Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375f8678-f36c-4b2b-b493-20f94a8a3444.roa
File: 375f8678-f36c-4b2b-b493-20f94a8a3444.roa (raw, json)
Hash identifier: qMvMP4Dymwka+NntpC9KEQetW0yYcVAbo9KZ8P3v/HY=
Subject key identifier: 13:E9:8F:2D:77:03:D8:89:36:0D:E0:E5:1D:3B:C4:B6:8A:2E:33:6B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1A6F86584E4F755532F598962BCC8DFB9915AB2F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375f8678-f36c-4b2b-b493-20f94a8a3444.roa
Signing time: Fri 31 Jan 2025 00:00:00 +0000
ROA not before: Fri 31 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 114.56.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:6f:86:58:4e:4f:75:55:32:f5:98:96:2b:cc:8d:fb:99:15:ab:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 31 00:00:00 2025 GMT
Not After : Mar 7 23:59:59 2025 GMT
Subject: serialNumber=4f39447a6cbf3ede0f648730ab89e60b02b4c3c0ac00ecf5c105a90586167aeb, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:48:12:ab:7d:56:d5:e2:83:27:66:32:79:42:
39:41:78:e0:43:b0:8e:eb:95:9e:45:99:a1:77:a1:
51:f1:37:74:70:27:ae:e2:6b:e1:54:48:9d:a1:3e:
fd:d4:6e:6f:75:bf:92:b2:07:b4:d7:37:22:ee:5f:
b1:2a:5b:94:31:20:cb:c3:a8:63:d0:37:ab:00:1e:
7f:e2:c7:e1:3c:11:cc:7b:f1:ab:9f:11:a6:46:92:
3e:a3:3d:b4:cb:ee:76:7c:34:ba:94:0d:8f:08:af:
62:f2:7e:0a:f0:a2:44:05:b4:84:59:1e:ac:a1:56:
9f:77:35:fd:78:a3:29:42:b0:ad:69:48:9f:11:a6:
4f:38:9e:97:86:1f:3e:02:50:f3:78:6d:67:e6:2c:
5e:8e:21:48:3a:cf:21:5a:ce:6a:b3:aa:ca:fd:bd:
b2:b7:b4:70:eb:7c:a9:1d:75:13:6c:05:2a:48:fa:
c1:46:78:bf:01:d2:c3:7a:85:9b:d7:69:56:77:e6:
20:9f:0d:3b:a7:bf:9e:57:5f:70:f9:ab:c7:4c:97:
df:53:b1:5f:a7:9f:2b:fd:65:bd:dc:5b:3b:ff:b1:
32:2e:39:cf:85:5c:c4:f7:4c:a6:f5:b3:78:99:04:
34:ec:3e:36:f7:ca:f1:95:2d:d6:e7:ed:4d:82:2e:
51:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E9:8F:2D:77:03:D8:89:36:0D:E0:E5:1D:3B:C4:B6:8A:2E:33:6B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375f8678-f36c-4b2b-b493-20f94a8a3444.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.56.133.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:fe:cd:25:ce:6f:9a:d4:90:3b:81:4b:4a:10:57:90:4b:dc:
0f:41:25:a9:5e:f3:d0:f7:ec:94:07:f8:c4:a9:4e:f5:bb:cd:
5a:5a:cc:b7:95:a0:9b:b5:0d:cb:16:1a:2c:d0:27:d9:61:72:
4d:59:85:61:e9:8a:a8:1f:eb:7b:24:62:50:cf:9f:08:04:af:
5b:08:cb:f1:dd:09:1d:bc:69:98:9e:c4:97:14:e3:e5:f3:7c:
13:35:ae:08:4c:3f:d4:45:bd:63:de:8e:93:3a:2c:6a:57:c3:
c2:b6:6d:da:27:9b:aa:1c:9f:56:27:41:11:55:01:47:df:27:
6f:d4:49:26:e0:a2:e8:db:5d:b9:50:ce:c2:ff:60:12:f4:b6:
39:ba:78:7e:e0:1a:cb:c6:ca:82:15:91:e0:28:94:ff:fc:45:
36:44:49:0d:89:45:52:34:e6:1d:52:f0:e9:93:3a:52:3e:c6:
dd:d0:8e:85:9c:47:11:ee:27:3c:94:a3:df:42:80:e8:22:86:
3a:d7:f0:59:b3:a1:28:0c:47:dd:4c:49:83:af:5e:ec:69:38:
fa:0f:3c:c5:1d:77:87:9b:81:39:cc:ae:cc:0d:1b:4e:7f:f3:
2d:c8:bf:af:2e:02:17:cb:86:2a:52:bc:93:33:b4:57:1e:78:
8f:32:13:3f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUGm+GWE5PdVUy9ZiWK8yN+5kVqy8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5
WjB6MUkwRwYDVQQFE0A0ZjM5NDQ3YTZjYmYzZWRlMGY2NDg3MzBhYjg5ZTYwYjAy
YjRjM2MwYWMwMGVjZjVjMTA1YTkwNTg2MTY3YWViMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCZSBKrfVbV4oMnZjJ5QjlBeOBDsI7rlZ5FmaF3oVHxN3Rw
J67ia+FUSJ2hPv3Ubm91v5KyB7TXNyLuX7EqW5QxIMvDqGPQN6sAHn/ix+E8Ecx7
8aufEaZGkj6jPbTL7nZ8NLqUDY8Ir2LyfgrwokQFtIRZHqyhVp93Nf14oylCsK1p
SJ8Rpk84npeGHz4CUPN4bWfmLF6OIUg6zyFazmqzqsr9vbK3tHDrfKkddRNsBSpI
+sFGeL8B0sN6hZvXaVZ35iCfDTunv55XX3D5q8dMl99TsV+nnyv9Zb3cWzv/sTIu
Oc+FXMT3TKb1s3iZBDTsPjb3yvGVLdbn7U2CLlF1AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUE+mPLXcD2Ik2DeDlHTvEtoouM2swHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzM3NWY4Njc4LWYzNmMtNGIyYi1iNDkzLTIwZjk0YThhMzQ0NC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAByOIUwDQYJKoZIhvcNAQELBQADggEBAGv+zSXOb5rUkDuBS0oQV5BL3A9B
Jale89D37JQH+MSpTvW7zVpazLeVoJu1DcsWGizQJ9lhck1ZhWHpiqgf63skYlDP
nwgEr1sIy/HdCR28aZiexJcU4+XzfBM1rghMP9RFvWPejpM6LGpXw8K2bdonm6oc
n1YnQRFVAUffJ2/USSbgoujbXblQzsL/YBL0tjm6eH7gGsvGyoIVkeAolP/8RTZE
SQ2JRVI05h1S8OmTOlI+xt3QjoWcRxHuJzyUo99CgOgihjrX8FmzoSgMR91MSYOv
XuxpOPoPPMUdd4ebgTnMrswNG05/8y3Iv68uAhfLhipSvJMztFceeI8yEz8=
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:19:10 2025 by rpki-client