
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/721aa7be-d4b7-4d44-97d2-6fbc2144f45f.roa
File: 721aa7be-d4b7-4d44-97d2-6fbc2144f45f.roa (raw, json)
Hash identifier: R9sl3YTCRZMi+5M0ndMn458U9iFfYHatCzvs+TNxKfc=
Subject key identifier: BA:68:87:EF:70:86:18:1C:3B:D5:DA:FD:E1:64:0A:A8:B7:15:FD:F7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0E7EACFEABB33F95C284AD87555F790C1841D05A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/721aa7be-d4b7-4d44-97d2-6fbc2144f45f.roa
Signing time: Tue 21 Jan 2025 00:00:00 +0000
ROA not before: Tue 21 Jan 2025 00:00:00 +0000
ROA not after: Tue 25 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 107.176.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:7e:ac:fe:ab:b3:3f:95:c2:84:ad:87:55:5f:79:0c:18:41:d0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 21 00:00:00 2025 GMT
Not After : Feb 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:40:a4:7f:06:f6:99:00:53:24:65:ac:cf:41:
fc:53:cd:a7:58:12:32:e6:e3:0d:ef:7d:48:8c:c7:
da:19:c9:a8:f6:f0:b1:3b:cb:9b:8b:1b:38:86:e6:
c0:d6:2f:9a:1b:47:81:e4:4b:f1:51:ce:5c:69:1b:
a1:e8:93:66:69:72:cc:ef:6a:9e:d6:58:53:cd:be:
14:d2:86:23:a1:b4:4a:db:f0:07:d8:4e:1c:d4:7d:
5e:1d:bf:c0:1f:bd:4f:1e:d7:57:2c:02:63:a1:9a:
24:61:a6:b8:9c:e4:ee:98:c6:13:ff:a3:74:cb:8c:
bb:3f:ed:dd:8c:37:6f:70:ed:4c:b0:b9:ba:d3:06:
cf:a8:c9:b2:bb:db:65:ae:61:18:40:bc:8a:c7:f6:
47:42:e4:3d:60:57:a5:21:df:9e:02:f1:1e:4c:5d:
24:cb:9f:57:d3:c4:92:30:dd:d9:77:49:f4:86:21:
12:23:c4:16:16:ec:f2:d0:44:5e:94:6c:1c:85:ba:
3b:c9:28:7b:e6:66:87:5a:fc:14:c5:6d:71:32:70:
25:e2:d7:33:bb:fd:d8:45:81:24:bd:89:cc:ba:44:
16:0b:d1:1c:4a:c3:11:9f:d2:1e:7f:64:6f:10:34:
ce:62:ec:eb:fa:c6:6e:b5:69:f2:3d:e0:f6:b0:06:
b9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:68:87:EF:70:86:18:1C:3B:D5:DA:FD:E1:64:0A:A8:B7:15:FD:F7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/721aa7be-d4b7-4d44-97d2-6fbc2144f45f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.176.0.0/15
Signature Algorithm: sha256WithRSAEncryption
53:97:fc:cc:3b:aa:0a:aa:8f:35:80:d9:05:c5:1c:37:f5:0c:
9f:71:dc:c7:e9:23:c1:2c:37:9b:11:f0:6f:0e:65:04:99:af:
ab:86:88:df:03:84:11:0a:86:2c:28:b0:26:fe:54:38:68:1b:
59:99:e4:b7:bc:97:42:c2:d7:87:89:2a:e7:34:e7:d6:a7:6d:
25:3a:47:f4:23:82:90:25:1e:a5:2e:cf:35:1d:11:d8:46:e1:
4b:77:7a:80:fc:7f:40:b8:98:5a:11:b0:64:59:30:d5:ff:28:
34:7d:54:75:ea:04:ec:2d:04:a2:07:80:6c:62:7c:a4:ee:f2:
ec:5f:1f:06:1b:24:40:34:0c:9e:9c:57:d9:65:16:45:4c:d4:
55:41:cb:0a:9f:4d:93:08:4f:2c:47:63:ea:81:33:2e:67:fa:
ea:f6:54:d6:78:5d:a3:56:b4:ff:5e:e4:9a:4e:88:19:81:cf:
12:21:75:7e:11:75:cb:30:07:ea:86:f9:2c:26:b3:21:26:0f:
1d:e4:17:b8:39:7f:78:9a:55:47:24:c7:bd:9b:e6:c3:b5:1d:
55:c4:77:1f:26:e7:e4:d8:fe:b8:f2:1f:1c:b8:83:2b:9c:63:
a4:5f:90:46:c0:ab:5b:72:34:c1:50:c6:1a:ff:89:e5:05:a6:
86:af:78:59
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUDn6s/quzP5XChK2HVV95DBhB0FowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTIxMDAwMDAwWhcNMjUwMjI1MjM1OTU5
WjB6MUkwRwYDVQQFE0BiYjg5ZTk1ZDI2MzgwOTRkY2I4NmJkOTlkMDQ2NGI3N2E0
MDVhOGM1NjBhZTE0ZDA1MWFkYjE0MzJiZGNmNGFmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQD3QKR/BvaZAFMkZazPQfxTzadYEjLm4w3vfUiMx9oZyaj2
8LE7y5uLGziG5sDWL5obR4HkS/FRzlxpG6Hok2Zpcszvap7WWFPNvhTShiOhtErb
8AfYThzUfV4dv8AfvU8e11csAmOhmiRhpric5O6YxhP/o3TLjLs/7d2MN29w7Uyw
ubrTBs+oybK722WuYRhAvIrH9kdC5D1gV6Uh354C8R5MXSTLn1fTxJIw3dl3SfSG
IRIjxBYW7PLQRF6UbByFujvJKHvmZoda/BTFbXEycCXi1zO7/dhFgSS9icy6RBYL
0RxKwxGf0h5/ZG8QNM5i7Ov6xm61afI94PawBrk3AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUumiH73CGGBw71dr94WQKqLcV/fcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzcyMWFhN2JlLWQ0YjctNGQ0NC05N2QyLTZmYmMyMTQ0ZjQ1Zi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwFrsDANBgkqhkiG9w0BAQsFAAOCAQEAU5f8zDuqCqqPNYDZBcUcN/UMn3Hc
x+kjwSw3mxHwbw5lBJmvq4aI3wOEEQqGLCiwJv5UOGgbWZnkt7yXQsLXh4kq5zTn
1qdtJTpH9COCkCUepS7PNR0R2EbhS3d6gPx/QLiYWhGwZFkw1f8oNH1UdeoE7C0E
ogeAbGJ8pO7y7F8fBhskQDQMnpxX2WUWRUzUVUHLCp9NkwhPLEdj6oEzLmf66vZU
1nhdo1a0/17kmk6IGYHPEiF1fhF1yzAH6ob5LCazISYPHeQXuDl/eJpVRyTHvZvm
w7UdVcR3Hybn5Nj+uPIfHLiDK5xjpF+QRsCrW3I0wVDGGv+J5QWmhq94WQ==
-----END CERTIFICATE-----
Generated at Tue Feb 11 15:31:46 2025 by rpki-client