Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa
File: 1619d0e7-4e79-4136-ac39-2148c9d5e013.roa (raw, json)
Hash identifier: n3Q1hkETwln8i/lXe1KFuZagWWaxzcfwsnijVore8wc=
Subject key identifier: 38:65:B8:12:DD:D2:EA:06:72:69:44:B3:EA:ED:22:EF:2A:33:7F:B1
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 026FA10487C7B30A345599E0934A917CE210E9D2
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 174.129.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:6f:a1:04:87:c7:b3:0a:34:55:99:e0:93:4a:91:7c:e2:10:e9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=c78653a376dcfb00f1d9673d1084b759b02363073bdce83a137a1ea39101c61b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:91:d9:96:74:e3:8a:fe:ec:4c:f5:63:e7:30:
78:76:30:d6:05:80:22:24:bf:d9:98:c3:68:1c:e8:
9b:0c:45:8d:a6:be:ee:6b:4c:e4:7d:dc:4c:c2:5a:
55:fc:7c:cf:8d:06:2c:07:f1:fb:2c:ba:53:4a:7e:
83:aa:20:16:97:7c:96:57:3d:dc:16:17:da:d9:c9:
c2:86:ed:ec:0c:0b:f9:70:5f:b7:ea:65:2d:38:6b:
b5:36:2e:37:bb:3e:0f:6a:86:7e:dc:03:74:e6:5e:
f6:40:e1:4f:7b:98:7d:db:c8:d8:42:00:2f:ed:e7:
ce:1b:5e:36:6f:32:51:39:36:45:34:1a:46:8f:f6:
0e:6d:0b:5a:61:ec:ca:29:47:10:11:be:ef:3a:9c:
d1:37:88:c6:9e:58:47:64:15:b5:98:4d:33:db:bb:
e4:8e:ce:71:5b:29:e8:da:f3:ec:f4:e3:94:70:13:
2a:57:61:98:8a:99:ef:5d:11:93:98:18:5e:f6:84:
2e:b2:d5:71:2b:13:0e:ba:b4:8a:fd:4b:f0:e9:c6:
80:14:d8:a3:5a:34:13:86:66:61:3a:5d:40:f3:95:
c0:70:02:72:04:77:3b:b2:b5:7a:c4:18:87:ed:44:
cd:fc:32:3b:e0:0c:09:f4:0f:e1:c0:94:bb:42:5f:
3d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:65:B8:12:DD:D2:EA:06:72:69:44:B3:EA:ED:22:EF:2A:33:7F:B1
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1619d0e7-4e79-4136-ac39-2148c9d5e013.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
174.129.32.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:ad:4c:c9:a1:1a:11:9c:d1:89:36:6d:05:9b:be:8f:3a:02:
28:66:2d:a7:a0:6b:9d:14:39:71:8c:e9:dc:88:ec:8c:17:08:
4e:a5:08:bb:ed:17:47:bd:76:f5:44:3a:ea:e8:01:8c:a5:83:
46:1b:12:f8:25:db:88:60:e8:7d:a9:69:e4:fa:c8:97:bc:5c:
7f:70:6a:29:65:23:4d:8e:38:1d:22:5a:e0:0d:25:d6:37:c8:
9f:63:bd:e5:c9:da:2b:97:31:1d:51:41:12:b7:47:19:af:ed:
07:c7:8e:ca:68:73:8a:95:f3:42:96:bc:62:92:0c:0e:2c:ee:
18:ef:1b:c5:02:d8:e0:07:b9:2b:43:dd:7d:84:34:b5:55:b8:
3f:35:90:3c:ca:9a:8b:e9:6e:3c:f2:84:f0:78:25:55:33:a1:
a1:8e:f4:24:04:f2:db:57:1e:79:5e:86:d7:0a:60:51:06:d2:
6c:f7:92:38:58:0d:27:06:10:ab:5e:fb:c7:3d:1b:55:86:3c:
ed:db:0e:93:a7:a8:43:8a:fa:58:ae:9a:95:ff:44:ab:4b:d1:
82:77:49:93:2b:47:af:ae:ef:02:6f:55:6b:cc:f5:f5:bf:3e:
96:e4:1e:99:98:04:ca:38:90:1f:f9:bf:07:af:e4:f1:78:3e:
bd:8c:72:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:47:20 2025 by rpki-client