Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2997e2f7-257b-4cdf-86e6-2bc987551ed8.roa
File: 2997e2f7-257b-4cdf-86e6-2bc987551ed8.roa (raw, json)
Hash identifier: jh/3wAe9MYp6hsNNLJvXwVa130rV0C05m3MlWauht7k=
Subject key identifier: 7D:46:8F:1B:68:0A:66:6D:AA:15:07:76:30:9A:8B:C3:6F:30:14:35
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3502111A76E7E8771AFE7FD6F6100A46FB7EC2A9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2997e2f7-257b-4cdf-86e6-2bc987551ed8.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f38:2080::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:02:11:1a:76:e7:e8:77:1a:fe:7f:d6:f6:10:0a:46:fb:7e:c2:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=26b09e2c33c87087abc0bb3562a4111db33f6ca1aab3e8c4e58abab3f34a4201, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e1:cc:db:49:82:bf:ce:6b:19:80:0b:fa:b3:
07:d9:ad:9b:1a:65:34:8c:f8:7f:a1:3f:d5:9b:cc:
45:89:13:24:3b:0f:da:83:cd:c4:5d:77:af:58:eb:
74:2e:fa:e1:70:8e:98:5e:ca:a0:ab:aa:76:60:19:
a7:e8:13:cb:ca:7b:a5:19:cf:74:97:bf:0c:1e:85:
4c:dc:ce:0a:5e:b1:0f:be:ee:8c:b6:ae:74:51:4c:
4f:d1:6c:1f:ed:ce:1a:a2:78:97:08:6d:54:d5:cb:
00:99:b5:af:2e:a5:50:71:7f:e7:18:7f:d6:04:48:
0a:cc:05:6a:d9:23:cb:09:d5:f1:b1:6f:b4:53:db:
ff:b8:2c:15:2d:1a:72:b1:5a:e2:47:41:f1:49:7e:
73:7f:63:8c:a5:8b:a6:53:22:96:27:4d:03:6e:a5:
d7:77:dd:40:0b:c5:aa:74:df:83:cd:0d:cc:a2:97:
70:a7:87:28:a3:56:a8:8d:ff:c4:e2:e2:80:b4:3d:
a7:a1:0b:c5:2c:70:83:ff:fc:4d:ac:c9:12:68:5f:
aa:1a:d1:89:b4:65:64:21:93:0e:7a:02:b7:6b:24:
db:5b:76:81:0e:8c:d2:39:06:3e:47:71:e1:0a:65:
e1:03:ba:27:d8:49:43:6d:3f:c5:d7:ff:0b:99:f0:
62:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:46:8F:1B:68:0A:66:6D:AA:15:07:76:30:9A:8B:C3:6F:30:14:35
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2997e2f7-257b-4cdf-86e6-2bc987551ed8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f38:2080::/48
Signature Algorithm: sha256WithRSAEncryption
16:22:58:d9:7e:1b:91:cb:20:9a:13:b0:88:2e:9a:94:71:84:
74:d2:94:00:7f:71:a2:7c:91:d9:19:7e:6b:6e:eb:f2:88:1a:
df:12:6d:97:4a:f4:d1:27:be:96:0b:64:74:ff:91:80:98:70:
7c:50:d2:03:88:cc:3d:fa:bc:f4:28:91:4b:5f:9e:f4:12:34:
b8:7b:61:f8:9c:65:d6:83:93:d9:49:d6:26:49:aa:7d:fa:ff:
60:fb:ee:fc:88:af:95:94:ec:9c:ec:6b:31:35:af:c5:8b:22:
2c:d3:1e:a2:f6:1e:87:9a:d0:96:df:5b:a8:dc:f6:1c:ea:6c:
00:1e:55:2f:11:a0:5d:96:fc:f8:5f:64:6f:23:29:48:19:c9:
d0:32:f2:83:cd:f7:32:36:70:0d:ac:29:26:85:47:7d:33:f1:
7b:42:f1:57:c5:22:53:fe:ed:b2:69:49:48:5a:65:b7:59:1a:
9d:8d:5b:da:ca:a8:70:5a:d5:0a:0e:b9:68:b3:1a:d9:e7:86:
ad:98:de:0a:6d:7d:2c:29:80:80:dc:ea:77:29:70:bf:8d:f2:
37:a3:0a:46:0a:ec:c6:1c:a1:f4:72:58:1c:4d:eb:3e:b1:f3:
7e:78:d4:a9:33:04:aa:76:8f:f2:33:5d:7f:78:d2:35:e8:a2:
2f:cf:aa:cd
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUNQIRGnbn6Hca/n/W9hAKRvt+wqkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTA3MDAwMDAwWhcNMjUwMjExMjM1OTU5
WjB6MUkwRwYDVQQFE0AyNmIwOWUyYzMzYzg3MDg3YWJjMGJiMzU2MmE0MTExZGIz
M2Y2Y2ExYWFiM2U4YzRlNThhYmFiM2YzNGE0MjAxMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCS4czbSYK/zmsZgAv6swfZrZsaZTSM+H+hP9WbzEWJEyQ7
D9qDzcRdd69Y63Qu+uFwjpheyqCrqnZgGafoE8vKe6UZz3SXvwwehUzczgpesQ++
7oy2rnRRTE/RbB/tzhqieJcIbVTVywCZta8upVBxf+cYf9YESArMBWrZI8sJ1fGx
b7RT2/+4LBUtGnKxWuJHQfFJfnN/Y4yli6ZTIpYnTQNupdd33UALxap034PNDcyi
l3CnhyijVqiN/8Ti4oC0PaehC8UscIP//E2syRJoX6oa0Ym0ZWQhkw56ArdrJNtb
doEOjNI5Bj5HceEKZeEDuifYSUNtP8XX/wuZ8GIhAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUfUaPG2gKZm2qFQd2MJqLw28wFDUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzI5OTdlMmY3LTI1N2ItNGNkZi04NmU2LTJiYzk4NzU1MWVkOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAB84IIAwDQYJKoZIhvcNAQELBQADggEBABYiWNl+G5HLIJoTsIgumpRx
hHTSlAB/caJ8kdkZfmtu6/KIGt8SbZdK9NEnvpYLZHT/kYCYcHxQ0gOIzD36vPQo
kUtfnvQSNLh7YficZdaDk9lJ1iZJqn36/2D77vyIr5WU7JzsazE1r8WLIizTHqL2
Hoea0JbfW6jc9hzqbAAeVS8RoF2W/PhfZG8jKUgZydAy8oPN9zI2cA2sKSaFR30z
8XtC8VfFIlP+7bJpSUhaZbdZGp2NW9rKqHBa1QoOuWizGtnnhq2Y3gptfSwpgIDc
6ncpcL+N8jejCkYK7MYcofRyWBxN6z6x83541KkzBKp2j/IzXX940jXooi/Pqs0=
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:27:34 2025 by rpki-client