Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa
File: 0ec55b55-70d8-4c9a-a949-98332400c54c.roa (raw, json)
Hash identifier: 8v1rMS4H5+oWtYjaThhwDvk0ApFxmI7UfW5xGv6uJDk=
Subject key identifier: 22:6F:3D:59:D9:54:77:AA:25:37:F7:A8:08:18:80:92:A5:6F:C7:60
Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64
Certificate serial: 36C100890C5858088A1B1F9E55AD8A31000094F2
Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa
Signing time: Mon 31 Mar 2025 16:10:46 +0000
ROA not before: Mon 31 Mar 2025 16:10:46 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2620:107:3000::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/42b2991f-22c7-42f7-8cf5-4f3138859732.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Wed 09 Apr 2025 17:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:c1:00:89:0c:58:58:08:8a:1b:1f:9e:55:ad:8a:31:00:00:94:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64
Validity
Not Before: Mar 31 16:10:46 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: CN=71c3876e-b944-4600-92c7-cec33d89523f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:37:6e:19:eb:f5:3a:41:6b:03:d0:ea:4d:e5:
4f:f0:73:73:3d:33:c9:ad:31:03:e2:e7:e3:71:ee:
99:66:79:3f:5d:ea:0f:e8:67:29:64:49:d6:71:a4:
26:20:5a:a2:6a:6f:37:43:0b:85:26:14:84:4f:8f:
6d:1f:78:a5:08:78:e5:f0:3d:f6:5a:ee:66:af:6c:
c0:92:2c:6f:dd:ba:7b:0a:13:43:36:15:c1:8f:63:
f2:80:98:60:7f:ff:9a:44:2d:56:39:7f:e1:4d:e2:
ad:75:0e:10:d7:69:62:f5:81:cf:ca:39:99:78:f1:
a7:11:5a:42:d7:44:f1:74:2f:77:19:df:c7:26:18:
6a:bb:e9:14:04:64:d8:11:e8:a4:b7:79:be:e4:39:
be:ef:9b:02:74:36:bd:f5:ee:dd:15:63:94:9a:37:
cd:60:8c:ac:77:48:35:58:0c:c6:d4:4a:86:e8:23:
97:0a:5e:a7:35:73:db:3a:4a:e7:a6:89:48:e7:e2:
c8:b8:db:5a:c2:45:07:df:d7:fd:e3:6f:81:84:43:
b7:cd:2d:3c:21:b6:25:9b:da:4a:e9:dc:d9:6e:0a:
3c:a2:11:3d:0c:5e:72:40:44:ec:9a:b0:66:66:7e:
72:36:07:06:41:2b:6c:93:8f:d5:55:9e:5c:1d:02:
e4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6F:3D:59:D9:54:77:AA:25:37:F7:A8:08:18:80:92:A5:6F:C7:60
X509v3 Authority Key Identifier:
keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/0ec55b55-70d8-4c9a-a949-98332400c54c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2620:107:3000::/48
Signature Algorithm: sha256WithRSAEncryption
1b:ef:42:5c:3a:46:f9:fb:4e:da:d3:a9:ef:fe:43:d3:ee:7f:
5a:51:4d:c3:21:80:49:6c:12:af:28:3b:29:34:b3:fa:b3:e8:
ee:ef:f2:96:8f:95:49:c5:22:5e:92:eb:93:11:14:bc:78:b0:
65:64:c5:53:32:b2:d0:5d:41:69:53:47:55:e2:27:24:a4:d5:
2b:f1:20:c2:2d:52:6a:8f:25:b7:2d:a2:c3:fd:0f:75:d6:95:
c5:71:a8:9e:63:57:f3:7c:b4:23:c2:ff:ce:33:c3:bc:59:7c:
9d:9b:02:68:20:a9:a0:48:9b:fc:d4:3f:0d:33:af:23:99:2b:
bf:eb:ed:69:94:8e:c9:d4:c3:37:81:5f:75:2f:60:bc:55:95:
2a:c9:a6:81:25:47:3b:cc:0a:a1:3e:a7:a7:33:6e:d6:d0:e6:
96:7d:c4:a6:3a:7b:6f:ee:71:19:5d:eb:d0:05:a6:87:6c:6d:
de:94:1f:4c:0b:8e:22:1f:eb:01:04:95:b6:10:9b:e1:1d:03:
dd:f7:de:e6:74:1d:7b:9a:64:73:b9:4a:f7:d6:58:ef:9f:85:
9f:fd:6c:71:7e:6c:4e:46:4b:1b:5f:ce:d0:97:95:9c:23:a6:
61:98:94:5e:dd:8e:e2:29:3d:0b:32:e1:67:db:13:7d:c6:e5:
84:91:af:f6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 8 09:47:11 2025 by rpki-client