Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa
File: 2788fd0d-0141-46b1-b160-e9916a5caddd.roa (raw, json)
Hash identifier: WwbkXc9/YuKEr3grNkLvdahUawMWBSh3/u5WM/bN/T4=
Subject key identifier: 85:DC:57:04:1C:99:38:64:79:92:96:98:0F:AA:A2:73:94:08:34:23
Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Certificate serial: 2862A90A0CD886E5D0A6DA36943F4F0EF7213831
Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa
Signing time: Tue 04 Mar 2025 18:10:05 +0000
ROA not before: Tue 04 Mar 2025 18:10:05 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 50.112.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:62:a9:0a:0c:d8:86:e5:d0:a6:da:36:94:3f:4f:0e:f7:21:38:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3
Validity
Not Before: Mar 4 18:10:05 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d1:0e:81:0f:fd:62:54:5e:ba:65:e2:d1:46:
97:dd:e3:95:7a:2c:6c:90:e0:12:8c:d9:32:7e:79:
ce:2c:5c:03:0c:e2:d2:c7:ef:77:36:d8:a2:d6:25:
a8:3e:18:14:9d:6f:3d:1a:fd:92:19:b0:13:6a:de:
db:93:ff:e1:c2:89:71:de:39:a8:90:8c:26:10:0b:
40:11:31:85:f6:d3:db:f2:5c:e2:46:d3:ad:96:ef:
cb:6d:74:9b:31:4c:f9:bc:6d:e1:fc:85:16:7b:00:
b6:d5:a1:3a:1e:bd:9a:9e:65:c8:18:77:e4:26:f5:
9d:73:f8:55:f1:8d:96:be:3b:18:a3:b2:35:de:fe:
c7:ee:17:1d:84:9f:f0:92:07:b8:a1:67:7d:ab:49:
65:53:21:6e:65:b0:be:f0:68:7b:b6:fe:09:f9:23:
8b:12:db:77:a6:23:0b:d8:51:f3:59:bd:70:cf:8c:
b5:f9:f3:70:48:43:a6:dd:70:f2:b5:8f:73:8c:07:
7d:dc:e7:a1:60:d9:20:4a:a9:e7:c1:cc:5d:0d:24:
db:2d:05:fa:76:a4:04:00:14:ad:06:52:36:b7:7e:
fc:a9:82:07:9a:c7:af:38:34:81:b3:24:fe:03:24:
0b:49:db:7f:0f:da:3b:19:87:27:be:bf:21:dc:87:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DC:57:04:1C:99:38:64:79:92:96:98:0F:AA:A2:73:94:08:34:23
X509v3 Authority Key Identifier:
keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/2788fd0d-0141-46b1-b160-e9916a5caddd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
50.112.0.0/24
Signature Algorithm: sha256WithRSAEncryption
65:40:5f:80:e1:a7:a7:30:7d:8a:31:eb:55:aa:4e:db:f2:6b:
27:15:6b:c4:ed:35:b5:a2:2c:74:f7:96:21:73:a0:a1:be:cd:
f7:36:b4:61:99:a2:8a:79:d3:de:7e:c3:73:b6:e2:87:88:48:
98:03:f6:5b:1f:05:ff:fc:88:d2:51:f0:37:0d:13:00:7a:03:
b6:0e:be:5f:d9:66:84:84:2c:16:9b:57:09:b7:89:8b:48:7e:
54:51:72:01:8a:c8:f0:d7:6e:b5:bd:be:13:36:88:75:b7:d5:
23:3e:5e:c3:bd:64:bc:cf:3c:48:96:13:9c:a7:5d:e2:17:26:
1e:20:e0:4a:d8:e0:2f:83:84:fa:47:d0:57:48:8d:c4:79:22:
e0:9e:fd:9a:74:17:40:b8:39:9e:dc:f0:ca:46:84:16:29:50:
d7:58:0a:8e:70:3d:24:b9:0c:73:ba:ee:7d:aa:0f:ae:9f:9a:
50:e5:55:d9:ff:1e:f1:6d:9d:6e:1d:f6:14:8d:fd:5e:ce:b6:
19:f5:82:2d:45:db:54:ab:3b:79:8b:ce:92:cb:d4:f5:d3:1c:
f0:7b:ea:02:83:cd:31:e3:05:2d:92:6e:3e:d2:2c:ad:ac:0b:
09:17:cb:0a:0a:e7:5e:90:76:09:fd:d0:52:31:60:8a:2f:45:
81:39:61:f6
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUKGKpCgzYhuXQpto2lD9PDvchODEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj
Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjUwMzA0MTgxMDA1WhcNMjUwNDA4MjM1OTU5
WjB6MUkwRwYDVQQFE0BjY2Y0ODYwNjUyMTBhM2E4YzYxZjg4NWU5ZGIzMWYxZTUy
MWVmNmQ1MjVjNTRhNTA4OWVjMTNlYjVjNWU3MDdmMS0wKwYDVQQDEyRkZGZiYzk3
Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDW0Q6BD/1iVF66ZeLRRpfd45V6LGyQ4BKM2TJ+ec4sXAMM
4tLH73c22KLWJag+GBSdbz0a/ZIZsBNq3tuT/+HCiXHeOaiQjCYQC0ARMYX209vy
XOJG062W78ttdJsxTPm8beH8hRZ7ALbVoToevZqeZcgYd+Qm9Z1z+FXxjZa+Oxij
sjXe/sfuFx2En/CSB7ihZ32rSWVTIW5lsL7waHu2/gn5I4sS23emIwvYUfNZvXDP
jLX583BIQ6bdcPK1j3OMB33c56Fg2SBKqefBzF0NJNstBfp2pAQAFK0GUja3fvyp
ggeax684NIGzJP4DJAtJ238P2jsZhye+vyHchyg/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUhdxXBByZOGR5kpaYD6qic5QINCMwHwYDVR0jBBgwFoAUkS3GDddkKYK8
rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w
OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy
Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4
OTE0OTBkOWM5LzI3ODhmZDBkLTAxNDEtNDZiMS1iMTYwLWU5OTE2YTVjYWRkZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw
LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAycAAwDQYJKoZIhvcNAQELBQADggEBAGVAX4Dhp6cwfYox61WqTtvyaycV
a8TtNbWiLHT3liFzoKG+zfc2tGGZoop5095+w3O24oeISJgD9lsfBf/8iNJR8DcN
EwB6A7YOvl/ZZoSELBabVwm3iYtIflRRcgGKyPDXbrW9vhM2iHW31SM+XsO9ZLzP
PEiWE5ynXeIXJh4g4ErY4C+DhPpH0FdIjcR5IuCe/Zp0F0C4OZ7c8MpGhBYpUNdY
Co5wPSS5DHO67n2qD66fmlDlVdn/HvFtnW4d9hSN/V7Othn1gi1F21SrO3mLzpLL
1PXTHPB76gKDzTHjBS2Sbj7SLK2sCwkXywoK516Qdgn90FIxYIovRYE5YfY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:16:53 2025 by rpki-client