
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa
File: 3500b8ef-7be2-4b73-a003-e1ded8f81352.roa (raw, json)
Hash identifier: +t9RfVrz2RYdl6TgDTX2H63zuVQanLM5SdVSBEJp0sA=
Subject key identifier: 02:BC:4F:81:0E:1B:DD:7B:14:E9:73:1A:46:EA:E9:08:11:23:41:68
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 0D0C0EA6E217C93FA543576B7D2473C299C2183E
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa
Signing time: Wed 05 Feb 2025 00:00:00 +0000
ROA not before: Wed 05 Feb 2025 00:00:00 +0000
ROA not after: Wed 12 Mar 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2605:9cc0:2110::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:0c:0e:a6:e2:17:c9:3f:a5:43:57:6b:7d:24:73:c2:99:c2:18:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Feb 5 00:00:00 2025 GMT
Not After : Mar 12 23:59:59 2025 GMT
Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3a:37:15:f7:45:0d:0e:07:5c:14:8f:de:d5:
14:62:4b:7c:30:02:1a:25:ae:dc:3c:ef:da:82:ea:
26:4b:f2:21:b3:c7:a1:3f:a6:57:d4:43:06:6d:b5:
fe:96:5c:ae:20:63:c0:8b:72:9c:c9:6e:50:83:32:
17:77:c0:76:f3:f5:90:ed:fa:fb:f7:fe:ab:a5:24:
d7:4f:80:a5:03:7e:f1:b1:b3:73:44:1f:93:ce:70:
16:3c:a4:d3:f0:1c:e9:02:e4:1f:a0:80:cc:08:60:
92:8f:bb:06:6b:96:c3:03:c3:7e:74:b1:60:d5:7a:
af:4c:4b:a4:28:88:87:c4:ce:d6:e5:17:b7:df:c5:
09:80:b5:28:d4:a1:4a:8b:24:50:82:37:85:9c:34:
ec:1a:77:09:3c:7f:9f:c9:5a:71:ff:0b:17:71:6e:
ed:73:60:89:66:4b:4d:3d:bc:3e:91:8a:c6:65:cf:
fb:9e:6f:27:4d:e4:c6:30:ea:15:d3:4e:e7:ae:5d:
39:bc:35:bf:43:71:1b:f6:73:ad:46:4f:9b:51:02:
c7:1a:62:e6:80:30:2c:3a:a4:a6:d3:07:12:19:a0:
31:92:57:4b:f1:d7:24:6c:d1:5a:02:1e:8b:d9:f4:
ca:d5:38:e6:88:f1:13:cf:d1:80:bf:2f:bb:58:7d:
30:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BC:4F:81:0E:1B:DD:7B:14:E9:73:1A:46:EA:E9:08:11:23:41:68
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/3500b8ef-7be2-4b73-a003-e1ded8f81352.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:2110::/44
Signature Algorithm: sha256WithRSAEncryption
10:f2:bf:0f:a6:76:32:fc:e2:06:ab:c6:9d:e3:72:2f:5a:2b:
1c:5e:f6:44:19:60:21:34:19:93:66:8c:63:cb:72:f7:fe:00:
36:df:f8:8f:a3:e1:f3:a5:dc:62:1d:49:f3:94:e5:d0:c8:21:
6c:23:a3:a7:3f:74:73:6a:22:81:7f:6a:d0:11:76:e1:bc:07:
33:37:cf:d4:3a:fe:b3:87:4c:d0:2e:35:c4:97:e3:08:12:72:
7e:f7:b4:8a:3e:66:11:fc:93:b9:c9:4d:aa:6a:f3:93:30:9c:
c0:ea:ca:48:18:eb:7b:8e:d1:3a:c2:3b:04:4b:07:42:97:00:
d4:01:4f:61:c1:b1:5d:e0:e8:f9:b4:5f:28:94:66:1e:99:7b:
37:20:cc:1b:f1:b1:27:b4:67:4b:51:d0:e9:a8:97:a7:f8:5d:
1b:73:e1:c5:0d:88:cb:6b:62:c3:d8:d4:25:6e:31:00:8d:c8:
1e:fb:c4:72:24:46:a4:2b:92:0b:10:f8:66:b0:48:8b:31:08:
ee:e6:ba:f2:66:f9:e5:0c:ad:b7:f5:2f:db:bb:36:39:33:b2:
0d:76:07:ed:4f:f3:e5:7f:c8:9c:5f:80:5b:5e:a9:bd:f2:fe:
f8:9e:56:9b:95:ac:f2:f3:b8:f4:c8:dc:65:25:f3:ce:31:1f:
22:1f:ff:db
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 10 16:43:05 2025 by rpki-client