:6c:16:23:3f:70:1c:f2:43:83:25:92:a0:d0:cc:35:
51:25:da:ac:06:a0:da:ff:50:32:a8:54:12:30:4b:57:aa:2d:
01:d9:5a:4f:c9:d1:35:63:ae:d4:57:04:2f:ad:7b:e8:88:a4:
af:75:6a:31:6a:81:64:6e:c5:b6:c0:bf:63:a7:5d:2f:67:43:
99:8c:47:8b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:26:11 2025 by rpki-client