Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa
File: a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa (raw, json)
Hash identifier: 5DlhTFwelxTkCLQrn5MqidaiEx4TUFiRRYxjKGLzeNk=
Subject key identifier: 96:8F:E1:4E:9B:FC:34:1F:32:CC:FE:AB:DE:29:71:34:1D:F8:BF:C4
Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267
Certificate serial: 4E31DD6CDEE26010B2EA8F4956564764A7B4E3E1
Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa
Signing time: Tue 04 Mar 2025 22:50:04 +0000
ROA not before: Tue 04 Mar 2025 22:50:04 +0000
ROA not after: Tue 08 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2605:c940::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:31:dd:6c:de:e2:60:10:b2:ea:8f:49:56:56:47:64:a7:b4:e3:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267
Validity
Not Before: Mar 4 22:50:04 2025 GMT
Not After : Apr 8 23:59:59 2025 GMT
Subject: CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:0d:6f:0f:34:f1:b6:3d:c3:9b:29:46:64:4f:
d7:8a:86:82:9e:60:b6:97:ea:ed:72:6b:52:ba:db:
a0:4b:04:5b:f1:6a:ba:6d:b1:47:17:be:72:78:1a:
9a:d4:cc:e0:aa:7b:6c:cb:a3:9a:ae:92:19:32:95:
cd:a8:06:91:1d:2a:5e:93:10:87:58:db:40:64:3d:
f8:cc:ce:89:94:95:92:c3:a6:fe:cd:84:1e:19:76:
76:1f:89:d3:b4:d2:01:06:a0:5c:71:79:8e:88:e9:
4e:09:cf:8c:a6:23:c1:90:10:b5:cb:cf:5f:99:b5:
2e:52:e3:8c:cb:d5:00:f2:5b:b9:5f:c7:29:e4:ed:
72:f4:0a:7c:45:eb:77:3e:a1:e0:a6:96:bc:0e:61:
75:11:0a:0f:9b:08:d8:61:ae:36:7f:4f:bd:f2:eb:
45:a2:08:c9:f5:ac:52:bb:7c:83:35:ea:1f:49:3b:
26:25:74:9f:c0:2f:8b:3b:59:7f:5c:b1:53:e8:92:
2b:13:a9:29:0f:cc:3a:50:50:24:21:2c:b2:f8:29:
45:94:45:47:64:d2:5c:40:d6:e3:5b:e9:54:77:8f:
a3:b5:51:34:c8:06:8a:a5:bc:3c:6f:a6:cd:24:3f:
13:71:86:b9:d3:25:5c:38:f6:d5:79:e3:50:58:9e:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8F:E1:4E:9B:FC:34:1F:32:CC:FE:AB:DE:29:71:34:1D:F8:BF:C4
X509v3 Authority Key Identifier:
keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:c940::/32
Signature Algorithm: sha256WithRSAEncryption
7e:c0:b8:dd:bf:70:72:84:86:59:ff:48:c9:2a:28:df:ba:94:
4e:8d:1c:f2:5c:47:9b:cb:db:9c:50:72:2d:93:5d:bc:9f:66:
7a:71:98:07:e9:42:25:14:bc:9c:19:62:e7:e9:35:18:cc:a1:
84:7e:6c:76:04:89:35:c4:06:4b:94:01:10:93:19:0c:68:8c:
a0:4f:b8:3d:f1:a9:8f:8d:b2:97:c5:2b:98:06:9c:03:f8:00:
22:df:a8:8c:54:8b:ce:55:ae:72:74:ea:66:69:e4:e8:c2:14:
3f:bc:5a:b8:37:28:21:1c:26:7f:78:89:18:1d:7a:8b:d0:f0:
05:e6:a6:9a:1a:00:8a:71:78:03:df:5d:b1:1d:2a:d0:e9:30:
dc:78:8e:c1:0a:48:9b:d2:4b:ce:87:57:a2:d1:52:b8:ac:ce:
3a:94:4b:a6:9c:48:07:e3:c8:ad:05:19:47:1c:0f:92:34:be:
81:f3:ba:34:71:db:f4:a5:0b:19:c1:93:76:7c:01:79:fd:74:
8f:4f:a6:17:04:31:56:25:20:12:fd:b6:80:ca:cc:b4:d4:83:
10:4c:5e:18:e7:bc:c0:c1:f7:b8:28:82:e3:b9:d6:b0:b5:59:
5f:fe:d1:7d:6c:f6:97:a2:7a:1c:fd:da:83:cc:ff:c4:2b:02:
51:da:c1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:02:16 2025 by rpki-client