Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa
File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json)
Hash identifier: HpRhiXUCKKNf+yKWhZjYXSlPs00O/llqaUrWVU9CF3g=
Subject key identifier: C1:DD:4E:12:AB:09:61:B9:74:50:4B:5C:74:9C:25:D9:16:D9:BC:05
Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Certificate serial: 457AC90166B25B2B467A0930E4819D2B6BE1EB1F
Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa
Signing time: Fri 07 Mar 2025 15:00:09 +0000
ROA not before: Fri 07 Mar 2025 15:00:09 +0000
ROA not after: Fri 11 Apr 2025 23:59:59 +0000
asID: 801
IP address blocks: 35.96.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:7a:c9:01:66:b2:5b:2b:46:7a:09:30:e4:81:9d:2b:6b:e1:eb:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c
Validity
Not Before: Mar 7 15:00:09 2025 GMT
Not After : Apr 11 23:59:59 2025 GMT
Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c4:dd:85:95:f8:ba:f5:52:41:4b:f7:c5:ee:
4a:67:53:12:01:3c:bc:70:2d:9b:96:38:4f:fc:37:
c1:31:ef:ab:c6:67:f4:1e:96:49:04:21:b7:f8:1c:
9a:fa:09:4c:ce:90:78:83:09:d5:1f:a3:01:fb:30:
17:90:6d:2f:c9:e2:e4:9f:c8:8c:e7:fd:d7:e2:b4:
ae:56:53:7a:f1:12:fb:7e:e4:6c:18:bb:da:71:3a:
a5:c7:6c:0f:05:5d:3f:53:04:7b:c4:52:5b:65:be:
cb:9a:59:21:ed:9a:b9:dd:98:3c:4e:db:ec:18:5e:
f1:78:04:0f:ec:f1:0b:d9:ee:e3:8e:f3:9f:52:1f:
2e:43:69:50:87:24:1a:7d:ec:a6:57:10:45:38:bb:
7f:74:80:df:9b:da:e5:c1:b1:46:89:ec:44:1a:ce:
cf:d7:23:65:3e:bb:4d:52:90:7b:6b:2d:ff:c1:9a:
38:e4:b9:08:30:5c:a0:38:1f:0f:1c:82:3f:ef:59:
58:66:a8:b2:95:66:cb:fb:f9:31:84:36:cd:3a:7e:
e2:99:67:e4:a9:38:0f:16:9a:e3:a9:79:a5:cf:c6:
92:d6:8d:e3:ef:dc:38:f0:f6:75:80:b6:67:b4:12:
99:11:e1:9d:50:c7:f5:60:2d:6a:0f:6f:ec:ee:46:
d3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:DD:4E:12:AB:09:61:B9:74:50:4B:5C:74:9C:25:D9:16:D9:BC:05
X509v3 Authority Key Identifier:
keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.96.4.0/24
Signature Algorithm: sha256WithRSAEncryption
77:2a:1d:97:b7:0c:4f:a6:59:f6:e8:94:5e:f9:0d:8b:a8:c1:
2b:c8:ec:61:fd:ae:03:18:cd:0c:07:b7:69:5c:58:4a:e1:c4:
09:c2:f2:ab:f5:26:00:d6:0c:ae:2b:08:63:85:ff:58:3f:2d:
e2:70:39:1c:c2:3f:89:71:1b:46:49:b1:b1:bc:9d:e9:e0:1c:
24:11:d7:25:e5:39:a0:a1:da:07:7a:cc:ab:fa:86:f6:04:01:
8f:0a:ac:f3:98:9f:88:8f:6f:41:28:e7:a5:bc:21:9a:3b:57:
60:5f:c2:ae:82:61:31:4d:96:bb:16:0e:4c:76:43:6c:c9:ba:
58:2b:04:48:d3:64:b2:28:5e:f9:22:09:9f:cb:c3:a7:40:7b:
88:63:f8:a8:92:b2:2c:97:0d:6c:03:63:2e:3e:7b:0d:31:d1:
d1:d1:2f:bb:c9:1b:2b:32:02:48:1d:00:49:84:c3:f7:52:1b:
60:b7:9a:05:8b:73:c1:bd:fa:67:8f:de:0e:60:cb:f6:0c:50:
07:cf:e9:c3:d5:2e:d9:71:4e:af:bb:0a:28:19:07:5e:db:c5:
db:b8:39:fb:dd:87:ce:1c:04:11:cb:22:30:5a:66:cd:25:4f:
76:f9:4c:38:40:db:14:ac:00:08:6c:6a:ab:1f:48:8e:61:b6:
cd:4e:b0:9d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURXrJAWayWytGegkw5IGdK2vh6x8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh
MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMzA3MTUwMDA5WhcNMjUwNDExMjM1OTU5
WjB6MUkwRwYDVQQFE0BkMDRiYWU4ZjcwMjI4ZGQ5OGI1ZWM1OTM5YzMwNTUxODRj
NmU5MDVmZTk4ZWY3Nzg5MmYxYWIyOWJkYTRjODY1MS0wKwYDVQQDEyQ4Y2Q4NDQy
Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCyxN2Flfi69VJBS/fF7kpnUxIBPLxwLZuWOE/8N8Ex76vG
Z/QelkkEIbf4HJr6CUzOkHiDCdUfowH7MBeQbS/J4uSfyIzn/dfitK5WU3rxEvt+
5GwYu9pxOqXHbA8FXT9TBHvEUltlvsuaWSHtmrndmDxO2+wYXvF4BA/s8QvZ7uOO
859SHy5DaVCHJBp97KZXEEU4u390gN+b2uXBsUaJ7EQazs/XI2U+u01SkHtrLf/B
mjjkuQgwXKA4Hw8cgj/vWVhmqLKVZsv7+TGENs06fuKZZ+SpOA8WmuOpeaXPxpLW
jePv3Djw9nWAtme0EpkR4Z1Qx/VgLWoPb+zuRtOdAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUwd1OEqsJYbl0UEtcdJwl2RbZvAUwHwYDVR0jBBgwFoAUasw+faLnbZkR
D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00
NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1
Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx
MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4
LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAHcqHZe3DE+mWfbolF75DYuowSvI
7GH9rgMYzQwHt2lcWErhxAnC8qv1JgDWDK4rCGOF/1g/LeJwORzCP4lxG0ZJsbG8
nengHCQR1yXlOaCh2gd6zKv6hvYEAY8KrPOYn4iPb0Eo56W8IZo7V2Bfwq6CYTFN
lrsWDkx2Q2zJulgrBEjTZLIoXvkiCZ/Lw6dAe4hj+KiSsiyXDWwDYy4+ew0x0dHR
L7vJGysyAkgdAEmEw/dSG2C3mgWLc8G9+meP3g5gy/YMUAfP6cPVLtlxTq+7CigZ
B17bxdu4Ofvdh84cBBHLIjBaZs0lT3b5TDhA2xSsAAhsaqsfSI5hts1OsJ0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 19:11:35 2025 by rpki-client