Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa
File: abd82657-873c-4247-976a-fa627e8bd542.roa (raw, json)
Hash identifier: 3nRY/YX4zc0MKUcoVcAqiriGpoJq0J4095IEyyVFn54=
Subject key identifier: 25:BC:BA:EA:BE:78:DA:82:FF:B5:C5:1F:23:28:CF:CA:03:6E:C2:DC
Certificate issuer: /CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257
Certificate serial: 0DA790FFF41D99B73D55EC98156393EB0A868D5E
Authority key identifier: 53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa
Signing time: Wed 19 Mar 2025 00:00:04 +0000
ROA not before: Wed 19 Mar 2025 00:00:04 +0000
ROA not after: Wed 23 Apr 2025 23:59:59 +0000
asID: 54113
IP address blocks: 2606:2cc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:a7:90:ff:f4:1d:99:b7:3d:55:ec:98:15:63:93:eb:0a:86:8d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b30530340881156c2e14afef9d6196227e2c6035a09ef0d257
Validity
Not Before: Mar 19 00:00:04 2025 GMT
Not After : Apr 23 23:59:59 2025 GMT
Subject: CN=2c2421b9-0ce5-48c5-ac23-91a5565f7afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:ca:d1:85:38:46:77:47:52:04:10:f3:ef:
9e:01:ba:89:fc:69:27:a6:d8:71:93:49:af:17:ab:
28:4d:23:6a:7a:60:30:f8:c1:2a:ae:cf:41:14:f4:
b6:33:93:3c:bb:c8:62:75:a7:d0:a2:30:cc:18:8f:
31:97:02:ce:00:62:2f:2f:64:7a:45:fa:68:f3:5e:
ac:68:1f:40:18:9f:2f:30:39:7d:f7:9b:f8:e0:7f:
a0:76:08:63:0e:18:58:b7:9f:98:17:81:ca:d5:a0:
59:34:1e:fb:fd:71:d0:0f:b5:8c:fa:db:18:4a:82:
57:b6:ba:f8:df:99:07:2e:02:d6:23:23:af:b2:cb:
72:f6:9c:ec:4d:87:eb:83:b4:fd:27:7f:c4:4e:5d:
e5:39:0f:1f:04:60:d6:25:46:4d:26:26:99:b5:2f:
d3:92:74:5f:d3:4b:ce:0f:7b:4a:a0:2e:0d:ac:cd:
91:0c:08:28:80:08:98:bd:46:41:fb:65:98:09:86:
92:a2:67:0e:51:e3:23:c3:19:c6:97:b9:3a:e2:5f:
e3:a4:a4:56:b4:68:1e:6a:ef:af:70:09:2e:d0:e2:
1a:11:bc:df:12:92:22:45:58:5c:66:50:09:33:69:
2f:c9:3c:f1:15:33:1e:cf:76:bb:7a:db:7e:a4:82:
43:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BC:BA:EA:BE:78:DA:82:FF:B5:C5:1F:23:28:CF:CA:03:6E:C2:DC
X509v3 Authority Key Identifier:
keyid:53:EE:A0:29:BA:6E:EF:AD:CA:B4:D0:77:98:9D:D5:ED:47:55:B6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3145ebff-dc84-45a9-b769-efbaaf5779e3/b30530340881156c2e14afef9d6196227e2c6035a09ef0d257.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/abd82657-873c-4247-976a-fa627e8bd542.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/71e5236f-c6f1-4928-a1b9-8def09c06085/gRVsLhSv751hliJ-LGA1oJ7w0lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2606:2cc0::/32
Signature Algorithm: sha256WithRSAEncryption
bf:95:f8:02:ac:22:70:3e:53:87:96:df:8e:a7:e2:70:97:46:
4c:a7:97:2c:6e:5f:fa:c9:04:2a:65:55:41:c2:ac:2e:70:42:
06:33:b3:b8:d2:35:b8:9b:be:31:55:27:66:c8:df:d1:b8:b9:
50:22:ac:5e:7c:5d:f0:f3:d0:3d:4c:54:e6:11:0b:93:89:c5:
44:b1:01:1d:9e:fa:c6:3e:86:02:d1:7a:cf:ea:f8:94:1e:d1:
be:07:77:d1:2b:96:0a:1a:a2:00:83:b2:7a:bf:58:97:9f:13:
7d:ab:a5:1b:48:e6:59:fe:32:9d:35:ee:c7:82:1c:08:3f:63:
91:c1:74:23:73:c6:a4:c4:d3:19:b9:77:a9:a9:28:a1:3c:90:
ee:4a:ec:7c:d9:b8:5a:1e:f8:9d:7a:23:56:6b:ed:b6:c0:88:
71:11:66:3f:39:1a:ab:f7:26:f9:de:2d:eb:a4:2f:38:3f:5f:
5e:42:73:7b:c3:26:40:6e:c7:6b:06:c7:8b:43:98:22:29:a1:
78:a1:df:fe:4f:ea:38:1b:cb:6f:88:4a:9d:ef:2d:76:eb:b6:
56:08:87:28:56:a1:0b:75:6b:39:4b:89:c1:a6:c1:b6:75:75:
e6:4b:0d:fa:b0:8a:29:04:c0:7e:d3:39:58:f7:74:a9:bf:43:
1e:6e:a8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 02:49:40 2025 by rpki-client