Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/37b4bd98-02a2-496d-9d72-ab8715f55b8f.roa
File: 37b4bd98-02a2-496d-9d72-ab8715f55b8f.roa (raw, json)
Hash identifier: YFWeIqbPDBfHBriAbKIpOuwdlSNJSVrmD6gMkn5qhqw=
Subject key identifier: 8F:B1:2F:C4:1C:D5:A0:00:64:99:8D:70:16:1C:2B:E4:8E:8F:59:4E
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 09AB874200A5057070CC84BEA3DA36BE65FCE06B
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/37b4bd98-02a2-496d-9d72-ab8715f55b8f.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:aa00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:ab:87:42:00:a5:05:70:70:cc:84:be:a3:da:36:be:65:fc:e0:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:98:2a:fa:e1:14:1c:96:f2:23:e9:4a:a4:
ad:db:52:13:42:55:6f:e5:ae:6b:65:cb:c0:20:62:
25:98:e0:4e:9d:9c:87:22:32:d5:13:2e:96:32:4e:
45:04:16:f6:9e:d8:33:14:e4:a0:45:94:5b:81:bd:
50:34:93:12:40:ff:a3:6a:f4:92:37:59:52:44:41:
ad:3e:83:08:3e:f7:26:2a:5a:19:a6:60:7d:27:8d:
2c:c5:70:c4:84:b7:16:cb:d3:54:31:8a:e3:42:18:
7a:ab:42:1f:5b:0b:33:07:d0:91:bd:98:bd:3b:e9:
5d:85:7f:34:3b:23:ad:77:a2:8d:25:d9:d3:bb:6b:
01:cf:56:83:e2:64:27:05:10:cf:47:b2:1c:3f:c9:
4a:e5:ff:72:2b:c3:e6:71:62:19:49:82:74:bf:f1:
96:37:b8:cd:63:29:fc:29:f9:9f:a5:46:00:8e:81:
72:0c:6d:42:ea:10:43:1a:16:ef:3a:8f:d0:91:74:
12:31:74:5b:f4:94:bb:57:3c:21:42:45:7e:5a:09:
e7:3c:92:78:31:36:0b:28:71:b9:26:18:03:d5:cf:
cc:50:bb:0c:55:6b:53:d8:65:89:62:4b:3f:1d:22:
16:7c:6c:5b:0b:b9:32:17:45:be:e2:51:d5:48:86:
ce:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B1:2F:C4:1C:D5:A0:00:64:99:8D:70:16:1C:2B:E4:8E:8F:59:4E
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/37b4bd98-02a2-496d-9d72-ab8715f55b8f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:aa00::/40
Signature Algorithm: sha256WithRSAEncryption
03:6c:03:24:3a:97:e5:e9:f7:5d:94:d4:d4:d7:7e:6d:bd:8b:
75:3f:9c:c3:da:2b:e4:c8:f2:d5:50:3f:b6:d5:4b:ca:de:55:
7b:d2:45:24:b9:5a:b5:6d:31:96:9f:32:1c:02:c8:6c:75:4d:
df:37:ca:16:cc:5a:65:db:4d:03:8d:be:52:f2:2c:a1:f6:9e:
1d:b6:62:e1:f9:ea:7c:62:29:20:82:b8:87:f0:9c:1c:a8:c4:
4f:b8:29:21:59:f5:1b:9f:32:15:5a:ee:35:e6:95:90:5b:ed:
94:b0:5a:f2:a3:f9:3c:e4:a1:ec:4e:31:47:95:dd:e6:2f:ac:
2a:df:de:e3:da:3b:54:94:28:66:4b:ec:1a:31:d8:c9:5e:ed:
44:43:40:24:d2:0d:7b:7c:fb:ab:47:03:a5:f2:b3:36:fe:a6:
7d:f8:06:ab:d4:30:72:11:d8:92:83:65:3b:5e:28:02:ba:78:
d8:35:64:c0:bd:ec:f8:c6:4b:aa:da:64:cc:81:16:d1:e9:73:
11:ac:05:42:6e:45:77:62:9e:49:28:c0:70:42:bf:d5:e3:d4:
fd:7d:e0:c8:8c:28:1a:56:52:4a:97:29:5f:39:12:74:a1:1c:
ac:f1:10:45:5b:a8:8d:3b:db:65:59:51:79:8b:59:66:29:48:
78:e7:a6:fd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:28:35 2025 by rpki-client