
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2c121-7afd-4f02-a6c6-7fa5cf35f7b4.roa
File: 52a2c121-7afd-4f02-a6c6-7fa5cf35f7b4.roa (raw, json)
Hash identifier: TuuMbyD0TptvRSyDESj6Ws/MIOLBL+fMXj7WZalYvqQ=
Subject key identifier: 1F:D9:97:36:16:C4:68:CE:96:46:30:82:9B:72:53:6A:0F:B5:E9:71
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 70172A90F5BFAB31A7D2EC96CE4E98A43B700CF8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2c121-7afd-4f02-a6c6-7fa5cf35f7b4.roa
Signing time: Tue 21 Jan 2025 00:00:00 +0000
ROA not before: Tue 21 Jan 2025 00:00:00 +0000
ROA not after: Tue 25 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 199.183.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:17:2a:90:f5:bf:ab:31:a7:d2:ec:96:ce:4e:98:a4:3b:70:0c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 21 00:00:00 2025 GMT
Not After : Feb 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:2f:08:31:aa:65:23:2b:b1:cb:7b:f5:04:
36:f8:86:a5:37:ea:f6:7d:5a:c6:47:65:7b:c7:cc:
24:b0:cb:44:89:a4:3c:82:a0:da:b5:97:18:12:d7:
13:25:8e:fd:c9:95:35:53:f8:10:6a:26:3d:54:d0:
ec:e7:94:ff:57:b5:d1:f3:2c:35:27:32:c4:41:b0:
75:5e:ea:4a:d4:85:6d:8b:60:ab:4f:5f:64:38:5a:
e4:59:e8:9d:4f:7e:d0:59:c7:2a:f1:91:02:60:23:
36:b6:4d:ee:0a:6e:e3:ad:da:5b:72:c2:b9:17:f0:
8a:97:bf:10:5c:96:33:9f:a2:4a:04:59:86:53:fa:
da:9d:25:38:db:2d:ed:a3:88:24:23:7c:95:0d:7b:
20:92:75:47:5f:59:b2:7e:d3:70:15:c6:7e:89:0c:
ac:10:71:53:51:f0:45:8d:aa:ee:92:27:85:40:5a:
e4:28:50:b6:76:ef:3a:ba:be:d5:b0:0b:81:d0:cb:
48:55:dd:f1:da:e4:c1:26:40:53:6b:ce:a0:e5:b6:
b3:c3:14:52:48:b7:d2:82:f6:7d:9f:d2:89:18:65:
61:ac:38:2c:f3:fb:b1:1c:dc:e5:f8:a4:67:82:4a:
f7:57:8e:72:e8:38:a3:4a:21:5f:87:0f:95:1e:f2:
10:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D9:97:36:16:C4:68:CE:96:46:30:82:9B:72:53:6A:0F:B5:E9:71
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2c121-7afd-4f02-a6c6-7fa5cf35f7b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.183.144.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:8e:18:f2:1c:91:d6:9c:4e:f7:a1:ea:c4:e2:06:b9:55:a2:
b1:9b:e9:45:af:9e:de:d8:dd:2e:0f:5d:0e:70:9b:5e:f3:29:
90:0f:d7:e7:30:d6:da:a8:72:ef:6d:37:1f:32:14:80:cc:4a:
1c:08:29:c8:15:35:78:b2:c8:10:85:c5:ac:1e:98:70:85:cd:
2a:b7:6f:7b:b8:6a:72:09:76:77:d3:f3:ab:8b:e7:9d:74:5d:
3e:7d:82:04:12:1b:10:1b:f1:65:37:72:39:f8:e7:2a:60:d8:
ae:c4:4b:14:31:8f:ae:12:04:8d:3c:bb:0b:b3:9a:e5:94:d3:
f9:ac:71:7c:83:88:2e:57:a3:79:7a:4d:81:7e:01:7b:47:ea:
97:00:bb:f5:a8:bf:37:21:80:21:20:f1:74:38:4a:ef:ee:01:
49:5a:74:a4:55:43:cc:22:d3:77:33:c6:0c:45:22:05:c1:d2:
d3:61:45:2e:86:6e:ba:67:8a:21:a9:b1:65:a1:24:2c:d7:43:
07:e4:6b:81:c8:b2:db:f3:b7:14:d8:6c:f5:f3:78:e1:a7:a1:
57:1b:7a:f8:c4:d0:27:c9:2e:cc:7c:31:74:4e:f1:55:ff:3d:
12:5c:76:d6:25:01:be:cf:6c:8a:8c:4d:a6:69:28:21:fd:54:
4b:a2:49:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 10 16:00:57 2025 by rpki-client