Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa
File: 41f74973-a63a-4161-8c87-21184ab17c25.roa (raw, json)
Hash identifier: ytTFSHSO6bgpp7YZgZePIWdTDlwBoEOdwUMuWUh6HPk=
Subject key identifier: 99:4A:B5:B7:15:79:09:CD:D8:4D:47:06:EB:ED:2D:69:C4:C0:C3:F5
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 5E8EDE97C747F3E720EE26F155AC2DAE2A9BADF6
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa
Signing time: Mon 17 Mar 2025 15:40:02 +0000
ROA not before: Mon 17 Mar 2025 15:40:02 +0000
ROA not after: Mon 21 Apr 2025 23:59:59 +0000
asID: 21664
IP address blocks: 2605:9cc0:c1c::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Thu 10 Apr 2025 01:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:8e:de:97:c7:47:f3:e7:20:ee:26:f1:55:ac:2d:ae:2a:9b:ad:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Mar 17 15:40:02 2025 GMT
Not After : Apr 21 23:59:59 2025 GMT
Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4e:b8:73:79:d3:6c:97:29:6c:df:b2:f1:10:
fb:28:9c:c7:fe:9a:24:33:8d:b4:17:cb:76:29:53:
84:e0:b8:1d:de:c3:13:04:fc:40:11:7f:54:45:b4:
be:7a:5c:64:7a:c1:97:9e:74:b0:17:d2:ee:ce:31:
48:33:fe:e9:e6:ce:c0:43:ac:f9:ff:39:56:5a:77:
39:a7:df:58:2e:9a:e9:e3:7e:39:2f:20:fd:44:b8:
bf:b9:20:0b:22:40:63:6d:b9:05:27:a2:3d:35:99:
97:9a:9c:26:5e:30:e5:93:8f:9a:10:0d:c5:2f:48:
c8:fa:62:e9:3a:d8:78:a5:f2:c8:95:e2:a4:73:b9:
b6:44:75:59:96:ee:33:88:e3:05:b5:e4:7a:37:1b:
29:d5:46:1f:7d:e3:74:d0:1e:25:bf:c0:61:27:3d:
22:61:dd:c3:c0:d3:d2:41:4b:79:66:59:7d:b5:3a:
73:58:2e:be:b2:f6:4f:33:c7:d3:13:f4:bf:1d:14:
fd:f1:0b:5b:28:34:4d:85:48:ec:13:0d:da:37:b3:
5c:75:64:0c:d9:ba:6e:04:e2:55:3b:1d:51:01:f6:
ca:89:b5:93:17:0f:71:db:1f:38:f2:e7:4c:ea:a7:
d1:e0:f7:64:7c:7c:7e:9b:66:cb:d9:01:2d:a2:31:
ac:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:4A:B5:B7:15:79:09:CD:D8:4D:47:06:EB:ED:2D:69:C4:C0:C3:F5
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/41f74973-a63a-4161-8c87-21184ab17c25.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:c1c::/48
Signature Algorithm: sha256WithRSAEncryption
6d:ae:5a:9b:75:fa:cf:a1:e8:8e:bc:e4:d5:ab:16:26:1c:1a:
37:eb:75:a9:3a:a1:f4:40:c8:56:fc:49:65:18:05:50:5a:27:
63:4c:60:79:39:62:33:f0:09:52:dd:37:0b:ff:db:95:79:3a:
2b:75:70:a0:63:9d:ea:7b:a0:b1:a2:f2:f8:7b:79:20:e7:cc:
8a:09:39:4e:44:3e:16:10:a2:0b:cf:a3:18:61:94:25:8a:7a:
38:6b:e5:d6:d7:24:58:ed:ca:01:3f:6d:fd:88:55:53:92:d2:
cd:c9:f4:13:1a:77:8a:b7:c0:ae:e0:1c:9e:74:2e:1b:17:63:
9f:10:82:9e:80:6c:d9:32:ee:67:c5:6a:4d:dd:42:0b:b1:2a:
40:f5:6d:94:e9:35:a1:40:14:d7:58:c4:af:30:9d:be:c9:f7:
fc:18:8a:13:39:ae:33:66:56:f3:9d:95:16:49:05:b1:ad:98:
9b:29:0f:14:ff:60:68:dd:53:07:b4:7d:8b:fa:57:34:2d:53:
ea:e5:a6:0f:64:b4:0d:d7:57:d1:04:51:c6:14:9d:63:8d:88:
81:4d:f3:c2:f8:4a:06:b3:53:a7:ce:60:06:00:a1:20:d0:a7:
68:ac:c9:07:17:47:dd:c3:f7:29:00:3d:70:00:e9:01:1b:05:
62:35:a4:67
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 8 22:24:53 2025 by rpki-client