Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa
File: 77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa (raw, json)
Hash identifier: rB6Mb9XTijcnkxNIcLiwG02PVmh8u+w7bxk5Hy06ih8=
Subject key identifier: 52:15:9A:87:68:1F:79:9C:4D:D7:E6:EB:13:55:59:55:AE:AA:B6:8D
Certificate issuer: /CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64
Certificate serial: 65CE1D5D5A9418BDB57B1D7D1D53126D2F18CB9C
Authority key identifier: FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa
Signing time: Fri 28 Mar 2025 17:40:05 +0000
ROA not before: Fri 28 Mar 2025 17:40:05 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 16509
IP address blocks: 184.169.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:ce:1d:5d:5a:94:18:bd:b5:7b:1d:7d:1d:53:12:6d:2f:18:cb:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64
Validity
Not Before: Mar 28 17:40:05 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=71c3876e-b944-4600-92c7-cec33d89523f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:df:2e:48:38:ea:54:1b:e1:1d:e0:55:2f:
f0:76:3f:a0:95:fb:66:de:61:3c:a7:b1:91:f3:74:
54:a1:71:de:f1:74:74:2b:a4:89:da:97:9d:59:50:
6d:b2:2e:88:7a:09:aa:da:6d:48:46:0a:75:68:d7:
18:5b:63:da:25:ec:8a:0f:87:7a:98:85:4b:73:31:
1a:85:45:9a:e3:85:c4:81:65:d3:5a:d9:4d:55:10:
d0:43:66:c7:57:a1:94:7c:f9:b7:e4:8d:87:e2:d2:
59:46:a5:49:0f:14:2a:a3:2d:dc:e8:6d:f6:68:81:
39:8e:db:fd:b3:42:15:9c:41:4b:2f:c8:16:63:2a:
84:a9:33:2c:11:32:b4:a3:19:3d:14:05:40:4c:2b:
45:8a:9e:93:8f:00:fa:57:4f:2f:f1:72:01:80:be:
f4:bb:89:74:03:67:33:bb:b8:2e:04:5a:f7:89:f6:
60:12:95:d4:fc:34:bd:8e:80:b8:cf:2e:09:0a:ce:
e4:e0:02:34:bb:da:bc:23:08:1c:ef:f8:bc:2b:7d:
19:be:3b:79:26:f2:9b:cf:3d:49:df:a9:70:63:8a:
a1:f9:89:3a:62:c7:c6:00:79:68:a1:93:7a:e0:e2:
50:41:a2:f5:70:7c:5e:93:5f:47:00:92:75:06:17:
1e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:15:9A:87:68:1F:79:9C:4D:D7:E6:EB:13:55:59:55:AE:AA:B6:8D
X509v3 Authority Key Identifier:
keyid:FE:22:E0:F7:22:CC:4F:06:0C:58:5A:12:6F:E6:A2:65:00:36:5E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/42b2991f-22c7-42f7-8cf5-4f3138859732/5d803805e21823c931987e9c9c37f04020aababf9b4dff9b64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/77589b1b-ff9a-42b2-bec7-a1653f08cb4d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/a841823c-a10d-477c-bfdf-4086f0b1594c/GCPJMZh-nJw38EAgqrq_m03_m2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
184.169.160.0/20
Signature Algorithm: sha256WithRSAEncryption
72:84:04:c2:38:60:2b:49:5d:72:a4:d0:f7:a6:b4:cc:8e:9a:
a3:b3:39:50:dd:cd:a3:d1:29:64:f2:e2:36:aa:7c:6f:68:fe:
a4:32:cc:69:bb:2b:e9:f0:b7:da:47:fa:1e:7a:54:52:72:7f:
86:a7:6f:02:33:86:ea:91:11:d7:ce:4f:57:a6:ae:6d:9f:91:
63:d9:ca:9d:6f:24:60:d1:30:9e:6e:f9:27:18:c7:3e:b9:be:
08:6c:04:3a:93:8f:f0:ed:91:af:97:8f:44:66:36:32:cb:ad:
2c:07:9d:d4:e9:b9:61:06:f3:ac:ea:6e:32:ff:ed:74:5c:09:
8d:03:09:39:ae:81:25:2c:0c:b0:4f:b3:1c:82:25:e5:9d:95:
17:7d:28:7e:9e:52:23:40:7c:d2:28:2e:7c:26:82:26:8a:a1:
3b:1b:f7:bb:3b:46:15:e7:a9:64:dd:1d:4a:c1:14:fa:0e:36:
df:d5:2d:91:1c:9c:b2:2b:3c:8b:86:5a:f0:a5:58:e5:20:bb:
f6:ee:80:9e:9e:d5:d7:76:c1:95:ef:ab:30:98:e0:6f:7c:91:
ed:12:54:a1:8c:f9:4e:a6:81:51:2b:39:15:bb:35:0b:04:09:
0c:5f:61:85:70:9d:48:81:04:36:ea:70:1f:32:51:2d:c5:3a:
f2:8d:a1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:07:20 2025 by rpki-client